Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/P_XEmhfhBUmjfiCwDGK77Ut2KbE.roa
File: P_XEmhfhBUmjfiCwDGK77Ut2KbE.roa (raw, json)
Hash identifier: 0t8o8KDi4JlRzT2/uJWAYE8wz0JP4W6lMIo3mBXNVnQ=
Subject key identifier: 3F:F5:C4:9A:17:E1:05:49:A3:7E:20:B0:0C:62:BB:ED:4B:76:29:B1
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 065F2F2B
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/P_XEmhfhBUmjfiCwDGK77Ut2KbE.roa
Signing time: Tue 19 Apr 2022 14:11:15 +0000
ROA not before: Tue 19 Apr 2022 14:11:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201247
IP address blocks: 185.13.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106901291 (0x65f2f2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Apr 19 14:11:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ff5c49a17e10549a37e20b00c62bbed4b7629b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:eb:f6:c3:7a:86:c6:f4:c6:2b:58:30:5b:76:
bb:70:5e:3f:f7:c6:7b:ce:15:a6:37:f9:ce:aa:39:
2e:08:b7:1f:79:03:37:17:85:0a:04:6f:37:6d:20:
c0:69:63:a6:10:25:7c:98:55:13:5c:23:06:e8:c4:
16:70:c0:1c:e0:16:6e:0f:9d:a3:d1:ed:b0:88:cd:
87:2a:a2:09:8f:a8:69:e8:d0:31:11:28:5d:dc:ef:
91:f6:25:2b:d1:77:2b:e2:fe:0d:88:ea:b3:c9:e1:
fa:25:bf:98:48:a6:57:be:40:79:f2:49:b9:38:94:
77:c9:79:07:b9:6f:cf:34:42:41:36:6d:0f:f9:04:
ce:f3:e3:dc:ab:1e:39:92:5d:e5:4a:e3:d8:ff:d6:
7a:25:0d:c7:12:6a:bc:7e:36:d7:44:af:4e:d8:2c:
59:9c:28:43:f7:b3:ae:33:ab:18:ea:41:27:47:18:
c5:0e:93:87:37:78:d5:9a:a2:57:d1:0f:31:c0:4f:
aa:ef:9f:2a:6b:c5:93:f5:14:c5:38:e9:80:5d:30:
ee:6e:54:0f:f9:dc:14:2a:4c:73:1e:b1:e0:2b:a7:
1b:3e:63:98:46:72:d0:ca:8b:8b:c3:3e:06:9c:63:
4c:1f:b6:2c:73:02:96:76:13:36:19:fc:ac:16:f3:
3c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F5:C4:9A:17:E1:05:49:A3:7E:20:B0:0C:62:BB:ED:4B:76:29:B1
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/P_XEmhfhBUmjfiCwDGK77Ut2KbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.34.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:47:d8:f0:ef:4a:82:02:4e:d4:bd:73:88:91:a0:32:72:cd:
2d:8f:a4:06:eb:aa:5d:e9:40:b7:70:8d:c0:7a:48:d8:39:d2:
e1:9c:39:ec:1b:18:2e:18:f2:f3:83:aa:30:10:32:70:7f:22:
15:84:af:3a:3c:c2:39:49:0a:70:83:0e:7b:e3:02:d7:6f:f4:
5f:8c:dd:8b:e1:17:77:d1:ab:64:f2:33:de:f3:10:a7:9c:9c:
93:d9:ee:64:12:e3:6b:9b:0f:8c:40:80:e7:15:0d:8f:76:92:
ab:14:a0:86:4d:67:d0:f5:78:6b:8f:c3:23:ec:66:19:a4:03:
42:af:0b:49:89:78:23:6a:d0:5b:e6:7f:8c:45:22:39:c8:69:
51:fd:6b:00:61:94:16:32:66:37:16:25:a2:91:ba:db:cb:ec:
93:e6:63:5c:cc:1f:9f:dd:c3:01:55:8f:79:15:d1:41:e0:1c:
60:e7:e6:16:fe:bb:7f:1c:2b:88:33:77:70:cc:d9:2a:9e:3f:
4e:f2:b9:14:ec:22:ad:7c:31:55:86:c0:b1:85:cb:5c:2a:8b:
8d:2c:5b:ef:ca:1d:ff:a2:42:ad:dd:a0:8f:21:68:74:d3:48:
98:92:ce:f9:54:d5:c3:07:38:c3:c8:cf:6c:94:2e:50:ae:89:
bb:79:dc:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:21:52 2025 by rpki-client