Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6ffcd2-5bf1-41e2-86a8-7bc1e4f56c88/1/4ZzOcn13MUh85nrBS-51wVW6pW0.roa
File: 4ZzOcn13MUh85nrBS-51wVW6pW0.roa (raw, json)
Hash identifier: SxW3DmTYq+JPqU47X5Iec3tutLpxEyN8rIpng1ZGIj0=
Subject key identifier: E1:9C:CE:72:7D:77:31:48:7C:E6:7A:C1:4B:EE:75:C1:55:BA:A5:6D
Certificate issuer: /CN=d2bbc90555d6d0d3432babb95b60cdeeea580f58
Certificate serial: 04EA1CA7
Authority key identifier: D2:BB:C9:05:55:D6:D0:D3:43:2B:AB:B9:5B:60:CD:EE:EA:58:0F:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rvJBVXW0NNDK6u5W2DN7upYD1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6ffcd2-5bf1-41e2-86a8-7bc1e4f56c88/1/4ZzOcn13MUh85nrBS-51wVW6pW0.roa
Signing time: Sat 01 Jan 2022 07:59:22 +0000
ROA not before: Sat 01 Jan 2022 07:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213025
IP address blocks: 91.200.179.0/24 maxlen: 24
2a0a:d700::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82451623 (0x4ea1ca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2bbc90555d6d0d3432babb95b60cdeeea580f58
Validity
Not Before: Jan 1 07:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e19cce727d7731487ce67ac14bee75c155baa56d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:88:36:10:c1:ef:a6:7b:4a:0e:4e:5c:e9:c3:
30:e2:fa:84:9f:5a:31:1a:77:6c:25:dc:76:c3:37:
a9:b8:43:05:8e:a4:ac:11:bf:27:ee:21:32:d8:fa:
48:6a:3e:f3:8c:c8:5f:fb:a6:29:da:53:cc:44:46:
f2:3c:e5:6f:23:08:3a:1d:89:14:59:ca:6a:26:b3:
49:cf:07:13:99:e2:12:fa:2f:90:bc:e9:90:33:f0:
68:cd:20:07:26:ee:44:1a:d0:24:83:6f:87:a1:3e:
cf:c5:da:5a:bd:76:3a:b2:98:c5:61:fc:f0:81:e8:
c0:1e:d7:00:48:5a:b5:0a:b9:54:66:1d:5c:41:a5:
79:96:25:98:b8:4a:17:f3:3c:ac:b3:f2:bb:9c:1f:
17:5a:79:9a:13:a0:6b:ad:cf:9d:88:69:a8:67:da:
5e:ba:41:31:96:0c:02:0f:47:14:ab:c6:d1:a1:31:
b0:4e:cf:6e:a2:e8:c4:d4:44:38:70:fd:73:62:dd:
08:77:46:fc:bf:69:5e:7f:7c:d7:78:31:a6:18:aa:
c2:fb:57:f3:00:7b:32:dd:a9:a1:74:ed:d4:24:db:
dd:87:4c:f8:e5:8a:ce:68:22:41:d4:84:d6:41:c2:
48:28:0a:8a:71:1b:b2:fd:ae:99:1d:b2:c0:dd:b3:
04:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9C:CE:72:7D:77:31:48:7C:E6:7A:C1:4B:EE:75:C1:55:BA:A5:6D
X509v3 Authority Key Identifier:
keyid:D2:BB:C9:05:55:D6:D0:D3:43:2B:AB:B9:5B:60:CD:EE:EA:58:0F:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rvJBVXW0NNDK6u5W2DN7upYD1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6ffcd2-5bf1-41e2-86a8-7bc1e4f56c88/1/4ZzOcn13MUh85nrBS-51wVW6pW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6ffcd2-5bf1-41e2-86a8-7bc1e4f56c88/1/0rvJBVXW0NNDK6u5W2DN7upYD1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.179.0/24
IPv6:
2a0a:d700::/32
Signature Algorithm: sha256WithRSAEncryption
40:64:74:99:a1:af:68:b1:e0:33:f9:41:1d:ea:63:09:2a:4d:
1c:9a:cc:cb:26:4e:32:50:b3:b0:f3:97:ef:1f:fa:73:c4:e4:
0f:94:86:c9:ef:96:f4:aa:54:ad:16:d5:8b:7c:cd:74:e0:37:
19:b5:99:32:d5:0d:4d:99:c4:c1:83:f1:92:df:83:0a:1d:28:
22:75:96:1e:e3:ee:3f:25:fc:ea:30:4c:b5:3c:a3:ba:b9:eb:
6e:5b:b9:2f:5a:07:f3:68:03:27:ef:6b:35:7f:73:b5:6d:60:
73:19:d6:5e:bd:d2:f1:ec:01:f8:d6:f4:4f:e8:eb:85:64:05:
18:5d:ba:a8:0b:e3:cf:29:d4:f2:f9:60:28:27:0b:08:3b:61:
9a:d5:e2:9a:ec:c5:40:b8:97:cd:e7:69:02:e5:4d:c8:b6:b8:
e8:7d:06:a1:f0:de:82:6b:33:fb:d5:45:19:97:0d:bd:d4:14:
17:d0:0d:f1:bc:fe:f5:4e:11:bd:fe:5f:73:33:2d:d4:f6:25:
47:39:b5:db:0d:66:88:4b:f7:00:93:0f:73:f4:5b:b0:55:24:
f5:0b:c0:cb:2b:43:9a:71:62:0c:39:b5:a0:80:49:c5:a7:23:
51:bc:f4:a4:93:47:15:cd:6d:5b:c1:d5:fe:4c:b5:90:c5:8b:
d5:61:4f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:33:33 2025 by rpki-client