Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/_Dp7WwtqpqzfxAXU7ai6V062cps.roa
File: _Dp7WwtqpqzfxAXU7ai6V062cps.roa (raw, json)
Hash identifier: l9zAMFNVgJ6+3cvASk9F5slS5fFaxwOoFewlLX/wNMQ=
Subject key identifier: FC:3A:7B:5B:0B:6A:A6:AC:DF:C4:05:D4:ED:A8:BA:57:4E:B6:72:9B
Certificate issuer: /CN=701624ffc5721c158e4cc9bb071eb4fb87d88c24
Certificate serial: 1A6C588E
Authority key identifier: 70:16:24:FF:C5:72:1C:15:8E:4C:C9:BB:07:1E:B4:FB:87:D8:8C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/_Dp7WwtqpqzfxAXU7ai6V062cps.roa
Signing time: Sat 01 Jan 2022 15:04:48 +0000
ROA not before: Sat 01 Jan 2022 15:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47329
IP address blocks: 79.139.48.0/22 maxlen: 22
185.63.108.0/22 maxlen: 22
185.39.161.0/24 maxlen: 24
185.39.163.0/24 maxlen: 24
185.39.160.0/22 maxlen: 22
185.63.200.0/22 maxlen: 22
185.67.68.0/22 maxlen: 22
185.116.252.0/24 maxlen: 24
185.116.253.0/24 maxlen: 24
195.62.64.0/23 maxlen: 23
195.62.65.0/24 maxlen: 24
185.116.254.0/24 maxlen: 24
185.116.255.0/24 maxlen: 24
79.139.112.0/22 maxlen: 22
185.67.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443308174 (0x1a6c588e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=701624ffc5721c158e4cc9bb071eb4fb87d88c24
Validity
Not Before: Jan 1 15:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc3a7b5b0b6aa6acdfc405d4eda8ba574eb6729b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9b:93:b1:25:3a:75:c4:d5:08:30:4c:c8:65:
98:51:40:32:f5:1d:4f:8f:d7:0e:c9:41:cc:4d:67:
29:71:38:2b:c3:9b:f1:75:17:7c:81:8d:de:39:ce:
27:66:8c:e2:78:33:96:5e:8a:7e:b3:9d:6b:86:3f:
0f:28:ae:dc:d1:98:90:51:7b:4c:9d:5c:3d:76:7c:
bc:9b:8f:28:d3:88:cd:b7:60:c8:4d:9e:70:a2:81:
17:13:d7:7a:be:a6:b6:91:8a:f4:99:ba:dd:83:32:
9f:3c:18:ed:10:ab:af:55:37:0a:2b:d6:c8:89:9b:
77:1e:db:aa:7f:11:6b:e9:14:77:17:a7:ce:dd:c0:
36:4a:3e:cc:4e:0b:a9:f9:00:29:00:79:64:98:d5:
b9:69:30:34:fb:77:f1:3d:94:3b:89:2f:ce:88:9a:
f0:8d:a7:7c:89:b9:67:6d:8f:56:f1:f2:29:b7:bc:
48:b4:3e:4c:bc:48:3d:c1:05:bb:d6:df:97:4b:5e:
9c:c9:8d:4d:f7:e7:e2:0d:af:3b:5c:aa:3a:cd:d3:
44:b2:36:0a:9b:ab:b1:f6:c6:58:c1:9c:1b:2e:52:
37:a6:85:58:4e:0b:d2:05:90:af:fb:f5:93:1d:a1:
b7:85:4c:a6:f0:86:d9:54:d1:5c:16:61:5b:cb:01:
2d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:3A:7B:5B:0B:6A:A6:AC:DF:C4:05:D4:ED:A8:BA:57:4E:B6:72:9B
X509v3 Authority Key Identifier:
keyid:70:16:24:FF:C5:72:1C:15:8E:4C:C9:BB:07:1E:B4:FB:87:D8:8C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/_Dp7WwtqpqzfxAXU7ai6V062cps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/fb5abe-6a3a-4d37-bf61-63e75e953a93/1/cBYk_8VyHBWOTMm7Bx60-4fYjCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.139.48.0/22
79.139.112.0/22
185.39.160.0/22
185.63.108.0/22
185.63.200.0/22
185.67.8.0/22
185.67.68.0/22
185.116.252.0/22
195.62.64.0/23
Signature Algorithm: sha256WithRSAEncryption
71:96:b4:58:7b:a4:76:b5:73:6e:e8:da:f9:6a:d2:40:17:72:
e0:4e:2e:84:5a:e9:51:1b:e9:24:03:fd:1c:48:21:cf:a9:da:
71:60:f8:eb:66:39:80:a4:00:96:23:38:24:92:4b:94:bd:ea:
e8:eb:8d:a1:f8:a5:18:d0:aa:5e:25:39:6c:c6:3b:1e:8c:71:
dc:9c:a7:6a:6b:f9:bf:b2:fd:e5:ed:2f:61:33:f4:1d:c6:d5:
50:74:84:f0:f0:44:08:4e:79:0c:be:d9:b1:1b:3d:9c:f6:47:
a3:35:8c:2a:d2:f7:28:71:20:1f:3d:f2:9c:d1:16:23:28:ff:
f2:6e:d3:47:f0:2e:ed:66:28:95:d8:a3:a6:4b:7b:f7:8b:a2:
0f:c3:f5:5e:97:e4:e8:d2:42:b5:5c:ff:8e:e5:5e:3f:04:7d:
91:b5:74:6b:87:d8:2e:68:65:6d:f0:90:58:12:2f:de:17:62:
27:c0:98:62:1c:be:6d:1a:60:b1:b0:a7:d6:ed:87:61:e0:2c:
56:35:2c:cd:d5:16:ea:0c:10:14:36:3e:54:80:30:d6:a2:94:
32:fb:38:b4:1e:e4:8e:8a:95:a8:0e:a9:d0:99:d3:c8:94:25:
ac:b8:cb:73:7c:f7:9e:ec:ad:ac:bd:57:27:1f:9a:f1:a6:59:
c5:fc:14:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:07:07 2025 by rpki-client