Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/n0NuFT3KPcBgwOOSszC3dSvoDJY.roa
File: n0NuFT3KPcBgwOOSszC3dSvoDJY.roa (raw, json)
Hash identifier: v8W2ak6eJf2igM3o0sS85mY/pbatiDcPSlOSWNt8elU=
Subject key identifier: 9F:43:6E:15:3D:CA:3D:C0:60:C0:E3:92:B3:30:B7:75:2B:E8:0C:96
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 3321D6F0
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/n0NuFT3KPcBgwOOSszC3dSvoDJY.roa
Signing time: Sat 01 Jan 2022 10:59:08 +0000
ROA not before: Sat 01 Jan 2022 10:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34262
IP address blocks: 82.141.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857855728 (0x3321d6f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f436e153dca3dc060c0e392b330b7752be80c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e6:c9:91:29:37:00:d4:82:ef:89:cd:a6:c3:
a5:5a:72:30:56:07:5e:dc:72:e1:8a:5d:a0:94:f2:
64:f9:b7:85:bc:34:ae:96:5d:24:c6:9c:f2:93:0e:
17:7a:ae:63:38:ec:0c:8a:49:63:0f:5a:c0:59:38:
ca:02:df:e5:94:88:39:ec:95:6c:7e:f4:21:3d:24:
33:6b:70:10:2c:16:8d:14:66:d8:46:b0:bc:35:a3:
e1:53:24:f4:7d:3c:11:8d:ea:39:16:26:e5:0e:d3:
db:e4:c1:67:7e:07:a3:9e:26:20:a0:b1:0b:c8:6e:
a5:ec:11:b3:e3:a5:bd:62:7a:17:1e:54:c8:52:94:
0e:96:06:17:7b:36:fd:f1:8b:f6:cb:1f:b4:e4:bc:
72:94:cd:1d:ee:e1:62:5b:06:58:69:21:8c:a8:a1:
dd:aa:22:37:a6:da:e8:82:78:94:cc:07:ac:21:cd:
73:a9:0b:ca:0f:d5:93:03:d7:c2:d5:f8:74:a4:ce:
86:8e:47:04:b5:60:b3:a6:a5:7f:a6:cc:4b:be:85:
b7:db:80:b8:c8:4e:21:ca:e8:96:21:72:e5:82:f5:
0f:77:fd:c6:c0:89:fb:af:c7:97:fc:c5:22:a4:3d:
a8:30:ed:48:81:2e:bd:2b:d3:1d:e4:eb:b9:ff:ed:
fa:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:43:6E:15:3D:CA:3D:C0:60:C0:E3:92:B3:30:B7:75:2B:E8:0C:96
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/n0NuFT3KPcBgwOOSszC3dSvoDJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.141.154.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:62:fc:aa:d3:d8:d2:97:2d:aa:aa:c9:d0:d3:3e:f4:49:82:
5d:9f:44:99:fc:f1:17:66:44:5c:98:7f:8e:2b:43:98:c8:cf:
e8:da:d2:5f:fc:1e:d8:3c:70:4e:03:98:5d:e0:73:39:ed:61:
eb:b7:5d:eb:15:fc:e6:cf:1e:f6:ee:8c:98:93:6b:2d:3f:10:
5c:2e:fc:49:dc:63:63:47:96:6a:b5:e3:65:30:75:bd:51:c3:
2b:ab:6f:6b:07:f9:15:29:06:aa:09:04:b6:6c:b8:16:45:0c:
ca:05:e9:61:80:5a:ff:05:a2:f8:30:bb:1d:0b:c4:12:cd:c5:
e2:e6:bf:9a:63:d5:0d:e0:4d:76:95:be:10:95:7a:35:79:a5:
a8:b9:8a:9f:70:a2:8d:57:dd:b6:7c:e8:93:ba:d1:ca:a1:3a:
39:4c:26:45:80:6d:e4:3b:70:55:28:dd:6a:84:50:89:57:f8:
5e:6e:ec:e8:41:b8:74:36:90:04:30:87:73:6b:a8:60:c9:e0:
38:24:95:ba:15:af:d0:8b:fd:34:c3:a2:e4:dc:29:27:9f:9f:
15:51:23:ed:cc:69:8a:3f:34:a5:1c:fb:87:eb:de:c7:46:2d:
23:e8:47:18:aa:45:d8:af:fd:c4:4d:77:c3:68:ae:d7:58:61:
4c:d9:e0:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:28:43 2025 by rpki-client