Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/3EUWBHZD7JkRDspcJnGAyuHwSlw.roa
File: 3EUWBHZD7JkRDspcJnGAyuHwSlw.roa (raw, json)
Hash identifier: ME++Kf4/9q3ERwOm4txDZHHSV66hBSBCZ+nDuwlCY9U=
Subject key identifier: DC:45:16:04:76:43:EC:99:11:0E:CA:5C:26:71:80:CA:E1:F0:4A:5C
Certificate issuer: /CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Certificate serial: 052A57A3
Authority key identifier: D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/3EUWBHZD7JkRDspcJnGAyuHwSlw.roa
Signing time: Sat 01 Jan 2022 09:53:09 +0000
ROA not before: Sat 01 Jan 2022 09:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3491
IP address blocks: 193.24.65.0/24 maxlen: 25
139.123.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86661027 (0x52a57a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Validity
Not Before: Jan 1 09:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc4516047643ec99110eca5c267180cae1f04a5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:09:fc:ab:1a:96:3d:04:3d:95:09:1c:97:d9:
57:71:7d:34:c6:a8:0d:e0:6b:ae:0d:a3:90:14:de:
be:4e:91:87:71:2f:3a:79:67:ab:7d:b4:8f:8e:eb:
87:ad:98:f6:07:4f:d7:4c:67:0b:47:f1:ed:b7:db:
02:24:79:1c:23:9c:ba:68:b1:79:8e:b3:e6:0d:94:
cf:1f:67:55:cb:c2:d8:83:1d:7b:ba:9d:75:83:4b:
d3:82:f6:9c:ee:05:c0:62:0a:57:de:df:ec:81:b4:
09:59:9e:13:42:ba:65:47:a8:e2:2d:91:cb:eb:f7:
d1:3c:fc:ae:ea:a1:ce:1b:33:9c:53:72:63:0b:91:
13:76:24:d4:a4:6b:57:82:3b:ea:eb:80:d1:dc:46:
09:8e:e6:7a:31:68:bc:28:41:82:fb:03:09:be:52:
71:08:f7:79:05:af:d2:30:e3:3c:1c:c9:7b:91:ee:
88:51:de:fa:05:55:69:97:29:d8:95:a2:50:d0:bf:
c6:8c:47:1c:e2:73:61:06:c8:24:bf:de:17:95:05:
c8:7a:68:66:ba:8f:b9:44:51:64:86:41:f2:11:84:
7b:c5:7e:4f:3e:eb:e4:c6:5a:cc:a8:f7:5a:44:1e:
87:92:cd:dc:43:58:f8:b5:c0:a0:18:c3:e1:89:97:
89:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:45:16:04:76:43:EC:99:11:0E:CA:5C:26:71:80:CA:E1:F0:4A:5C
X509v3 Authority Key Identifier:
keyid:D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/3EUWBHZD7JkRDspcJnGAyuHwSlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.123.232.0/24
193.24.65.0/24
Signature Algorithm: sha256WithRSAEncryption
91:84:5f:ad:2c:bc:57:e9:72:3c:a1:bd:9e:08:2d:32:21:a1:
2c:39:d1:ea:3d:98:3a:14:7d:0b:f7:c5:a9:a9:71:e5:69:0c:
69:09:71:82:41:84:51:f1:13:ab:5f:11:b8:78:72:3b:7a:9d:
66:34:4e:ad:91:a5:f2:10:f3:69:7e:5a:26:71:e2:10:d7:ae:
c3:02:b0:8e:dc:56:b8:4e:bf:80:a8:db:65:6c:b0:69:65:7b:
b0:d9:2e:59:29:26:11:0c:89:49:e4:05:b5:6f:08:8e:a3:7c:
5d:ac:71:83:20:83:4a:d6:e2:af:e1:50:b7:95:07:d7:de:26:
90:1d:a2:96:73:b1:d8:d7:9f:ac:10:7b:c0:3c:59:ad:0f:da:
27:c7:a4:af:b2:dc:7d:d7:14:51:c0:60:c2:04:c2:df:ba:f9:
e1:10:36:04:da:da:8a:bf:f7:f1:43:f0:28:67:76:8e:8c:05:
83:5d:60:64:03:5e:14:c1:10:ab:13:af:51:5e:8b:ed:1e:a1:
7c:ba:54:e2:6a:34:37:5b:56:f2:f2:37:dd:99:a9:32:0b:c3:
53:01:df:c5:bb:e2:56:86:e0:bc:06:44:da:5a:39:59:80:ad:
6d:ce:14:f0:17:5d:a5:e8:05:18:25:ad:a0:35:a1:5a:2b:45:
b7:91:ee:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:02:42 2025 by rpki-client