Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/BuTaO7qR3rHTaoDkcTW0xRW3PUA.roa
File: BuTaO7qR3rHTaoDkcTW0xRW3PUA.roa (raw, json)
Hash identifier: HTnZlaApw6+Lzkq+UDKzSqKN0+h+XMb1+cmnhnDDZOo=
Subject key identifier: 06:E4:DA:3B:BA:91:DE:B1:D3:6A:80:E4:71:35:B4:C5:15:B7:3D:40
Certificate issuer: /CN=34d0ec7ac4c391e4ecba9d0a3749191b18ebf934
Certificate serial: 42742F
Authority key identifier: 34:D0:EC:7A:C4:C3:91:E4:EC:BA:9D:0A:37:49:19:1B:18:EB:F9:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NNDsesTDkeTsup0KN0kZGxjr-TQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/BuTaO7qR3rHTaoDkcTW0xRW3PUA.roa
Signing time: Sat 01 Jan 2022 01:51:44 +0000
ROA not before: Sat 01 Jan 2022 01:51:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34083
IP address blocks: 178.219.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4355119 (0x42742f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34d0ec7ac4c391e4ecba9d0a3749191b18ebf934
Validity
Not Before: Jan 1 01:51:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06e4da3bba91deb1d36a80e47135b4c515b73d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ea:a0:cb:6c:4a:8a:2f:11:64:cf:dc:be:f9:
79:e0:eb:35:1f:1c:9b:4c:ed:e7:8a:9d:7d:a2:a6:
20:18:5e:31:26:cf:e1:e1:5a:f3:4b:c6:a7:c0:57:
6f:53:13:20:aa:f9:ca:7d:a2:05:e5:73:5b:da:97:
a9:e8:fb:26:c0:c5:40:0d:c5:46:a8:83:c1:67:65:
4a:ad:e1:5b:38:c8:40:85:ef:ea:3d:a1:8b:4d:16:
e0:67:59:bb:85:7a:bb:8b:75:de:b9:1a:94:9c:67:
df:80:ac:1c:98:73:45:42:a5:11:79:4c:24:0b:cc:
7f:26:0b:3f:86:ff:6b:d5:df:7f:3b:9b:64:f3:2a:
14:76:9b:96:76:d9:8e:e2:68:a3:13:3f:bb:2f:d0:
c0:0c:0b:71:ec:dc:62:af:04:96:36:f0:26:ba:cf:
44:6f:ef:63:22:69:8a:b8:4f:09:e2:3e:be:02:a0:
2f:07:cb:68:aa:db:38:32:62:a1:21:1c:32:57:ec:
35:f5:12:0a:a8:c0:7a:50:05:cf:e4:a0:ab:8a:9d:
50:76:ae:71:1e:7b:86:e7:75:1f:a0:88:59:51:f9:
4e:19:e2:6a:ce:4f:ae:84:96:57:82:b2:73:03:3c:
71:c6:1d:88:1e:25:c8:79:db:7d:94:a8:0c:a1:bf:
ba:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E4:DA:3B:BA:91:DE:B1:D3:6A:80:E4:71:35:B4:C5:15:B7:3D:40
X509v3 Authority Key Identifier:
keyid:34:D0:EC:7A:C4:C3:91:E4:EC:BA:9D:0A:37:49:19:1B:18:EB:F9:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NNDsesTDkeTsup0KN0kZGxjr-TQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/BuTaO7qR3rHTaoDkcTW0xRW3PUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/NNDsesTDkeTsup0KN0kZGxjr-TQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.48.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:70:59:2e:5f:33:6b:38:e0:9d:9f:db:aa:21:6c:a7:3c:60:
83:1a:2e:bf:c7:05:7d:a5:93:96:d4:e9:5c:05:ae:f9:97:b8:
90:2e:40:6d:56:1e:8e:93:36:77:90:c9:ef:1d:ab:75:c9:b0:
9d:af:fb:3b:0b:1b:7e:72:36:cc:c5:ed:76:27:d2:3b:85:13:
65:c5:6f:9a:b8:a2:32:c0:cd:c4:32:e1:9c:15:79:d5:6e:d2:
62:61:95:9f:a1:2a:8e:c8:b3:ae:2d:63:94:b4:65:36:fa:12:
c3:9c:ed:ee:a9:93:20:42:7b:16:b6:ad:d9:b1:3c:d6:73:32:
56:40:ef:84:0b:e3:36:7e:01:e7:20:c0:09:5d:1a:91:8a:bc:
38:08:7d:47:32:9e:66:96:de:37:ea:a1:ce:5e:40:92:44:ed:
be:a6:5c:31:b3:23:56:cd:8e:00:ed:4b:f8:dd:14:a2:83:bf:
1c:2e:07:eb:b1:6d:92:15:f6:67:0c:81:72:be:cd:a5:30:81:
13:cc:cf:7a:eb:be:63:49:01:e3:55:3e:17:4b:3e:37:38:1a:
61:5a:13:28:a1:5c:8c:27:4e:e7:b1:d5:51:96:3f:c4:10:36:
60:52:26:3f:16:b6:b6:39:02:61:de:7b:5c:e7:36:88:81:c5:
3f:c7:63:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:48 2025 by rpki-client