Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/R78USADGcrBbhoaPp1qtVDlve7g.roa
File: R78USADGcrBbhoaPp1qtVDlve7g.roa (raw, json)
Hash identifier: 6JQyP5MmrqP7sDKwsF+lPNIBRnhBTROAgD1dKa4llH8=
Subject key identifier: 47:BF:14:48:00:C6:72:B0:5B:86:86:8F:A7:5A:AD:54:39:6F:7B:B8
Certificate issuer: /CN=e1f47c11a3a3cae06a192860a96c5053ec04b5dc
Certificate serial: 0495C06A
Authority key identifier: E1:F4:7C:11:A3:A3:CA:E0:6A:19:28:60:A9:6C:50:53:EC:04:B5:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4fR8EaOjyuBqGShgqWxQU-wEtdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/R78USADGcrBbhoaPp1qtVDlve7g.roa
Signing time: Mon 04 Apr 2022 13:58:07 +0000
ROA not before: Mon 04 Apr 2022 13:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207544
IP address blocks: 212.6.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76922986 (0x495c06a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1f47c11a3a3cae06a192860a96c5053ec04b5dc
Validity
Not Before: Apr 4 13:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47bf144800c672b05b86868fa75aad54396f7bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2d:d8:e9:08:fa:77:4a:39:49:0e:d0:df:3f:
13:ea:9a:a3:f7:ef:93:00:9d:89:93:15:3d:96:72:
eb:66:ea:f5:7f:a6:77:1e:92:56:05:85:77:8d:dc:
20:cd:14:52:e3:66:74:cf:3c:a1:14:ef:07:a1:71:
55:98:21:0f:ee:b8:a1:1f:c5:7a:43:0f:14:2a:dd:
ab:7f:a7:60:6e:ba:f0:a1:bc:db:e9:0b:ee:63:53:
4b:f2:e1:72:17:4e:fc:87:9e:2c:ce:45:4b:d8:95:
29:d2:21:62:7f:cc:9c:a1:ee:c8:67:91:ed:1b:76:
30:3e:bd:b8:0e:72:3d:08:28:a1:c4:c5:f8:f5:a1:
4d:de:f7:ec:92:ae:b9:e7:36:44:8b:f5:3a:d6:84:
b5:bd:65:30:54:df:78:96:cd:da:51:eb:fb:76:2a:
78:a2:c1:e5:1c:84:f2:c0:ac:7f:8e:b0:01:4d:55:
5c:00:97:50:63:fc:96:11:c3:9e:5a:4e:a6:da:ea:
05:20:09:5c:7f:da:88:10:d7:11:f8:ee:74:ff:30:
71:52:bb:b7:94:74:4d:de:91:bf:62:44:d0:c2:61:
76:7d:20:db:2a:24:85:63:29:22:fa:3e:02:1c:5b:
e7:02:67:f7:8b:aa:65:bb:0a:a6:98:9e:99:ad:7e:
b7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BF:14:48:00:C6:72:B0:5B:86:86:8F:A7:5A:AD:54:39:6F:7B:B8
X509v3 Authority Key Identifier:
keyid:E1:F4:7C:11:A3:A3:CA:E0:6A:19:28:60:A9:6C:50:53:EC:04:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4fR8EaOjyuBqGShgqWxQU-wEtdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/R78USADGcrBbhoaPp1qtVDlve7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/908070-fd94-4a75-9872-31c733197073/1/4fR8EaOjyuBqGShgqWxQU-wEtdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.61.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:c7:d8:50:26:9d:b3:a2:c5:21:ee:93:15:44:9e:69:c1:9d:
85:9d:3a:d2:08:9d:d3:49:fb:fb:ba:f0:70:10:de:40:64:41:
f5:24:eb:e9:a5:69:7e:c9:d6:75:96:92:0e:82:70:ce:a8:52:
37:ff:e1:22:0c:63:05:37:c6:64:10:b2:80:b4:fb:8b:9f:fd:
99:c0:fc:c9:7f:56:31:be:6f:0e:21:04:cc:b9:f4:a4:7b:25:
cd:a3:fd:f1:91:20:43:6b:86:29:44:eb:ce:17:c2:da:fc:25:
db:e5:d2:b8:68:a1:3c:58:f1:e8:29:94:06:a0:d1:4e:81:df:
d2:45:33:1a:81:56:94:a7:e9:29:f1:27:ef:df:0f:fa:17:7a:
ca:96:93:36:ec:42:8b:f7:bf:3e:83:53:65:d4:86:78:e8:b4:
9c:97:4b:80:9b:c5:16:9c:c4:3f:0b:be:6b:b2:60:14:ef:12:
4c:f5:01:b5:33:98:59:92:85:1f:17:20:7c:43:f2:1b:2f:1f:
79:55:75:ea:82:ed:72:b8:09:ab:b5:ad:6f:0c:f8:c5:12:4e:
d3:66:26:d8:fe:99:c8:f7:ed:d4:5f:2f:9f:33:c3:3a:0e:b0:
3b:69:65:16:2c:c1:ce:f1:6d:84:b5:41:e3:0c:a8:74:00:4f:
69:dd:f6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:43:21 2025 by rpki-client