Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/xoYZxjUEcuVAB9EtyE6xqh-JIV4.roa
File: xoYZxjUEcuVAB9EtyE6xqh-JIV4.roa (raw, json)
Hash identifier: zM6SZuV3mkc4UJkKdA44FelokHES1HwQCqUUm4mvAIo=
Subject key identifier: C6:86:19:C6:35:04:72:E5:40:07:D1:2D:C8:4E:B1:AA:1F:89:21:5E
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 02A8C4EF
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/xoYZxjUEcuVAB9EtyE6xqh-JIV4.roa
Signing time: Thu 10 Feb 2022 22:42:21 +0000
ROA not before: Thu 10 Feb 2022 22:42:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57648
IP address blocks: 45.156.162.0/24 maxlen: 24
45.156.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44614895 (0x2a8c4ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Feb 10 22:42:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c68619c6350472e54007d12dc84eb1aa1f89215e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2f:82:fe:93:c5:0a:41:ef:5c:a6:4b:55:62:
af:db:c7:4e:67:ae:a8:a2:69:d4:c8:24:44:12:ca:
b1:49:fe:6d:db:d7:a1:17:d8:74:c4:27:42:95:13:
a4:af:d4:04:9c:f7:3d:28:96:c8:f0:ee:f0:af:c5:
13:da:33:9a:3c:28:59:a6:fc:5b:35:8b:d9:03:5a:
31:ae:1b:46:c9:9c:1a:e9:79:2f:4b:68:f1:7d:91:
57:c8:de:8d:f5:37:f7:2a:14:17:f6:d3:48:d5:4e:
59:33:df:1c:5c:c1:12:65:97:4a:0c:41:a0:57:55:
8e:b9:4f:20:e5:a0:13:df:8a:ff:35:91:39:cb:3f:
ee:27:ed:88:ee:0b:96:dc:b2:20:46:75:8a:2d:4d:
f1:fe:3b:0b:ad:23:6d:03:40:e0:8a:4e:c5:43:6c:
96:06:4f:66:07:a2:09:62:92:1d:dc:f5:82:69:8e:
5e:a1:96:3c:62:e3:94:bf:8f:9e:0d:b9:4a:a6:04:
e5:ab:0c:d4:cf:6b:9c:05:04:df:e1:67:86:c4:84:
91:60:3a:7e:76:4d:0a:3b:6a:50:29:c9:24:41:98:
93:97:80:75:d1:82:21:e9:e7:80:9f:cd:43:50:70:
00:8b:df:28:e8:1c:9d:bb:36:60:1b:09:83:a8:7f:
6e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:86:19:C6:35:04:72:E5:40:07:D1:2D:C8:4E:B1:AA:1F:89:21:5E
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/xoYZxjUEcuVAB9EtyE6xqh-JIV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.160.0/24
45.156.162.0/24
Signature Algorithm: sha256WithRSAEncryption
99:4d:76:d3:68:9a:3e:70:9a:d7:0a:6c:65:33:c4:d7:d1:de:
66:44:4a:b8:9d:df:66:6f:b6:17:a9:2b:d4:56:d8:c3:bc:fc:
84:09:0e:91:70:bc:a0:d5:69:99:f9:94:b4:0b:5e:e6:f0:e4:
32:d9:87:1c:72:ae:50:ae:01:7e:fc:3c:b5:cb:00:7e:57:e6:
6b:41:c8:32:89:7b:c0:ef:ae:e7:ce:c4:95:2c:a1:a5:0c:ea:
7c:06:69:72:9f:1e:b6:cf:30:3d:45:a6:e8:73:28:c8:67:05:
76:0f:23:6a:13:ca:af:fd:7a:28:b1:36:17:09:f3:35:72:54:
19:d8:77:21:d2:6e:b3:bd:77:ad:f2:51:6b:19:47:15:a2:f0:
86:c7:56:01:aa:83:80:9d:04:d1:f7:fd:8c:50:a9:7e:91:44:
42:28:1f:9f:df:7e:50:4e:40:92:5d:3e:79:de:85:b2:e8:e7:
05:e5:7d:8b:0b:58:fa:9d:4c:72:0f:59:19:80:62:5a:79:45:
d3:77:c3:6e:ed:35:b2:26:58:ae:5e:e2:c4:ca:29:7d:26:94:
d5:df:49:a2:94:1f:a5:a1:79:d7:c1:23:1a:22:ed:9e:99:94:
84:34:cb:49:df:15:c5:07:22:a7:38:ab:d8:c3:18:17:d7:f4:
6a:ad:cb:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 21:18:16 2025 by rpki-client