Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/ThUXmj_WKnH73wRJxVrWDc4iKKY.roa
File: ThUXmj_WKnH73wRJxVrWDc4iKKY.roa (raw, json)
Hash identifier: vZnuRoThpqVfmPVBRQ9rYKrP+vcivJs7d1giy2EmOxw=
Subject key identifier: 4E:15:17:9A:3F:D6:2A:71:FB:DF:04:49:C5:5A:D6:0D:CE:22:28:A6
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 112C88B4
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/ThUXmj_WKnH73wRJxVrWDc4iKKY.roa
Signing time: Wed 11 May 2022 13:47:37 +0000
ROA not before: Wed 11 May 2022 13:47:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206564
IP address blocks: 82.98.80.0/24 maxlen: 32
212.19.40.0/24 maxlen: 32
82.98.91.0/24 maxlen: 32
213.83.48.0/24 maxlen: 32
212.19.48.0/24 maxlen: 32
212.19.47.0/24 maxlen: 32
212.19.61.0/24 maxlen: 24
82.98.105.0/24 maxlen: 32
82.98.126.0/24 maxlen: 24
82.98.127.0/24 maxlen: 24
213.83.1.0/24 maxlen: 32
213.83.17.0/24 maxlen: 32
82.98.67.0/24 maxlen: 32
82.98.78.0/24 maxlen: 32
82.98.74.0/24 maxlen: 32
2a02:2e0:cd4d::/48 maxlen: 48
2a02:2e0:3e8::/48 maxlen: 128
2a02:2e0:1::/48 maxlen: 48
2a02:2e0:41c::/48 maxlen: 128
2a02:2e0:a::/48 maxlen: 48
2a02:2e0:fffe::/48 maxlen: 128
2a02:2e0:41b::/48 maxlen: 128
2a02:2e0:3f5::/48 maxlen: 128
2a02:2e0:3ee::/48 maxlen: 128
2a02:2e0:cd4e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 288131252 (0x112c88b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: May 11 13:47:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e15179a3fd62a71fbdf0449c55ad60dce2228a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:49:8f:db:7e:73:f5:f2:79:a3:c9:c5:bb:cb:
31:95:0f:87:2f:28:f7:ab:83:3f:98:ee:c0:9c:80:
3d:86:b9:a8:72:bb:ae:dd:44:25:71:71:e9:30:ec:
99:17:b5:ed:77:12:09:2d:85:e4:94:6a:82:1d:df:
bd:d0:3a:eb:63:d5:91:85:dc:fb:1e:e4:e8:8b:c6:
20:2d:51:49:53:38:e4:5d:23:b4:87:42:a1:39:a0:
45:87:6c:9b:30:5f:e5:61:cd:6a:52:28:62:92:fe:
54:ef:ec:fd:d3:67:0f:23:cb:4e:89:08:bf:f6:fc:
72:30:e8:2d:94:54:5c:36:c1:ae:e7:37:22:8f:f0:
00:04:a8:71:cf:ca:c8:a1:10:89:cc:a1:f8:0f:5b:
71:4d:08:79:34:f9:bd:52:3d:72:59:1a:88:a2:bc:
58:13:20:38:e4:b6:2a:d2:2b:d3:c1:22:96:cc:08:
44:97:9d:b2:3a:f8:77:5a:61:07:c5:90:9b:bd:9f:
38:e1:1d:7b:e7:53:34:b0:a7:4e:96:06:99:29:55:
8f:1d:cc:4a:4e:57:b1:59:64:a8:39:37:32:5f:2b:
e4:42:2f:fa:e8:9e:6c:bd:02:04:b4:56:0a:97:c6:
0b:2f:44:d6:53:a4:80:a9:12:3e:f3:08:cc:f1:07:
0a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:15:17:9A:3F:D6:2A:71:FB:DF:04:49:C5:5A:D6:0D:CE:22:28:A6
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/ThUXmj_WKnH73wRJxVrWDc4iKKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.67.0/24
82.98.74.0/24
82.98.78.0/24
82.98.80.0/24
82.98.91.0/24
82.98.105.0/24
82.98.126.0/23
212.19.40.0/24
212.19.47.0-212.19.48.255
212.19.61.0/24
213.83.1.0/24
213.83.17.0/24
213.83.48.0/24
IPv6:
2a02:2e0:1::/48
2a02:2e0:a::/48
2a02:2e0:3e8::/48
2a02:2e0:3ee::/48
2a02:2e0:3f5::/48
2a02:2e0:41b::-2a02:2e0:41c:ffff:ffff:ffff:ffff:ffff
2a02:2e0:cd4d::-2a02:2e0:cd4e:ffff:ffff:ffff:ffff:ffff
2a02:2e0:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
8e:98:f5:fe:28:f2:c1:56:77:31:4f:4e:3c:06:53:c2:c1:58:
79:65:08:85:bc:30:7d:18:8c:8a:b9:38:c1:5f:54:c5:58:72:
43:50:6e:62:fe:53:d8:be:6d:bf:40:95:45:a8:ae:f2:52:4a:
1d:75:ef:01:d4:1a:f4:5e:00:57:c4:77:de:99:e8:4d:68:a3:
46:52:66:55:d5:08:70:4f:82:65:5b:cb:ba:c6:9f:b6:9b:61:
d4:65:6a:c9:28:44:96:5c:43:83:23:4f:e4:ff:43:ea:20:f5:
aa:41:a5:28:e5:5c:52:d3:f2:7f:1a:74:08:f9:f6:33:ad:e5:
b8:92:0b:a1:24:de:e7:4e:09:37:88:2b:0d:33:23:27:71:43:
49:cb:5b:1e:05:14:87:07:3b:dc:69:eb:12:63:29:ff:2e:65:
be:b7:b1:8a:9e:5c:a0:a5:70:c0:d2:e8:b8:f5:bd:e9:86:01:
d8:22:07:af:ca:df:e7:77:d4:cf:da:b5:b8:77:df:66:38:4d:
54:fe:a7:f2:30:a7:73:c7:8f:2a:55:ef:d1:ce:da:47:25:d7:
72:90:bc:ca:cb:41:b4:29:6e:04:d4:e2:bb:8e:a9:7f:d3:b9:
9d:1f:7a:59:35:bb:7e:29:b5:43:a2:ab:b5:07:56:3b:21:59:
ea:86:56:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:40:42 2025 by rpki-client