Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/uEn4yOrU14XoHI75D2tpfuH1RNA.roa
File: uEn4yOrU14XoHI75D2tpfuH1RNA.roa (raw, json)
Hash identifier: DppIme0SCvZYLUOP9Jou/PHPKUY/3B3H4lASKepZbq8=
Subject key identifier: B8:49:F8:C8:EA:D4:D7:85:E8:1C:8E:F9:0F:6B:69:7E:E1:F5:44:D0
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 0AF8399A
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/uEn4yOrU14XoHI75D2tpfuH1RNA.roa
Signing time: Sat 01 Jan 2022 13:02:43 +0000
ROA not before: Sat 01 Jan 2022 13:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8359
IP address blocks: 212.188.0.0/17 maxlen: 17
213.87.0.0/16 maxlen: 16
178.141.0.0/16 maxlen: 16
213.87.128.0/19 maxlen: 19
213.87.64.0/22 maxlen: 22
213.87.70.0/23 maxlen: 23
213.87.76.0/23 maxlen: 23
213.87.80.0/20 maxlen: 20
213.87.200.0/22 maxlen: 22
213.87.204.0/22 maxlen: 22
213.87.208.0/23 maxlen: 23
195.34.0.0/19 maxlen: 19
213.87.240.0/22 maxlen: 22
195.34.15.0/24 maxlen: 24
213.87.244.0/23 maxlen: 23
213.87.248.0/22 maxlen: 22
213.87.160.0/22 maxlen: 22
195.34.38.0/24 maxlen: 24
195.34.32.0/19 maxlen: 19
195.34.36.0/24 maxlen: 24
195.34.42.0/24 maxlen: 24
2a00:1fa0:8000::/33 maxlen: 33
2a00:1fa0::/33 maxlen: 33
2a02:28:1::/48 maxlen: 48
2a00:1fa2::/33 maxlen: 33
2a02:28::/29 maxlen: 29
2a00:1fa3::/33 maxlen: 33
2a00:1fa0::/29 maxlen: 29
2a02:28::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184039834 (0xaf8399a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: Jan 1 13:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b849f8c8ead4d785e81c8ef90f6b697ee1f544d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:df:f4:7f:8d:f7:a3:c2:2f:f7:f0:71:f9:b7:
d9:f2:83:50:b4:d5:ae:ba:fd:0c:3a:16:1c:0a:9d:
92:20:65:f0:c7:28:69:f2:f1:20:63:ad:22:ca:35:
77:ba:67:42:c0:4e:d7:30:cc:60:53:90:59:e9:d3:
ce:53:ab:48:d1:ff:7e:d1:56:ce:4c:d2:35:e1:3e:
2c:99:97:3e:8f:3a:f5:0a:a3:44:74:f6:18:16:f9:
38:ab:97:22:8c:e4:be:ad:cc:ab:9e:fe:55:46:4d:
b7:05:6b:7e:ad:2a:e2:d9:af:a7:6a:da:b8:d0:a4:
0e:7e:8e:cd:93:76:1a:55:99:7f:1b:a7:4a:37:2d:
fe:04:fe:52:50:0d:08:b9:22:8b:84:fd:11:b1:c9:
4d:e1:2d:b8:32:8c:88:ad:5f:6c:a3:7e:34:ce:68:
93:01:7e:6a:cc:29:43:8b:a4:6c:f6:17:b2:56:7d:
c1:7e:e4:5c:25:b9:b8:20:4c:4c:8e:4a:f4:49:d2:
11:60:99:62:48:34:63:1e:68:12:77:01:37:46:20:
25:53:95:1a:9a:da:fd:36:8c:59:38:2a:cb:77:bc:
1e:e1:50:5a:bf:cb:bb:80:59:0e:ab:ff:8e:b1:af:
04:08:5a:44:24:1a:66:6b:44:bd:5a:f1:00:c7:c6:
44:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:49:F8:C8:EA:D4:D7:85:E8:1C:8E:F9:0F:6B:69:7E:E1:F5:44:D0
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/uEn4yOrU14XoHI75D2tpfuH1RNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.141.0.0/16
195.34.0.0/18
212.188.0.0/17
213.87.0.0/16
IPv6:
2a00:1fa0::/29
2a02:28::/29
Signature Algorithm: sha256WithRSAEncryption
72:b9:9f:6c:88:39:19:c5:40:11:fd:07:82:50:92:aa:a2:cf:
5f:6a:c1:78:f7:6f:f1:8d:68:fe:59:5b:b6:ab:49:11:54:f9:
4b:84:15:44:56:33:38:f1:fa:26:cd:fd:7d:1a:c5:ac:f3:5b:
29:f0:85:1f:2e:80:e2:b1:5c:03:a1:44:5b:e6:95:e5:65:e6:
67:a6:1c:12:b2:c2:49:42:a3:2d:3b:ea:dd:64:b8:b3:3f:96:
3d:41:af:b1:0e:3f:0f:59:93:2d:ce:44:3d:07:9c:8d:c4:13:
1d:5f:10:6a:1e:4d:82:73:15:2c:4e:62:35:6c:4d:f5:a6:fe:
a0:92:38:de:e7:9a:85:83:af:47:71:61:48:9e:79:34:65:cc:
82:c8:bc:a6:3a:db:f1:5e:b2:07:bd:57:fb:ce:87:4b:eb:8f:
b3:b7:56:fa:65:7b:60:5f:d7:55:30:d1:65:c6:ed:0c:df:62:
7d:aa:50:06:dd:bb:c5:08:1a:3d:72:f9:03:5f:30:3d:de:b5:
72:81:15:89:cc:a2:77:d9:db:d4:fb:90:f4:3a:99:c2:01:05:
e7:c8:d1:e7:24:9e:3e:e1:9a:3e:17:b2:7b:cd:b4:4c:b4:2c:
e8:0e:d2:75:06:24:a7:72:9e:9c:6a:c9:18:ba:67:17:50:c0:
3b:5f:30:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:21:48 2025 by rpki-client