Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/gvfp9ADZknvazagNRXMAyT9dwfM.roa
File: gvfp9ADZknvazagNRXMAyT9dwfM.roa (raw, json)
Hash identifier: 9ANoLtqmQ8F2kFkIavU/9GpdmObxb1fJCaV+tgnJKnc=
Subject key identifier: 82:F7:E9:F4:00:D9:92:7B:DA:CD:A8:0D:45:73:00:C9:3F:5D:C1:F3
Certificate issuer: /CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Certificate serial: 02041CC9
Authority key identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/gvfp9ADZknvazagNRXMAyT9dwfM.roa
Signing time: Sat 01 Jan 2022 04:59:57 +0000
ROA not before: Sat 01 Jan 2022 04:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203966
IP address blocks: 213.171.70.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33823945 (0x2041cc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Validity
Not Before: Jan 1 04:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82f7e9f400d9927bdacda80d457300c93f5dc1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fc:fd:71:4b:2a:c0:d1:d6:56:31:08:64:81:
11:90:54:74:e9:b1:77:35:ae:f8:08:a2:dc:c3:de:
82:61:ca:aa:51:4a:1f:72:c7:51:54:27:82:76:37:
fd:c4:d4:c5:7f:0b:90:25:2e:ab:a7:c8:df:da:cd:
c8:68:7e:eb:08:60:6f:8d:cf:fd:52:72:89:7d:e4:
a3:64:24:fa:c2:ec:23:24:e4:15:61:4c:9d:34:18:
b8:83:53:7c:d2:72:46:97:ea:21:04:b4:d9:3b:cc:
f2:4d:ec:5c:8d:35:f7:cb:e8:3c:33:ea:f2:01:32:
3f:a5:8d:43:01:6b:d6:44:fd:0e:1b:1f:85:2d:c8:
bd:e3:85:f5:f0:cc:f2:c6:68:f2:a9:52:39:5b:a6:
67:24:63:22:9a:a2:83:08:75:b3:d0:12:f2:70:dc:
89:41:70:30:ab:d3:8a:1a:d0:82:e5:88:25:b0:a8:
fc:a6:71:d7:b2:90:9c:b8:0f:ba:64:85:6f:0b:05:
7f:6a:e7:e6:d4:1b:ca:01:83:03:1f:ad:c4:78:1e:
75:b1:d9:2f:83:8c:fb:8b:5c:88:7f:f8:00:ea:e1:
48:a7:52:7f:40:34:e2:1f:f5:15:67:3c:50:9d:03:
7f:33:44:3f:32:44:2c:fd:7c:f6:80:0c:fc:f1:bf:
aa:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F7:E9:F4:00:D9:92:7B:DA:CD:A8:0D:45:73:00:C9:3F:5D:C1:F3
X509v3 Authority Key Identifier:
keyid:E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/gvfp9ADZknvazagNRXMAyT9dwfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.171.70.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:29:8e:ec:d2:6a:78:9f:e1:b0:08:89:c8:8d:0b:3b:da:89:
bf:8b:2c:d5:cf:97:1d:bf:cc:40:e6:13:d7:f1:e1:b9:53:a4:
27:dd:7d:7f:b8:4a:75:28:4f:fb:2e:d7:73:a7:f2:0f:a5:10:
31:ea:ba:73:4c:c6:b5:22:1b:41:9c:76:55:e1:f4:7f:b6:91:
10:62:1c:8e:4a:79:ed:18:03:0c:60:3d:90:91:e6:d2:24:c0:
8f:8f:35:77:3d:eb:75:43:d3:fc:1f:23:72:86:5c:af:ed:de:
6e:c1:d5:bd:e3:b6:02:48:00:c2:69:7b:4e:61:a7:32:2d:94:
e5:3f:07:df:e9:5e:78:b8:a9:e4:82:b8:f1:39:d1:4c:40:5b:
6a:58:28:bc:f6:af:bb:cc:c4:d4:f0:6b:fd:68:88:8a:bf:9d:
9a:19:0a:a2:1a:13:e7:cf:88:ac:0a:7a:e6:20:90:15:32:18:
44:d5:aa:e6:87:d1:01:12:3e:92:f9:37:8e:87:25:1f:65:c6:
66:c4:e1:f9:ec:44:3f:e7:11:66:76:e7:30:63:48:8f:9a:1b:
c5:a8:66:77:c1:b9:f0:13:91:17:4f:ce:20:f1:db:fa:93:56:
55:c9:a3:b4:e3:0c:56:76:59:64:de:08:8a:79:0e:02:3b:d4:
1c:27:75:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:50:06 2025 by rpki-client