Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/b8a6a4-f7ea-4afe-b60f-9c0de3652738/1/Pw_3Gs6iG75J8B8g3fvrm1a1TB4.roa
File: Pw_3Gs6iG75J8B8g3fvrm1a1TB4.roa (raw, json)
Hash identifier: O/aetzD/uVaP7/lhfb6eV9dfWLSlC+dBTP951XZqpp0=
Subject key identifier: 3F:0F:F7:1A:CE:A2:1B:BE:49:F0:1F:20:DD:FB:EB:9B:56:B5:4C:1E
Certificate issuer: /CN=d81cf1aac21aa5823b019de91aeeec23e3e526db
Certificate serial: 04F3E487
Authority key identifier: D8:1C:F1:AA:C2:1A:A5:82:3B:01:9D:E9:1A:EE:EC:23:E3:E5:26:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BzxqsIapYI7AZ3pGu7sI-PlJts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/b8a6a4-f7ea-4afe-b60f-9c0de3652738/1/Pw_3Gs6iG75J8B8g3fvrm1a1TB4.roa
Signing time: Sat 01 Jan 2022 12:03:22 +0000
ROA not before: Sat 01 Jan 2022 12:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16175
IP address blocks: 195.43.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83092615 (0x4f3e487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81cf1aac21aa5823b019de91aeeec23e3e526db
Validity
Not Before: Jan 1 12:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f0ff71acea21bbe49f01f20ddfbeb9b56b54c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ff:61:18:70:d1:00:96:d0:14:96:f7:6b:31:
65:68:f9:d4:f3:03:7e:b6:a5:a8:91:84:c7:1b:4c:
36:9c:58:53:3b:07:21:af:bd:f2:6c:45:53:81:0d:
22:e1:26:2c:51:bf:de:d0:78:6c:4a:02:e8:e9:f6:
b6:71:68:f9:31:0b:9e:8d:43:0d:93:77:53:34:5e:
6e:bf:f6:23:77:58:b5:fe:ad:a7:d7:98:6e:72:fd:
1b:78:1a:1e:c2:61:e0:55:01:d8:a7:55:76:26:42:
ff:62:c7:d8:e1:3d:7e:f7:19:01:b3:96:51:52:04:
75:de:39:e7:d5:ce:8f:c6:32:63:6a:a7:79:3d:84:
41:65:61:06:f9:f9:88:44:5c:fa:25:98:6a:ba:11:
dc:d2:44:1d:ab:3a:a2:fa:3d:bd:fc:a0:2e:73:94:
42:c7:29:5f:4f:29:a2:cf:7a:ed:5f:14:73:b5:55:
50:7a:3e:90:ce:3a:c3:0b:65:cd:cf:4f:83:4a:d7:
b5:01:ec:15:f7:28:82:c1:a7:80:45:f1:e2:f6:9a:
28:13:a0:2e:6f:70:d2:f6:b4:a0:d2:2b:42:24:ef:
d0:f6:86:b6:d5:42:8f:37:b0:cd:1f:da:ca:cf:f4:
5d:f4:f7:ae:3a:8a:2e:58:e8:54:40:70:d3:ec:c7:
3e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0F:F7:1A:CE:A2:1B:BE:49:F0:1F:20:DD:FB:EB:9B:56:B5:4C:1E
X509v3 Authority Key Identifier:
keyid:D8:1C:F1:AA:C2:1A:A5:82:3B:01:9D:E9:1A:EE:EC:23:E3:E5:26:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BzxqsIapYI7AZ3pGu7sI-PlJts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/b8a6a4-f7ea-4afe-b60f-9c0de3652738/1/Pw_3Gs6iG75J8B8g3fvrm1a1TB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/b8a6a4-f7ea-4afe-b60f-9c0de3652738/1/2BzxqsIapYI7AZ3pGu7sI-PlJts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.60.0/22
Signature Algorithm: sha256WithRSAEncryption
58:98:7b:4e:47:b5:d6:f0:24:0b:e4:77:11:fc:54:3f:46:48:
24:5c:a1:7b:a2:b9:e6:ee:a1:23:b4:92:50:38:ac:c3:b4:73:
a1:1d:d5:8e:3b:d3:4b:45:21:d3:34:cd:c6:06:95:eb:2c:51:
cf:66:4f:e5:ae:c2:b6:82:a7:8e:94:19:cf:2c:d5:65:70:67:
a2:c6:9e:1b:1e:0b:e8:47:36:bc:e5:93:bf:b9:15:94:7d:d5:
cd:77:7a:e9:0e:e2:a8:55:b1:50:7a:b8:a5:bc:d5:55:59:3c:
07:ba:b8:fc:85:21:d2:ca:e8:2a:e0:c9:fa:5b:b3:61:83:ac:
c2:1d:5f:c6:1c:cd:f7:ef:fa:2b:33:28:e9:54:83:54:a1:2a:
b3:02:ca:3b:6e:86:b1:ee:95:53:15:ac:e0:92:0d:2e:d9:f6:
dc:1a:67:6c:51:a2:77:17:20:a1:6e:bb:b7:63:c4:1e:9a:5c:
7c:2c:4d:36:8c:58:01:71:5c:11:47:b7:3f:c8:b9:72:43:7f:
3e:d4:c2:cd:97:4c:29:6d:f5:29:fb:49:68:c4:66:0e:e9:0b:
e4:6d:e0:eb:6c:8f:18:55:bb:a4:16:5d:97:07:18:08:e6:07:
7d:6d:dc:30:ae:70:1f:00:5d:99:9c:d7:69:1c:71:4c:7f:8e:
97:0d:2c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 06:52:32 2025 by rpki-client