Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/3pTBo2J6wfakIUnFUeKK4gyCJKc.roa
File: 3pTBo2J6wfakIUnFUeKK4gyCJKc.roa (raw, json)
Hash identifier: gFGcKClKzV7coFfjkcvIBWXOXI0u0njmCFgKYlJLP0k=
Subject key identifier: DE:94:C1:A3:62:7A:C1:F6:A4:21:49:C5:51:E2:8A:E2:0C:82:24:A7
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 1667B94D
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/3pTBo2J6wfakIUnFUeKK4gyCJKc.roa
Signing time: Fri 10 Jun 2022 07:38:02 +0000
ROA not before: Fri 10 Jun 2022 07:38:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207433
IP address blocks: 84.47.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375896397 (0x1667b94d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jun 10 07:38:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de94c1a3627ac1f6a42149c551e28ae20c8224a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:24:2a:0a:2a:88:35:ee:06:1f:65:9d:d5:fb:
8a:d5:a5:5a:e8:8d:dd:86:a4:be:7d:35:4b:98:98:
79:96:06:5d:b7:d1:0f:c6:a7:94:f7:a6:f5:05:67:
8e:27:2c:9b:07:cd:4f:d8:91:a2:76:fb:df:46:eb:
0c:44:25:6a:8c:68:e1:e2:e7:fc:06:36:21:ff:64:
78:76:27:0a:dd:5e:cf:ff:f1:4c:7e:2f:27:f1:3d:
bf:c1:7a:6e:90:7e:ae:fe:bb:f0:af:6f:a5:40:c5:
84:56:4a:a1:cc:69:3a:2f:95:ec:b5:a6:84:5f:d1:
5c:c9:28:90:f9:f7:94:f5:83:c1:2b:6a:ef:6e:ed:
a6:9c:df:c4:f8:08:e8:6e:0d:08:ee:14:a9:0a:e2:
d4:08:89:61:29:e1:ea:d6:a9:56:dd:13:bf:f5:f7:
f0:fa:3f:bc:f0:69:d6:73:4f:19:17:0f:9e:35:e2:
da:4d:f7:94:f3:59:fb:7b:c8:4b:3b:55:a8:02:6c:
0c:73:18:6f:aa:1c:25:b8:17:91:e7:82:df:19:9d:
4d:f9:96:0a:38:50:8f:4e:dd:b4:21:48:c4:1c:44:
1c:f4:56:31:90:7d:a6:e0:3f:a3:61:3d:62:5c:cf:
72:01:15:b2:0a:5a:32:67:1f:41:af:b5:f9:a9:de:
6a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:94:C1:A3:62:7A:C1:F6:A4:21:49:C5:51:E2:8A:E2:0C:82:24:A7
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/3pTBo2J6wfakIUnFUeKK4gyCJKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.163.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a4:83:cf:79:6c:66:2a:58:f4:ed:9e:0a:9a:b7:af:b7:0a:
f3:76:44:2c:4e:eb:b6:1c:4b:a2:56:4e:18:55:1d:f2:32:57:
45:82:56:97:23:de:65:ea:5d:e3:9f:18:30:cd:fc:ca:b8:85:
ab:3c:b5:d8:b5:3d:e1:4b:a4:a8:0e:8e:14:74:e7:29:53:45:
48:67:56:f2:4f:cb:49:06:41:88:cd:7e:07:30:69:3c:17:52:
7c:bf:d9:93:3a:db:c4:14:a5:e5:6b:be:aa:43:34:7b:f9:96:
85:26:12:07:84:f6:0b:8e:78:22:20:ec:41:5f:94:f8:ba:0c:
7c:a6:a1:ba:40:2a:fb:91:fa:58:03:d0:07:32:2c:83:5f:d9:
c0:19:bf:b1:fd:5f:ce:78:9a:78:35:83:5d:7c:c7:78:ad:df:
1e:1c:3a:d0:b6:5a:1f:23:e2:0c:7c:8e:0d:95:92:fa:2a:a4:
a1:da:db:85:17:e6:91:ec:1a:af:c5:1e:69:2e:68:53:8d:83:
71:fd:21:26:9e:35:ad:be:ca:c5:10:de:7a:85:0d:e0:20:c6:
80:74:5a:22:09:a6:88:64:ce:3a:f9:48:9f:51:08:eb:67:d9:
77:89:9b:ff:c6:78:42:ca:12:d2:e1:25:48:35:89:33:73:49:
d9:2a:35:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:13:27 2025 by rpki-client