Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/3x_d33TU4OgxHLUyZeHwirXe-zE.roa
File: 3x_d33TU4OgxHLUyZeHwirXe-zE.roa (raw, json)
Hash identifier: SYCtPtTfzi8mON5j4HRI1vnYieUyyjw7gPYo6OvdN8o=
Subject key identifier: DF:1F:DD:DF:74:D4:E0:E8:31:1C:B5:32:65:E1:F0:8A:B5:DE:FB:31
Certificate issuer: /CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Certificate serial: 0E90E0EE
Authority key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/3x_d33TU4OgxHLUyZeHwirXe-zE.roa
Signing time: Fri 22 Apr 2022 06:38:40 +0000
ROA not before: Fri 22 Apr 2022 06:38:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 195.13.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244375790 (0xe90e0ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Validity
Not Before: Apr 22 06:38:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df1fdddf74d4e0e8311cb53265e1f08ab5defb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:16:07:b4:fc:37:98:ec:bb:d2:d2:02:11:94:
89:cd:33:84:6b:2e:a6:51:c2:3a:ca:af:89:b4:b6:
be:03:fd:55:12:66:f5:e5:b2:c2:33:7f:fa:1e:4b:
69:9c:db:60:96:f0:43:66:15:20:26:42:24:18:2b:
c3:27:f1:4b:c5:12:63:17:75:ba:7a:89:d1:c1:51:
db:1d:30:aa:45:fc:61:90:16:c3:57:e0:a9:0b:80:
e6:36:71:39:a7:87:79:b1:73:63:0e:67:6f:3e:ac:
39:a6:54:c0:fb:cc:84:dc:29:1a:95:04:e8:d6:aa:
87:8f:ba:6d:10:71:c9:c9:8d:07:f6:a3:6b:9b:77:
f5:17:5e:ba:e6:e9:c7:52:d9:ad:9e:ea:86:24:bc:
31:ef:ff:d1:19:3c:dd:cc:d7:66:a1:52:99:04:54:
c2:03:33:11:2e:28:12:3f:4b:63:5f:96:d2:24:76:
10:7c:e9:c9:d1:4e:d8:93:3f:06:b5:78:f8:32:02:
69:43:8f:f0:39:c6:13:02:5a:16:19:73:1f:a8:3a:
78:48:47:0f:fc:dd:1b:68:d5:3e:23:50:86:c1:96:
29:54:4b:b0:ce:dc:5a:e1:20:26:1e:39:c0:55:41:
1f:03:19:f3:85:03:5c:2c:75:e4:84:d9:a2:93:85:
0f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1F:DD:DF:74:D4:E0:E8:31:1C:B5:32:65:E1:F0:8A:B5:DE:FB:31
X509v3 Authority Key Identifier:
keyid:9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/3x_d33TU4OgxHLUyZeHwirXe-zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.13.63.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:60:34:0a:32:8d:1b:ef:2e:82:05:50:d0:ba:ab:c6:b1:b2:
e2:c8:05:90:2e:bb:d9:3d:31:3e:44:a9:41:7d:f7:10:cf:c7:
71:86:5b:cc:68:9f:85:03:b7:9b:3f:60:4d:35:e3:01:d2:43:
4e:70:02:99:b7:e1:a2:af:f8:14:13:55:06:e1:f4:d3:b6:22:
7b:4a:a9:b2:6a:91:18:c3:46:a1:50:d6:34:21:46:40:83:2b:
af:aa:8b:8a:7c:7a:18:63:dd:17:d8:bc:e7:a4:73:2c:bc:0c:
ab:e2:f7:98:e6:d8:f7:2c:37:d7:2b:d0:d8:41:79:5f:ad:39:
7e:71:8b:b1:20:c5:65:77:73:eb:73:91:0b:05:21:50:5d:09:
5c:bf:c0:49:fa:0e:91:81:f6:4a:2d:fb:8d:9e:11:60:81:21:
e0:e6:f6:c3:48:f1:6c:72:8a:9e:a4:c1:07:51:49:33:f2:9d:
d1:91:a4:0b:46:09:f2:73:14:64:47:6a:f3:b4:93:e0:31:2a:
ea:49:6c:51:08:c7:83:92:57:e7:59:78:35:9f:d8:9e:b1:54:
48:f9:b0:13:ab:8e:08:86:ff:3f:67:de:e1:c5:ad:d1:25:a7:
41:41:c0:62:61:b9:7e:02:ed:e9:ac:b2:82:ea:8c:5a:1d:13:
03:2e:e4:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 02:44:19 2025 by rpki-client