Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/Ls7B5d-DBSsRVHB8R1na8J60KWw.roa
File: Ls7B5d-DBSsRVHB8R1na8J60KWw.roa (raw, json)
Hash identifier: 3h7pufnc/QQVH2FksEbizEzfZWH4riEZl5zjI8kmQ5E=
Subject key identifier: 2E:CE:C1:E5:DF:83:05:2B:11:54:70:7C:47:59:DA:F0:9E:B4:29:6C
Certificate issuer: /CN=e32bcd40c6774677d2c3702ef59edf49d0b36c6c
Certificate serial: 183DE5B1
Authority key identifier: E3:2B:CD:40:C6:77:46:77:D2:C3:70:2E:F5:9E:DF:49:D0:B3:6C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/Ls7B5d-DBSsRVHB8R1na8J60KWw.roa
Signing time: Sat 01 Jan 2022 10:58:44 +0000
ROA not before: Sat 01 Jan 2022 10:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209752
IP address blocks: 77.69.248.0/24 maxlen: 24
2001:1a40:10::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406709681 (0x183de5b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32bcd40c6774677d2c3702ef59edf49d0b36c6c
Validity
Not Before: Jan 1 10:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ecec1e5df83052b1154707c4759daf09eb4296c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1b:c6:c0:a7:bd:90:04:fc:28:0c:c0:22:ae:
48:21:9d:7f:5d:23:42:25:37:48:eb:20:54:5e:9a:
81:09:6c:c5:26:b2:2e:98:df:4d:0e:42:a0:de:11:
33:ed:db:10:b4:0c:9d:3b:7b:42:95:af:06:37:92:
79:e0:86:72:fe:1f:b2:93:0b:c2:06:91:49:22:f7:
d6:ae:ea:de:b6:f6:2f:e8:c5:7c:6b:01:86:5c:ad:
f8:5d:33:fc:dd:48:d5:a2:86:93:a2:10:eb:2a:d1:
c4:aa:15:04:02:c8:f6:da:76:e3:f8:52:19:54:aa:
b6:47:38:84:fd:e1:ee:d1:b2:09:a6:62:0d:21:10:
89:cd:67:62:1c:a7:d5:de:7f:47:78:ce:04:e8:75:
3d:ed:40:99:5d:69:d8:96:26:42:be:f8:ce:a6:29:
dc:93:38:26:82:df:9e:df:12:e7:3c:63:ab:32:6a:
11:ed:07:95:b6:f9:de:5a:4f:c2:78:0a:52:6c:63:
16:3a:01:ef:95:ce:ed:bc:bd:00:01:91:9f:a5:69:
31:02:b7:3b:5b:ac:52:36:35:d6:77:ec:ec:f9:00:
b1:fe:e6:05:3c:5b:b6:20:fd:b6:98:71:3f:56:6b:
7b:1b:6f:2e:5b:39:27:8e:08:b6:54:d7:38:46:a9:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CE:C1:E5:DF:83:05:2B:11:54:70:7C:47:59:DA:F0:9E:B4:29:6C
X509v3 Authority Key Identifier:
keyid:E3:2B:CD:40:C6:77:46:77:D2:C3:70:2E:F5:9E:DF:49:D0:B3:6C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/Ls7B5d-DBSsRVHB8R1na8J60KWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.69.248.0/24
IPv6:
2001:1a40:10::/64
Signature Algorithm: sha256WithRSAEncryption
41:c2:6f:3e:8e:ce:fa:86:e4:5f:f2:d6:81:67:54:cd:d5:c6:
a1:1a:89:fb:aa:58:ac:87:d9:06:66:58:a4:f6:ca:89:e5:a4:
0c:13:85:40:30:76:1e:99:fa:b0:01:f1:4c:67:82:9e:c5:5e:
2c:c7:d1:95:ad:7c:16:ce:dc:04:17:b3:6a:87:5b:b7:6c:05:
fd:6d:98:2a:b0:12:e1:7d:81:68:0f:20:1e:c9:b6:02:9b:08:
a3:02:97:b5:2f:bb:6b:8b:2b:72:14:08:7d:2c:9f:f7:20:11:
30:a7:0d:5a:2b:8a:36:df:c5:6d:ec:c7:56:b5:77:80:cb:49:
62:1e:ae:ab:ef:38:49:48:c4:b8:b6:a2:c5:30:47:95:86:3f:
71:ba:34:c0:63:3a:4e:a3:ff:da:6a:af:a5:e1:6f:05:e6:15:
96:94:3a:72:b0:89:ad:a8:0d:8b:7b:38:c8:0e:7e:48:a6:1c:
42:94:21:f2:a3:95:23:a3:20:53:dc:f6:a4:82:9c:a4:4d:ad:
a2:7e:17:79:e5:20:19:ac:70:a9:42:a1:73:2c:a6:3e:f3:03:
b5:e1:3b:3a:45:fe:57:f3:47:4b:fe:6d:38:06:4d:73:5f:f0:
66:64:5f:71:95:9a:fe:dd:bf:8d:16:5b:03:4b:ea:0b:f4:71:
93:3d:c9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:36:06 2025 by rpki-client