Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/df0WuA-vi2cLcMKXOpo7TdD3Q_I.roa
File: df0WuA-vi2cLcMKXOpo7TdD3Q_I.roa (raw, json)
Hash identifier: kartiZH2eoOgWknf87J5A37veupVOE+79f4NLlnt6Qc=
Subject key identifier: 75:FD:16:B8:0F:AF:8B:67:0B:70:C2:97:3A:9A:3B:4D:D0:F7:43:F2
Certificate issuer: /CN=d44bd5653013fa7ca34f52284309a688b249e7a0
Certificate serial: 074380B0
Authority key identifier: D4:4B:D5:65:30:13:FA:7C:A3:4F:52:28:43:09:A6:88:B2:49:E7:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EvVZTAT-nyjT1IoQwmmiLJJ56A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/df0WuA-vi2cLcMKXOpo7TdD3Q_I.roa
Signing time: Sat 01 Jan 2022 04:55:00 +0000
ROA not before: Sat 01 Jan 2022 04:55:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44858
IP address blocks: 77.241.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121864368 (0x74380b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44bd5653013fa7ca34f52284309a688b249e7a0
Validity
Not Before: Jan 1 04:55:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75fd16b80faf8b670b70c2973a9a3b4dd0f743f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:02:c7:fa:f3:79:37:da:73:9a:d3:cb:03:e7:
aa:9e:1f:eb:76:4c:a4:1f:9f:f7:45:c4:03:70:1c:
ab:ab:1c:a4:96:80:4a:df:f3:fb:84:07:71:5b:3e:
59:1c:aa:4e:6d:5a:f4:a9:c5:22:23:17:f6:7c:9d:
c3:64:b4:67:46:2a:f0:7e:0c:b4:a1:03:60:4f:ce:
51:40:a1:6d:58:09:2c:1e:93:59:81:41:f4:b7:6b:
38:25:51:ea:6d:c5:31:79:71:e9:72:da:68:2b:1c:
6c:d4:35:fd:4e:a4:da:04:00:08:aa:b9:0d:3a:79:
9e:e0:88:7c:72:0e:75:d3:a0:c3:25:16:f8:4a:98:
05:17:ce:91:dc:ba:7a:e5:36:de:3b:33:12:d5:c6:
71:d9:da:6e:da:3a:cf:02:a3:ff:b5:19:e1:1e:be:
ed:a3:ce:46:8a:7d:3b:7b:26:be:73:d3:43:5a:55:
f4:ca:33:ce:48:9b:81:ef:d4:a1:1a:96:e6:26:96:
a0:54:47:7f:6c:4b:71:a0:b0:bd:1c:e9:4c:11:42:
e1:c9:3b:fa:ba:a5:b5:25:af:a2:4d:8b:9e:c1:f3:
15:64:22:2c:ce:0d:a8:d2:4e:14:ee:53:fd:ab:10:
c9:3d:94:03:67:58:73:fd:3d:c2:3c:b6:71:d4:03:
29:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FD:16:B8:0F:AF:8B:67:0B:70:C2:97:3A:9A:3B:4D:D0:F7:43:F2
X509v3 Authority Key Identifier:
keyid:D4:4B:D5:65:30:13:FA:7C:A3:4F:52:28:43:09:A6:88:B2:49:E7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EvVZTAT-nyjT1IoQwmmiLJJ56A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/df0WuA-vi2cLcMKXOpo7TdD3Q_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/1EvVZTAT-nyjT1IoQwmmiLJJ56A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.68.0/22
Signature Algorithm: sha256WithRSAEncryption
22:5f:85:4b:03:f3:45:d5:78:3b:47:32:5b:34:2a:e3:de:fa:
f1:9e:e4:66:1c:5d:f8:3b:e8:5f:77:ec:9e:99:1b:32:a3:0d:
8f:97:4e:d0:ed:51:9c:ea:d1:b2:f6:26:07:ed:05:05:aa:70:
4b:16:1e:36:3f:bd:b8:58:bb:c0:99:bf:b4:45:d8:60:39:ce:
f6:d0:fb:82:9e:12:b8:cc:29:27:f0:9b:e6:e6:52:1f:10:b9:
ba:ac:ca:1c:64:1b:e0:d3:ee:e7:38:3c:f3:a1:1d:48:e6:bb:
03:fe:09:82:56:75:b2:ca:9d:bc:96:60:ca:18:a9:92:d8:9f:
39:4f:04:4f:0a:27:6a:d6:02:b7:01:4c:86:62:5f:b0:a1:9e:
d5:5a:d0:ad:c6:1f:32:32:e2:6f:37:c4:b8:b2:76:a8:66:b8:
d0:6f:1e:66:ea:a2:7f:20:fa:44:94:10:4a:a4:1e:9a:09:df:
03:22:e1:10:38:99:2b:44:18:af:8a:36:37:bc:e0:00:d2:4f:
6e:e6:ad:76:20:e3:a2:cf:58:87:49:ea:40:eb:0b:bf:1e:69:
5a:89:3d:24:7c:24:1d:20:30:fe:4e:ab:3c:6c:69:c9:85:86:
7b:84:ba:3c:97:68:83:4c:83:15:54:40:3b:9e:8b:29:1d:7b:
c9:09:cd:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 12:29:20 2025 by rpki-client