Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/J3fu5YId1uojU-SXy98DoXRdltc.roa
File: J3fu5YId1uojU-SXy98DoXRdltc.roa (raw, json)
Hash identifier: 97txY77rSxgEcJoCFrUeOkpt51snAaXvWmhuivN41aM=
Subject key identifier: 27:77:EE:E5:82:1D:D6:EA:23:53:E4:97:CB:DF:03:A1:74:5D:96:D7
Certificate issuer: /CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Certificate serial: 0B04407D
Authority key identifier: F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/J3fu5YId1uojU-SXy98DoXRdltc.roa
Signing time: Sat 01 Jan 2022 05:06:18 +0000
ROA not before: Sat 01 Jan 2022 05:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31169
IP address blocks: 79.170.80.0/21 maxlen: 21
185.28.128.0/22 maxlen: 22
91.126.0.0/20 maxlen: 20
217.17.208.0/20 maxlen: 20
2a04:2740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184828029 (0xb04407d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Validity
Not Before: Jan 1 05:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2777eee5821dd6ea2353e497cbdf03a1745d96d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d2:8e:0d:32:c4:0e:9a:df:1e:3c:ba:0f:58:
60:39:5d:d9:2c:e5:c0:d8:38:38:7f:0d:18:ad:a1:
a2:e9:4a:9c:c0:f7:cf:77:56:ed:f3:27:ce:7a:11:
00:b7:66:42:6e:57:48:e6:ef:84:9f:d9:e8:45:08:
e9:ce:64:b8:9d:74:46:48:0e:5d:ac:c4:8d:e5:c7:
2b:b7:5c:63:f7:67:23:56:11:99:1d:9a:bb:1c:27:
9f:1b:aa:62:c1:d3:88:1f:36:97:5e:c0:11:45:19:
97:d6:90:c4:06:bd:f6:30:cc:a9:4c:fd:b9:a3:93:
49:1a:20:2f:34:3f:74:53:66:93:1f:e1:9e:02:7d:
74:e1:09:2d:8a:14:7b:ab:9e:22:bb:47:72:fa:22:
63:ac:41:eb:12:17:d0:ce:3d:a4:41:6d:15:55:97:
fa:56:fd:fd:a6:80:25:09:a6:70:74:92:14:0d:e3:
67:28:59:27:9d:03:5d:fa:cd:6d:19:db:44:c9:c7:
c7:e3:71:98:7d:06:e6:78:eb:68:a2:7f:ae:f1:58:
4d:ff:da:26:fc:b4:36:5c:7d:b1:93:01:9d:31:e1:
54:ad:3c:14:ff:d0:b9:22:90:24:7f:f3:f0:98:48:
e3:f5:9e:f9:b4:54:8e:10:47:b8:a6:3b:4f:62:98:
79:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:77:EE:E5:82:1D:D6:EA:23:53:E4:97:CB:DF:03:A1:74:5D:96:D7
X509v3 Authority Key Identifier:
keyid:F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/J3fu5YId1uojU-SXy98DoXRdltc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/1-PvIQVghSG6P4IYLW-w-koO4A4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.80.0/21
91.126.0.0/20
185.28.128.0/22
217.17.208.0/20
IPv6:
2a04:2740::/29
Signature Algorithm: sha256WithRSAEncryption
97:08:d2:05:0c:c7:9f:54:d3:a9:e2:6f:93:20:13:94:30:67:
1d:8a:8f:b2:af:0b:d6:55:70:34:cc:ed:76:90:11:31:1a:4a:
da:ef:df:2b:01:ee:03:e8:47:89:37:f7:6c:2a:2b:08:0f:26:
84:28:40:4f:78:60:eb:a5:e7:d5:47:b6:89:cf:d2:ad:d5:38:
ea:f6:61:3b:b4:bc:6e:27:14:f6:33:f3:50:6e:7d:bb:b0:d7:
3f:4a:a7:01:4a:cb:0e:ea:c3:c4:a9:87:43:a9:6f:0b:f6:a9:
4c:ba:8b:03:17:8c:cc:03:a2:c9:a4:19:96:bc:d8:d8:5e:48:
8e:91:f9:f4:1a:99:b4:f3:7d:11:8c:03:91:27:89:30:61:5a:
db:5f:f3:ba:5a:60:97:04:b6:b1:cc:48:45:df:60:ee:4a:61:
bf:10:0c:70:09:80:e0:6f:99:0d:0d:3b:10:d3:03:6d:fd:c7:
4f:a8:28:27:da:56:a6:5a:08:c7:3b:75:6d:ed:30:58:0a:87:
be:cf:fc:6f:77:25:03:20:c8:bf:3b:26:af:f5:ce:60:d2:9e:
27:74:25:84:0f:38:3a:51:68:9b:66:38:d3:53:6e:a6:3e:08:
57:e7:5d:e2:53:2e:5e:68:a0:77:9d:d9:75:1a:fe:29:f1:71:
55:29:66:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:07:18 2025 by rpki-client