Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WrnvZMT0pTADKnwDiZK6FzMG-T0.roa
File: WrnvZMT0pTADKnwDiZK6FzMG-T0.roa (raw, json)
Hash identifier: rGqJID+jkVPs3kkRUBeB0OOeOerj+bRHTRqQN5JAMb4=
Subject key identifier: 5A:B9:EF:64:C4:F4:A5:30:03:2A:7C:03:89:92:BA:17:33:06:F9:3D
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182D4D4B638FFCE5D757986B36ECF3B390F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WrnvZMT0pTADKnwDiZK6FzMG-T0.roa
Signing time: Thu 25 Aug 2022 11:48:06 +0000
ROA not before: Thu 25 Aug 2022 11:48:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 45.152.197.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
45.157.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d4:d4:b6:38:ff:ce:5d:75:79:86:b3:6e:cf:3b:39:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 25 11:48:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ab9ef64c4f4a530032a7c038992ba173306f93d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ba:50:8d:aa:cc:fe:79:8b:1d:93:bf:f6:49:
a2:18:e9:3a:1d:3a:01:ad:74:d6:23:99:b5:89:4d:
c8:db:37:08:3c:f4:9e:65:ce:8b:4e:bf:fc:e2:bd:
fc:7b:2c:fe:b4:34:74:36:40:b7:d0:64:c9:f4:51:
ee:a7:9e:77:48:65:50:54:8a:09:6c:72:2a:90:dd:
48:87:ba:77:e6:52:23:73:9e:02:26:b3:22:a0:75:
ee:db:de:e2:df:7d:a9:53:75:fa:60:dd:99:ea:b6:
d9:f5:c4:07:d0:d7:d4:d5:50:59:97:bf:e6:6b:90:
97:4d:df:55:f4:c7:82:1a:d1:54:a4:41:41:e0:0c:
d9:2d:de:74:64:ed:19:4f:76:19:ce:8b:27:c6:ab:
71:7f:60:af:28:2a:b7:2e:65:8c:62:d7:e0:5c:0c:
e8:6f:39:ac:8e:07:86:91:2c:4e:c8:d2:de:5d:e8:
86:45:58:4f:0e:f6:cb:60:49:e1:b8:e1:7a:85:13:
75:db:a1:ae:aa:2a:16:d1:8b:0e:50:5a:e0:a7:19:
6f:bf:cc:e1:fc:aa:d3:30:5f:fc:21:42:80:8a:e8:
d1:b1:ba:6d:54:78:ae:e4:bf:ff:da:e3:b2:ad:87:
4d:7a:fb:50:2e:c1:87:bf:84:67:2b:a8:84:14:fa:
e3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B9:EF:64:C4:F4:A5:30:03:2A:7C:03:89:92:BA:17:33:06:F9:3D
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WrnvZMT0pTADKnwDiZK6FzMG-T0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.253.0/24
45.152.197.0/24
45.157.39.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:20:1f:10:f7:b9:e4:c9:72:38:a3:78:67:18:96:48:7e:ba:
c2:6f:6c:b1:78:56:62:2b:a1:bd:f2:37:cf:f1:d5:ea:5a:f6:
63:ce:89:a7:00:20:44:8c:c2:18:c8:0c:6c:e1:94:14:94:2c:
22:6c:89:bf:16:c1:67:0b:f5:89:46:17:50:be:1b:83:a4:d9:
1b:16:38:86:90:a1:88:2b:5c:0b:6b:09:4c:67:84:64:06:17:
3d:be:ad:f2:28:14:bd:f1:54:23:2f:74:1b:f2:88:d4:1f:38:
fb:d8:cb:43:b7:4d:2c:2e:8a:12:a8:cc:fd:a1:dc:98:df:a1:
ee:7d:45:a5:d8:8d:2d:85:2f:6e:52:01:04:c4:37:a1:e5:26:
c3:62:69:11:e5:f2:20:09:eb:66:c1:06:31:6c:3a:06:af:40:
e9:c6:ce:bd:46:cb:7d:91:c5:ed:af:09:80:6b:cc:76:22:a8:
8c:9a:e4:d0:1b:a6:b4:a8:db:d8:0e:08:49:8d:9c:68:3d:41:
ac:1e:2f:5b:a8:a8:05:97:d3:ad:d8:a9:9d:1b:5b:96:39:60:
b2:1d:11:55:62:d4:7f:46:ab:a8:51:bc:cf:d2:0f:ce:6e:e8:
c8:2e:e5:81:4b:d0:11:fe:5d:f6:2f:25:0c:be:9a:b6:01:8b:
16:dd:ff:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 21:48:26 2025 by rpki-client