Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/vF9X3651N1n1DxHJM1lqzsuIlTA.roa
File: vF9X3651N1n1DxHJM1lqzsuIlTA.roa (raw, json)
Hash identifier: Y0qWa5uDfj2tVXQXtDlc73eKaf0GXG2afVnWSQMqq84=
Subject key identifier: BC:5F:57:DF:AE:75:37:59:F5:0F:11:C9:33:59:6A:CE:CB:88:95:30
Certificate issuer: /CN=4d0f2ee77621ea25c2819d4eac95c581877e30cd
Certificate serial: 017A89
Authority key identifier: 4D:0F:2E:E7:76:21:EA:25:C2:81:9D:4E:AC:95:C5:81:87:7E:30:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/vF9X3651N1n1DxHJM1lqzsuIlTA.roa
Signing time: Thu 17 Mar 2022 19:36:12 +0000
ROA not before: Thu 17 Mar 2022 19:36:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58340
IP address blocks: 83.146.128.0/20 maxlen: 20
193.177.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96905 (0x17a89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0f2ee77621ea25c2819d4eac95c581877e30cd
Validity
Not Before: Mar 17 19:36:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc5f57dfae753759f50f11c933596acecb889530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:39:dc:9d:ef:63:82:97:14:3d:79:22:0d:5c:
d6:6f:56:35:bd:bc:80:72:c7:70:89:2a:03:c1:e1:
25:3f:d4:b5:4e:4e:40:52:47:3c:32:4f:2c:1d:80:
0a:3f:74:f9:37:ea:c0:8c:d3:30:c2:ad:01:9d:5b:
09:14:00:37:f0:a7:a1:28:22:34:c8:a5:cf:3a:51:
df:46:91:6e:5c:ae:2f:31:55:49:b8:98:88:f6:7e:
a4:8f:78:47:ae:0d:42:37:f0:fe:11:45:72:b1:60:
39:b1:a4:cd:2e:6e:8f:24:b3:1f:3f:f9:3d:02:94:
3a:e1:77:3d:12:91:50:ca:f2:23:a0:fc:ed:2a:f3:
34:64:2d:d1:f1:9a:c0:94:09:e2:fb:fb:bb:c6:b5:
00:fa:ef:75:fc:89:69:42:52:14:18:13:6d:ab:06:
20:7c:1b:7d:03:d0:af:85:97:f0:34:c2:a9:0c:ac:
78:d1:91:fd:97:8b:89:75:a3:9b:8d:8c:a0:29:e1:
d4:ba:9b:7c:ac:59:0a:84:da:c0:94:23:1a:54:8f:
a0:0f:1d:85:78:d3:d7:db:f3:2d:e1:be:98:9e:60:
1e:70:34:10:30:f9:10:b1:a4:2f:61:f3:d6:10:97:
bf:b2:d0:0c:7b:9d:7a:45:91:06:58:f3:cd:c1:4c:
a7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:5F:57:DF:AE:75:37:59:F5:0F:11:C9:33:59:6A:CE:CB:88:95:30
X509v3 Authority Key Identifier:
keyid:4D:0F:2E:E7:76:21:EA:25:C2:81:9D:4E:AC:95:C5:81:87:7E:30:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/vF9X3651N1n1DxHJM1lqzsuIlTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.146.128.0/20
193.177.188.0/22
Signature Algorithm: sha256WithRSAEncryption
95:73:a9:7e:08:ee:b8:c6:03:94:42:8d:82:b7:bd:e6:d5:10:
33:6c:dc:f2:52:b5:3c:70:20:a1:f4:6d:82:59:20:ff:e4:01:
b5:fa:74:7c:de:bc:40:80:96:3f:7e:03:60:ca:7a:97:02:87:
54:fa:5c:2b:d8:d5:5a:2c:f1:05:2d:ac:13:1e:57:9c:18:06:
71:41:cc:cc:ba:f3:78:8a:0e:59:98:01:33:3d:90:0f:e4:35:
b0:f6:1c:15:44:85:65:8c:46:d3:37:77:2d:7f:f6:85:94:49:
f5:d6:4e:6f:42:61:6a:00:f1:d1:87:5b:07:a0:a6:42:ed:b4:
86:f4:d3:d6:44:04:04:ae:65:a9:d0:dc:2a:3f:ff:d9:84:2c:
f4:03:3e:5b:1d:f9:41:a9:80:e8:ac:26:39:47:fb:ff:9a:a8:
cc:4c:f6:88:d6:5d:e2:e6:18:bb:7d:de:f7:c6:fd:82:3c:28:
e2:dc:d5:1b:74:49:d9:c3:2f:6e:c7:5c:69:64:f9:36:a9:d1:
66:49:36:7d:13:06:b6:cd:27:bb:7a:68:3e:aa:86:b1:bd:b8:
72:fb:b0:fb:5e:23:d1:00:ba:47:21:fa:77:90:68:64:47:af:
49:9d:ae:db:a0:cc:97:41:61:1f:9f:f7:c9:03:d0:be:f3:55:
c1:3e:96:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:13 2025 by rpki-client