Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/gj3DU7pJRCh9BIM7QiXNgvWbZgQ.roa
File: gj3DU7pJRCh9BIM7QiXNgvWbZgQ.roa (raw, json)
Hash identifier: hUjK4MBjX1iuwsVil/rxz716/HXY6FQU/0eEhhE3tVo=
Subject key identifier: 82:3D:C3:53:BA:49:44:28:7D:04:83:3B:42:25:CD:82:F5:9B:66:04
Certificate issuer: /CN=e3ac635fd45f5471c6c2c3fe45ef1bb4338bc279
Certificate serial: 0F4AB30F
Authority key identifier: E3:AC:63:5F:D4:5F:54:71:C6:C2:C3:FE:45:EF:1B:B4:33:8B:C2:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/46xjX9RfVHHGwsP-Re8btDOLwnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/gj3DU7pJRCh9BIM7QiXNgvWbZgQ.roa
Signing time: Sat 01 Jan 2022 16:10:32 +0000
ROA not before: Sat 01 Jan 2022 16:10:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 141.69.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256553743 (0xf4ab30f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3ac635fd45f5471c6c2c3fe45ef1bb4338bc279
Validity
Not Before: Jan 1 16:10:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=823dc353ba4944287d04833b4225cd82f59b6604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f3:1d:38:5a:a0:6d:1c:d8:6d:b3:6a:9d:1f:
00:23:b8:5e:45:01:87:1d:45:42:1b:3d:3d:15:ff:
70:6e:b4:5a:5e:43:ba:68:a5:61:80:5f:56:eb:bc:
b3:84:85:39:3b:fc:04:e0:67:4e:7c:15:c9:e2:dc:
9b:c6:a0:26:f5:d8:b4:c1:88:a8:5b:82:cd:5b:1e:
fd:52:69:d7:6e:6c:69:86:87:5c:01:33:5d:42:b7:
3c:20:a3:d0:13:b8:a7:47:cb:5f:e8:71:50:bf:d4:
36:58:d6:a7:57:b3:a2:c8:e8:46:81:31:7a:bc:b3:
69:20:05:ab:d4:e2:31:12:81:35:ef:f4:32:e5:36:
d7:7c:e5:38:9e:78:76:7b:ba:ea:38:53:95:20:61:
8b:0d:3f:2a:e3:d1:25:bf:80:56:86:02:a9:89:c5:
3a:49:9c:80:d8:21:df:50:74:b7:96:33:f8:12:a3:
09:94:64:ec:15:2d:31:52:3d:29:5a:a6:0a:08:d1:
b5:02:de:87:e2:b3:9a:84:8a:1d:29:ef:a8:16:1a:
0a:90:de:ad:6f:cf:d6:54:b0:85:17:2a:24:f6:9a:
fa:a4:5e:3c:46:ba:ff:9e:c0:1b:1c:74:00:e2:0e:
e9:4a:c4:c1:af:43:ad:0e:8d:a9:8c:d4:6f:78:4b:
c2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:3D:C3:53:BA:49:44:28:7D:04:83:3B:42:25:CD:82:F5:9B:66:04
X509v3 Authority Key Identifier:
keyid:E3:AC:63:5F:D4:5F:54:71:C6:C2:C3:FE:45:EF:1B:B4:33:8B:C2:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/46xjX9RfVHHGwsP-Re8btDOLwnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/gj3DU7pJRCh9BIM7QiXNgvWbZgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/46xjX9RfVHHGwsP-Re8btDOLwnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0d:c9:af:7e:2d:53:33:78:f3:6e:f7:17:af:02:0d:ab:1f:32:
d0:78:3d:a0:be:77:08:97:df:ac:b6:8f:22:ce:3a:d2:ca:30:
eb:09:be:1d:2d:95:27:e1:9d:9f:c1:a4:44:6c:01:8c:ed:2b:
07:b7:b4:0b:03:66:52:06:44:ce:e2:40:20:e2:e9:04:de:36:
4a:7c:3a:12:12:7b:ee:a5:1f:f1:43:0f:23:57:c5:92:cd:ff:
c6:57:50:81:94:5c:0c:97:f8:4d:72:71:90:e0:af:27:60:c7:
b9:11:a2:c1:bb:d1:f3:ce:aa:f9:b1:38:f6:03:41:a8:bb:92:
72:31:bc:c5:38:cc:9a:3b:83:ef:ad:45:08:74:60:f4:e0:26:
d5:2e:1d:8b:b5:f1:e3:65:42:8d:fe:86:89:15:72:c1:bb:97:
e6:32:51:83:84:fc:7e:74:36:12:db:4a:2c:ec:85:e3:7f:8a:
39:7d:69:44:2d:aa:93:2f:e7:10:49:7c:9f:52:c7:64:bb:d3:
3f:be:eb:e6:a5:59:e6:42:b2:0a:e5:da:15:e7:d6:dc:1d:d7:
72:3f:46:27:cc:2b:6f:b1:e9:6c:1d:ef:d8:2e:d2:45:d6:16:
b0:5f:72:ef:e8:b6:6c:f7:69:16:c4:c2:65:ef:5a:70:4b:08:
f1:39:13:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:48 2025 by rpki-client