Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/7i3oFaPSGkQBlJyVAOcPv6gA0L0.roa
File: 7i3oFaPSGkQBlJyVAOcPv6gA0L0.roa (raw, json)
Hash identifier: F7QP0QqT2kaYsrpvuKEkl3VdYpk867uhnugvu3a/gHY=
Subject key identifier: EE:2D:E8:15:A3:D2:1A:44:01:94:9C:95:00:E7:0F:BF:A8:00:D0:BD
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 0122739A
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/7i3oFaPSGkQBlJyVAOcPv6gA0L0.roa
Signing time: Sat 14 May 2022 10:42:41 +0000
ROA not before: Sat 14 May 2022 10:42:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211819
IP address blocks: 45.156.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19035034 (0x122739a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 14 10:42:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee2de815a3d21a4401949c9500e70fbfa800d0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c2:f5:4b:2b:38:51:57:51:6a:23:55:36:ea:
78:6e:b6:83:71:5c:96:58:e6:82:94:ce:83:24:e0:
ac:d0:1a:e7:a1:b8:4b:01:64:1a:49:0d:6b:04:fb:
9e:c0:8c:20:93:78:80:79:82:03:57:72:96:a2:20:
fa:03:eb:b6:7e:63:1a:e6:2d:31:b7:0d:5a:af:13:
06:f4:a0:80:b2:50:16:c7:44:4a:d2:31:b8:e7:3d:
91:b2:f4:b1:3a:d0:7f:c0:53:05:3b:8c:10:29:71:
e2:95:6e:7f:62:1c:a1:b2:bc:b4:c5:9e:92:85:29:
50:ca:cf:98:b6:9e:4e:c1:bd:c3:4b:13:77:4b:71:
a5:52:c3:90:5c:ad:11:6f:8d:c8:51:a7:da:1f:5f:
0e:bb:bc:61:f4:72:74:d3:8e:01:86:44:d7:3a:64:
43:25:13:db:77:09:a4:56:c4:e6:71:21:ac:2e:6c:
4a:89:b3:d4:9e:9b:c0:9d:8b:a8:e6:c3:f6:ba:6c:
b4:fc:31:0e:7a:d6:13:53:a8:05:89:16:d5:27:bf:
77:0c:d0:e6:32:1a:8e:1b:9f:e1:de:6c:0c:33:cc:
a0:02:15:8a:f4:03:3b:66:43:56:bf:be:17:bc:d9:
be:f7:8c:d8:99:81:66:51:9e:e5:27:5b:f0:f6:02:
50:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:2D:E8:15:A3:D2:1A:44:01:94:9C:95:00:E7:0F:BF:A8:00:D0:BD
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/7i3oFaPSGkQBlJyVAOcPv6gA0L0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.145.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:28:5a:1c:b3:0c:16:1a:f0:c2:0b:f4:22:a7:ea:0c:3b:1b:
21:09:19:17:02:aa:a7:d3:4e:a4:43:fd:ce:34:4d:35:80:12:
fe:40:94:6d:39:08:ec:a9:c4:c5:33:42:30:79:eb:b5:ce:d2:
84:9c:e9:68:9c:ef:39:dd:77:f1:ed:12:3b:f8:26:30:b5:e3:
7f:66:58:1b:67:c2:33:75:de:0b:06:fd:de:33:db:66:2c:da:
46:ed:16:b7:a0:07:3c:5c:a7:1f:58:b0:0e:4b:c3:21:61:f1:
cc:7c:f1:c8:14:74:11:76:53:ec:09:cc:88:25:0b:d5:7d:6e:
95:0f:00:6d:c1:38:23:86:f4:f8:73:96:4b:a1:ae:ca:bb:6a:
b0:76:38:c8:3f:db:17:33:a1:3f:20:17:c9:c2:2a:00:06:06:
74:25:74:3a:ae:a2:e9:0d:57:ad:00:7f:dd:a9:df:95:a5:12:
be:d5:28:14:6f:a7:79:51:66:f2:01:91:4a:00:88:6c:45:8e:
10:6a:9f:a5:71:48:f8:ec:72:e0:02:fe:f2:7c:98:4b:17:e3:
d9:61:d9:c1:f4:9e:fa:17:92:73:7e:32:f8:25:ce:bd:fe:46:
9a:68:0e:6e:33:44:b4:d4:bf:99:96:18:51:85:e3:ae:14:b8:
f0:bd:e8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 20:46:03 2025 by rpki-client