Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/L8inqfLvCG3992dHjQjKM__2JBE.roa
File: L8inqfLvCG3992dHjQjKM__2JBE.roa (raw, json)
Hash identifier: 6E6wfBWv0H4ZcUfmUdQZROB3S7JHmQmzZDKyZYA78r4=
Subject key identifier: 2F:C8:A7:A9:F2:EF:08:6D:FD:F7:67:47:8D:08:CA:33:FF:F6:24:11
Certificate issuer: /CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Certificate serial: 063F4669
Authority key identifier: BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/L8inqfLvCG3992dHjQjKM__2JBE.roa
Signing time: Thu 19 May 2022 07:38:18 +0000
ROA not before: Thu 19 May 2022 07:38:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61077
IP address blocks: 77.81.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104810089 (0x63f4669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Validity
Not Before: May 19 07:38:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fc8a7a9f2ef086dfdf767478d08ca33fff62411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:68:69:e0:8a:2d:ea:05:cf:72:2e:b8:8f:4e:
af:84:bc:2e:3b:22:f3:32:54:fa:8f:79:f2:5c:c9:
4b:61:f1:6a:92:3d:69:55:68:7f:39:7f:b8:da:48:
3f:2f:1a:82:a5:18:e2:d6:2f:4d:8e:37:c5:70:00:
ff:1f:c1:75:0c:5b:76:e5:b7:ad:11:f7:b1:2f:d8:
aa:67:b2:dc:2f:5d:7a:48:bc:58:24:ab:a6:b2:a3:
a8:c0:5e:53:5b:1c:0b:fe:56:41:9d:2b:4e:16:62:
fc:65:b1:e4:81:4c:47:bd:ae:ee:5c:3d:47:a2:9b:
6f:c1:07:e2:02:6a:06:d2:53:d7:88:30:f4:28:3c:
ba:15:5b:24:a3:b7:a9:91:a4:94:51:d4:81:e6:9b:
43:ff:c3:4e:bf:ef:c7:b3:76:41:fb:54:fd:41:f4:
c0:38:58:5d:82:a9:be:77:3e:a8:e1:2e:02:fd:f7:
c4:6d:33:0e:a1:73:a7:ae:ef:34:fe:7e:44:ac:f9:
90:f9:d5:79:6a:fb:5b:bf:37:e5:19:f6:5d:c5:ca:
0a:70:3b:84:8b:bc:69:ac:43:60:b6:07:74:1a:3c:
40:88:98:a6:e8:6f:2e:cb:ef:eb:e9:2f:e1:aa:10:
e8:14:48:09:4b:25:c8:c0:0a:80:76:1c:14:04:11:
22:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C8:A7:A9:F2:EF:08:6D:FD:F7:67:47:8D:08:CA:33:FF:F6:24:11
X509v3 Authority Key Identifier:
keyid:BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/L8inqfLvCG3992dHjQjKM__2JBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.96.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b7:89:95:d2:de:28:48:69:e4:86:ba:1d:37:51:d7:21:0c:
3f:4a:f8:c3:ea:34:87:4e:32:8b:2e:8e:09:bc:08:01:2c:3a:
e5:ff:00:57:5d:db:ac:ec:d3:5f:d4:00:c3:43:65:e6:08:c1:
d9:37:d1:84:3d:68:33:66:4c:28:fa:65:6a:5d:fa:9f:ce:23:
6b:61:7f:8e:68:f0:18:02:f7:8e:00:60:ab:a1:ff:e7:48:b8:
c5:96:d1:4a:41:70:de:02:42:98:d5:40:d9:2b:42:65:d4:f2:
3c:cc:3b:60:10:bd:1f:7f:93:b3:f7:47:d3:52:92:c2:35:ab:
a9:0f:0d:19:7f:81:f0:bb:0b:e5:6e:dc:8e:22:ca:95:dc:8a:
fd:f8:ba:6d:9d:97:83:4c:ca:be:2f:ab:05:93:d1:d8:3b:03:
9d:e8:29:be:47:9d:b2:7d:64:35:5d:ad:c3:0d:47:e3:8d:f8:
e6:29:f0:50:c6:f2:49:bd:ba:4d:bb:12:f6:41:90:79:eb:fb:
d3:bd:36:45:09:a3:e8:e7:8a:b8:11:05:1a:09:d6:d3:77:f9:
a2:eb:b0:71:fe:af:32:7b:97:f4:d6:47:77:cd:51:70:90:44:
a1:ca:bf:a8:c3:06:76:eb:26:d5:fe:04:e3:7e:38:0c:b2:63:
38:a4:c5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:31:33 2025 by rpki-client