Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/37fb4a-5c96-4d17-86a0-ebb63a454a91/1/vzOXbvRv6Ia6lEn4l6T2ai-Oz74.roa
File: vzOXbvRv6Ia6lEn4l6T2ai-Oz74.roa (raw, json)
Hash identifier: q2OKe80gQBpx7n4prN1G3zPZiiMUoSiLCfuFt6hrCN4=
Subject key identifier: BF:33:97:6E:F4:6F:E8:86:BA:94:49:F8:97:A4:F6:6A:2F:8E:CF:BE
Certificate issuer: /CN=c1c05ece6c908ad8882513da3a25a160703bb7f6
Certificate serial: 108F8D47
Authority key identifier: C1:C0:5E:CE:6C:90:8A:D8:88:25:13:DA:3A:25:A1:60:70:3B:B7:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wcBezmyQitiIJRPaOiWhYHA7t_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/37fb4a-5c96-4d17-86a0-ebb63a454a91/1/vzOXbvRv6Ia6lEn4l6T2ai-Oz74.roa
Signing time: Sat 01 Jan 2022 06:02:23 +0000
ROA not before: Sat 01 Jan 2022 06:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.4.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277843271 (0x108f8d47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1c05ece6c908ad8882513da3a25a160703bb7f6
Validity
Not Before: Jan 1 06:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf33976ef46fe886ba9449f897a4f66a2f8ecfbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:43:f0:b4:5b:66:f8:ce:e6:c2:3d:76:8c:a6:
b6:01:50:ce:73:d7:49:a5:b2:f6:c5:ed:3a:ac:1f:
e1:5b:c9:6f:71:7d:5d:6c:16:04:7b:df:bd:c7:e0:
d8:27:28:c9:7c:b8:c0:b8:07:94:61:ed:e3:8d:28:
e7:b4:37:2e:5b:ab:be:03:a6:32:70:92:30:20:34:
a4:01:3e:60:4c:b9:5f:fb:84:85:1b:48:fb:2c:61:
0b:44:1d:23:d7:7b:f6:ac:16:4c:d4:1d:e4:ec:e9:
d3:30:11:be:ca:99:65:88:c5:a5:ac:c7:06:cf:50:
f0:5a:e1:90:ac:09:bd:bf:8c:52:25:97:11:03:3d:
95:81:99:53:e2:0f:b7:42:a9:63:79:c0:f3:09:26:
d9:f6:06:d9:d7:55:3f:ff:e8:ee:82:73:ca:03:88:
1f:c4:8d:ae:69:85:55:ef:05:a4:40:6e:06:ef:3a:
9b:a9:ba:79:93:0f:ee:0b:4b:d7:5b:84:f8:68:ae:
59:2d:a3:81:42:85:4a:fa:9f:2d:95:e3:ca:4d:6c:
26:d2:35:e7:48:18:6b:c1:8f:af:f2:6c:eb:3c:bf:
8d:58:0a:c8:4c:56:96:09:0c:02:b3:cc:45:ea:33:
c3:d0:6a:d4:c0:bf:42:5c:04:05:0a:b2:6a:84:6c:
b7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:33:97:6E:F4:6F:E8:86:BA:94:49:F8:97:A4:F6:6A:2F:8E:CF:BE
X509v3 Authority Key Identifier:
keyid:C1:C0:5E:CE:6C:90:8A:D8:88:25:13:DA:3A:25:A1:60:70:3B:B7:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wcBezmyQitiIJRPaOiWhYHA7t_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/37fb4a-5c96-4d17-86a0-ebb63a454a91/1/vzOXbvRv6Ia6lEn4l6T2ai-Oz74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/37fb4a-5c96-4d17-86a0-ebb63a454a91/1/wcBezmyQitiIJRPaOiWhYHA7t_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.4.0.0/16
Signature Algorithm: sha256WithRSAEncryption
be:b8:4a:e6:f8:69:13:c7:83:89:21:d6:be:36:38:c8:46:e8:
d5:95:a4:ff:82:f9:08:05:3f:27:d6:e9:dd:2e:e9:2f:e4:05:
7b:26:41:0c:7b:74:9f:f6:c8:60:8c:f0:c8:af:9b:c6:61:79:
ad:f0:ab:de:72:68:31:d4:27:a3:e9:ae:9b:f7:00:40:c8:6d:
47:36:86:d0:0e:de:e6:3e:bf:f3:8a:3d:8c:7c:60:75:34:ec:
1c:d1:65:36:a3:87:0c:7a:b6:60:6a:4a:63:ea:3a:5d:45:9d:
a1:f9:90:d3:21:e1:85:51:6d:f9:60:1c:5e:a9:68:88:07:32:
58:5d:fe:b7:d9:13:80:93:1e:ca:0c:b9:19:f2:24:52:0a:40:
61:da:41:e1:8d:81:83:4c:83:97:8d:d0:41:42:99:1b:47:96:
03:8a:37:63:f1:30:b5:78:38:f3:1a:ea:4b:fb:8b:e7:35:15:
b7:a6:d7:a8:69:1b:d5:74:fe:e1:d7:c0:15:20:75:8f:87:26:
a6:52:9a:b8:96:52:da:e4:f9:e8:83:f8:ba:fd:d8:11:02:f8:
b2:7d:a2:fa:aa:70:f7:4d:46:c1:d6:25:48:f7:c1:b1:6d:1a:
c8:43:90:a4:28:cd:ad:10:95:05:a1:e4:13:8d:b6:59:fb:17:
5a:b0:e2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 19:59:00 2025 by rpki-client