Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/xDtdBydMrAkAlmwJ8M7nHkDIy-4.roa
File: xDtdBydMrAkAlmwJ8M7nHkDIy-4.roa (raw, json)
Hash identifier: Kj6HtB5XuQKkhHuFGYLf+dy7cv5JZ7G+N4gs8yxINSI=
Subject key identifier: C4:3B:5D:07:27:4C:AC:09:00:96:6C:09:F0:CE:E7:1E:40:C8:CB:EE
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 01857127928A7BDB6437193000F54718E9BA
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/xDtdBydMrAkAlmwJ8M7nHkDIy-4.roa
Signing time: Mon 02 Jan 2023 06:24:56 +0000
ROA not before: Mon 02 Jan 2023 06:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211185
IP address blocks: 80.79.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:92:8a:7b:db:64:37:19:30:00:f5:47:18:e9:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 2 06:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c43b5d07274cac0900966c09f0cee71e40c8cbee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c8:0c:2c:91:34:75:d0:af:3f:e7:55:93:7b:
35:87:42:66:3f:8f:ff:9f:16:82:6e:53:ca:9a:4e:
04:50:2f:a5:06:9d:f9:7b:b9:bf:98:ff:f6:02:79:
fb:98:07:d8:52:4b:8f:7d:a8:9e:23:60:b1:f8:0b:
0e:d3:52:89:0c:c9:c9:5f:ac:30:8c:96:96:6b:8e:
ac:17:ce:69:6d:58:97:9d:f9:a7:ea:e9:3e:e8:a8:
35:c9:3d:f3:d1:3e:28:c8:1b:d8:38:2f:34:a5:1c:
b4:74:ab:d3:45:c8:68:8c:86:f2:2d:0e:b6:fd:41:
38:af:78:e8:da:73:a8:35:ae:93:2a:84:25:7a:07:
d4:35:8f:df:59:c6:c8:65:c1:2a:7e:43:35:9e:32:
b9:16:02:06:0e:42:97:3c:ba:1c:96:3b:c9:47:c3:
94:44:57:78:57:d7:48:ff:04:e4:3e:09:41:66:6c:
26:d2:e5:d9:b4:b8:02:c4:82:d3:38:8c:1e:bc:c3:
e7:7b:07:14:a1:c5:77:79:4b:cd:2a:ea:ff:d9:05:
88:c1:b8:02:65:2d:a6:c3:82:b1:c3:b0:44:2f:5d:
51:5d:ae:a3:1a:3e:29:69:fc:32:d6:d9:2c:34:3d:
8d:f1:9d:ab:30:57:26:f5:51:f0:12:b5:b2:64:0f:
e6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:3B:5D:07:27:4C:AC:09:00:96:6C:09:F0:CE:E7:1E:40:C8:CB:EE
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/xDtdBydMrAkAlmwJ8M7nHkDIy-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.253.0/24
Signature Algorithm: sha256WithRSAEncryption
72:ce:c4:ed:b8:4d:ae:d8:57:b1:10:ff:19:9b:c7:85:a8:63:
fa:a5:af:7e:e5:8e:eb:83:d6:7c:c7:af:3f:f4:6f:69:0a:ad:
1e:7c:b6:7b:f0:0a:4e:f5:7e:b4:c4:29:b5:a4:36:02:26:93:
3d:c0:18:35:86:14:4a:10:63:c5:e1:84:31:fc:b1:bc:3f:20:
97:b0:fb:92:ab:7e:32:5b:93:3d:f1:fe:fb:d7:01:fd:02:2f:
d1:c0:9f:ff:28:7c:00:cb:8f:47:9a:99:cf:19:6c:90:5a:2f:
1a:64:57:ce:2b:03:83:b6:29:c2:89:99:3b:d1:56:3b:5c:5c:
fe:12:b8:b5:62:19:b4:e0:f5:b1:ad:6e:98:ad:45:fe:92:88:
a5:c5:3c:75:8f:4b:fc:5e:3a:31:1e:9d:10:83:9d:5b:4d:11:
f0:a2:a0:b1:7b:26:41:61:77:2d:88:bc:ff:c4:c4:e8:f6:02:
0b:0a:1d:84:50:d9:66:ed:ae:3e:6b:75:9f:dd:2e:fd:d6:86:
90:c1:5a:a6:d3:48:ad:14:29:68:99:f1:7c:b8:fe:68:f6:04:
64:29:fb:41:3f:4d:5b:81:9f:46:60:5a:b0:9c:8c:84:a4:41:
90:3c:20:c3:a3:26:b3:87:5a:71:a9:e1:dc:14:a2:39:92:ad:
c5:d6:d0:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:50 2025 by rpki-client