Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/RRf84uoxmcS6VYo7F6HJMShyzvM.roa
File: RRf84uoxmcS6VYo7F6HJMShyzvM.roa (raw, json)
Hash identifier: h2baFFucicUtgHL7j8qYQQ/FhrlRlAJUCnARo82YVIU=
Subject key identifier: 45:17:FC:E2:EA:31:99:C4:BA:55:8A:3B:17:A1:C9:31:28:72:CE:F3
Certificate issuer: /CN=f73cdc6751d7c59073e4b706402d3691af09086f
Certificate serial: 05608E89
Authority key identifier: F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/RRf84uoxmcS6VYo7F6HJMShyzvM.roa
Signing time: Sat 01 Jan 2022 10:57:31 +0000
ROA not before: Sat 01 Jan 2022 10:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21348
IP address blocks: 80.246.144.0/20 maxlen: 20
80.95.128.0/20 maxlen: 20
2a01:51a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90214025 (0x5608e89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f73cdc6751d7c59073e4b706402d3691af09086f
Validity
Not Before: Jan 1 10:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4517fce2ea3199c4ba558a3b17a1c9312872cef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1b:53:a2:05:fb:51:02:f1:f9:29:c4:96:b9:
9f:d2:85:72:ce:49:38:34:99:54:9e:4c:1b:80:5e:
e3:a5:b5:37:4c:ba:99:50:38:91:71:57:52:01:ee:
23:7f:8a:3f:30:ca:25:c8:d2:8e:48:d4:e1:0b:88:
5a:6e:31:ca:cf:2e:1e:da:7f:9b:a7:bd:69:ac:5b:
fe:d9:66:f6:d2:5d:c5:a4:f8:a2:0f:64:d6:cc:e2:
f2:fe:27:61:58:35:24:37:83:8f:07:f6:3f:0e:49:
15:2b:e7:96:87:d3:f8:99:c2:52:eb:1f:2f:a8:76:
4c:26:e8:ce:36:6b:86:e0:4c:10:80:5a:36:78:aa:
5b:26:e6:7f:be:6c:d4:30:cf:47:b9:6d:f0:42:f0:
8d:20:32:4c:ae:ce:b7:86:1c:cb:b3:ad:37:c9:dd:
78:fe:16:5a:30:c6:d2:5c:46:a1:0f:a0:63:5a:6c:
83:d7:f8:0e:e4:8e:c4:18:00:57:0b:3f:39:84:f4:
b6:14:c9:6a:5e:03:5d:a9:48:ed:b3:f2:b1:bf:c5:
98:82:2b:af:5d:16:b9:e7:8e:17:de:f7:af:e2:a1:
3e:90:13:6d:0d:b7:dc:b2:6f:ea:4e:3f:f3:84:df:
97:2f:34:ae:87:54:53:cc:85:71:97:7d:ba:6f:66:
1d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:17:FC:E2:EA:31:99:C4:BA:55:8A:3B:17:A1:C9:31:28:72:CE:F3
X509v3 Authority Key Identifier:
keyid:F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/RRf84uoxmcS6VYo7F6HJMShyzvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.128.0/20
80.246.144.0/20
IPv6:
2a01:51a0::/32
Signature Algorithm: sha256WithRSAEncryption
18:30:e8:07:8d:e0:2f:61:56:92:4a:40:6d:34:ea:5f:38:16:
08:c8:bd:0d:e4:8b:27:23:6f:1a:62:c9:43:09:1c:93:2b:3b:
ce:69:14:ce:87:30:0f:97:9e:a4:84:43:c7:43:23:43:58:a5:
93:b4:85:d1:31:a5:ed:09:ad:cb:02:5c:ef:1d:2b:ea:de:b3:
37:41:f6:c6:64:59:f1:74:16:af:3a:95:af:81:d2:f2:cc:98:
c8:8f:20:73:91:e3:97:8e:ef:7c:81:66:e1:85:ff:85:8c:fe:
0b:2b:2b:57:38:ec:1d:6a:22:9e:f3:f5:bd:59:ec:a4:98:3e:
c1:ea:5c:6e:2d:bd:e5:6e:be:7f:49:c3:72:95:39:ac:4f:13:
3d:e8:5a:ee:8a:f6:2b:ef:01:d5:8c:06:bf:3c:1a:89:97:f8:
ea:41:49:fc:d9:61:3f:10:fc:84:f2:64:af:f2:b3:ed:fd:56:
b8:eb:49:88:d9:2d:70:f5:aa:04:74:8f:14:ee:9a:d4:aa:92:
47:ac:ca:f8:67:2b:ea:f3:52:46:49:e4:40:02:69:45:d9:db:
0f:2c:8d:a3:be:56:2b:45:ae:7a:e1:7b:09:57:91:ad:02:eb:
df:52:8d:58:53:af:0f:0a:dd:13:75:b6:93:05:1d:cb:31:dc:
34:11:58:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 09:41:09 2025 by rpki-client