Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/ty78FTfH-210DV8aWg82CvKk5jM.roa
File: ty78FTfH-210DV8aWg82CvKk5jM.roa (raw, json)
Hash identifier: e00PNuQSwG0J36+zkmhD7d3Yz1adyyoIIlP5ieYMXQU=
Subject key identifier: B7:2E:FC:15:37:C7:FB:6D:74:0D:5F:1A:5A:0F:36:0A:F2:A4:E6:33
Certificate issuer: /CN=391462364ed45f676ad50a9eae2d342d8cfd7441
Certificate serial: 12DA1439
Authority key identifier: 39:14:62:36:4E:D4:5F:67:6A:D5:0A:9E:AE:2D:34:2D:8C:FD:74:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORRiNk7UX2dq1Qqeri00LYz9dEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/ty78FTfH-210DV8aWg82CvKk5jM.roa
Signing time: Sat 01 Jan 2022 10:58:39 +0000
ROA not before: Sat 01 Jan 2022 10:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.83.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316281913 (0x12da1439)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391462364ed45f676ad50a9eae2d342d8cfd7441
Validity
Not Before: Jan 1 10:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b72efc1537c7fb6d740d5f1a5a0f360af2a4e633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:59:f8:42:7e:f8:72:9f:d8:c2:fe:f1:34:51:
b0:99:2c:69:3e:c6:da:60:a4:d9:89:26:85:0d:04:
98:b6:41:50:50:e9:bc:12:d0:bc:d1:84:8b:43:ab:
26:be:3e:72:8d:1e:f3:17:f7:a0:e0:93:31:5d:4f:
60:7c:25:58:a9:89:28:7a:9e:56:95:f7:6b:9c:86:
11:33:1c:ae:95:b1:65:ac:b7:5f:b8:5b:8b:d1:3e:
1c:76:5f:6e:b3:d2:b9:2b:83:2e:73:50:f8:76:72:
6d:d4:4f:e7:61:00:ab:51:f9:04:9d:78:13:f9:6e:
e8:08:2b:c5:33:c8:17:6a:ce:df:df:5e:aa:48:5f:
9a:18:9a:2a:c8:95:e8:5c:98:a8:f4:a1:91:39:0e:
1e:2d:3d:41:68:2f:e9:67:ff:91:bc:15:b0:82:d4:
be:fe:ac:14:47:35:62:7f:d1:e2:e4:01:a4:19:9c:
f1:14:b3:ac:28:b0:98:02:01:9c:e2:49:d2:c3:5d:
e2:52:4e:eb:fc:68:14:b8:98:d5:35:f4:ee:b8:1b:
59:39:5a:a9:33:f4:55:26:12:a2:cb:56:4b:87:ea:
87:e0:b4:e2:70:1e:8c:99:d8:13:55:c2:1d:cb:a9:
72:3b:ad:bb:4d:0e:f7:3f:aa:51:ef:dd:1a:3d:60:
65:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2E:FC:15:37:C7:FB:6D:74:0D:5F:1A:5A:0F:36:0A:F2:A4:E6:33
X509v3 Authority Key Identifier:
keyid:39:14:62:36:4E:D4:5F:67:6A:D5:0A:9E:AE:2D:34:2D:8C:FD:74:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORRiNk7UX2dq1Qqeri00LYz9dEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/ty78FTfH-210DV8aWg82CvKk5jM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/ORRiNk7UX2dq1Qqeri00LYz9dEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.83.0.0/16
Signature Algorithm: sha256WithRSAEncryption
08:bc:6e:d7:b9:ac:c7:75:51:33:24:8b:3e:32:b8:d7:4f:da:
be:4a:ed:e8:46:73:16:1f:25:bc:ac:f9:a6:f3:40:d9:19:9d:
5a:60:77:a8:5d:e2:eb:38:19:c8:2d:bc:02:3d:d9:44:a9:55:
b1:19:4b:3c:d1:ef:15:6e:33:23:1c:bf:f7:7f:e1:96:25:ae:
c8:6c:88:2c:87:1c:c0:01:46:15:53:6d:3f:be:81:47:4c:0f:
5e:72:bf:66:71:a7:92:f8:ef:09:3f:dd:fc:73:69:cc:d0:cc:
d9:28:db:31:e5:8f:c0:07:11:1f:64:c7:2a:4b:43:b3:d3:dc:
d0:22:bc:ec:3c:67:08:97:c9:18:44:11:89:e9:f9:88:53:04:
c0:34:ea:d4:5b:bd:ac:cb:49:22:fd:87:72:38:18:c9:fd:b1:
0c:24:a5:41:d4:a7:be:8d:fd:c4:1a:88:86:7d:10:67:fe:14:
87:1a:cb:9e:7b:12:62:f9:1d:b3:69:c3:ad:dd:bd:ef:8d:e8:
bb:f5:92:a7:ba:7f:c9:c6:7e:5d:dc:38:9d:55:f5:7e:99:10:
32:f1:7f:e2:ad:8c:8e:81:0b:20:ce:12:a3:2e:83:0c:b7:fa:
b6:52:a9:8d:6f:b0:0d:0d:e4:df:b4:a8:bc:38:a7:66:af:32:
75:17:83:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:42:42 2025 by rpki-client