Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/urQTd7XfAQ2M7V8Mrh0pOEB9r6k.roa
File: urQTd7XfAQ2M7V8Mrh0pOEB9r6k.roa (raw, json)
Hash identifier: iTw+wIRPW5WoCcvdKtK/FJgjpWqZ5vuK+S4oFsIhVVc=
Subject key identifier: BA:B4:13:77:B5:DF:01:0D:8C:ED:5F:0C:AE:1D:29:38:40:7D:AF:A9
Certificate issuer: /CN=65516ddc7331e2e269dc57d9c7632f25de7d0c6e
Certificate serial: 0917A77D
Authority key identifier: 65:51:6D:DC:73:31:E2:E2:69:DC:57:D9:C7:63:2F:25:DE:7D:0C:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZVFt3HMx4uJp3FfZx2MvJd59DG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/urQTd7XfAQ2M7V8Mrh0pOEB9r6k.roa
Signing time: Sat 01 Jan 2022 15:59:16 +0000
ROA not before: Sat 01 Jan 2022 15:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207988
IP address blocks: 193.7.212.0/22 maxlen: 22
2a07:cc00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152545149 (0x917a77d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65516ddc7331e2e269dc57d9c7632f25de7d0c6e
Validity
Not Before: Jan 1 15:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bab41377b5df010d8ced5f0cae1d2938407dafa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6f:1e:4f:47:34:5a:dd:81:0e:0e:66:72:1f:
1c:4d:46:de:80:dc:60:31:b6:63:f6:70:c2:fe:c6:
ce:3c:82:7e:8f:70:0f:08:0d:0d:01:d2:9f:29:9a:
2e:d4:fb:87:18:d5:5a:ef:d9:22:29:0d:78:5a:90:
86:51:d1:4d:4b:80:ff:44:73:6c:6f:cd:3c:27:24:
32:4a:c9:d8:38:54:7f:ce:b3:dc:19:c5:ed:61:2e:
b2:88:a6:65:26:43:92:7a:cc:51:1c:70:a5:ba:8e:
ee:77:9d:bf:39:df:25:4c:9c:ec:d4:f9:2a:88:3a:
59:e1:d7:4c:5e:74:90:77:2f:cc:80:43:e6:37:dd:
24:9f:b8:90:26:c4:7e:8d:cd:80:0e:91:21:cf:44:
3f:2a:3f:38:16:d5:4d:13:79:59:64:f1:3b:3e:30:
7b:d7:e3:a8:a1:b0:49:3b:3b:d6:f9:d8:9e:63:1c:
ba:4b:08:24:4d:c8:6f:a0:ee:18:03:29:03:c6:9e:
a5:98:c3:ee:61:9d:39:4f:db:2c:de:5d:b0:cc:95:
55:0f:4c:c4:61:a3:97:bb:a2:3c:ac:3f:53:da:a4:
3b:0a:1a:46:b3:82:1d:dc:7a:b5:63:f0:1f:8c:fd:
0c:9c:c6:ce:cb:88:4b:ea:a3:7d:7e:c9:e8:80:ec:
0d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B4:13:77:B5:DF:01:0D:8C:ED:5F:0C:AE:1D:29:38:40:7D:AF:A9
X509v3 Authority Key Identifier:
keyid:65:51:6D:DC:73:31:E2:E2:69:DC:57:D9:C7:63:2F:25:DE:7D:0C:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZVFt3HMx4uJp3FfZx2MvJd59DG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/urQTd7XfAQ2M7V8Mrh0pOEB9r6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/ZVFt3HMx4uJp3FfZx2MvJd59DG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.7.212.0/22
IPv6:
2a07:cc00::/29
Signature Algorithm: sha256WithRSAEncryption
41:ef:fd:02:63:b2:04:1c:67:cf:dd:99:a1:68:ea:e7:50:42:
05:d3:21:c6:4b:ce:bd:c6:16:1d:9e:6b:e7:36:d8:e1:3c:6f:
69:e1:3d:a9:ea:c2:0b:9e:c3:21:53:8f:f3:29:6a:b3:b5:66:
e9:04:ea:5a:b3:24:bd:2b:c2:40:ff:e7:4e:1c:d2:4f:04:89:
e2:3e:40:33:4e:f0:d6:81:45:e9:8d:5e:87:43:a7:ae:6c:90:
a0:2b:d7:d7:46:6c:3b:08:37:68:7f:cc:ea:a7:97:99:7f:9c:
a8:20:2e:bd:fb:73:5e:aa:39:4a:3a:53:74:72:6a:ff:3d:fc:
f5:4b:97:95:38:d3:56:6f:08:99:60:ab:4d:af:be:19:87:fd:
81:22:19:9a:ee:d2:24:90:eb:ca:ad:40:ba:db:4b:bb:0e:9d:
e1:96:d4:65:df:bb:6a:ca:ee:fa:0e:78:10:77:80:09:28:d5:
d8:49:5d:dd:6f:c9:73:8f:90:a3:2f:1e:e6:9c:04:f6:2f:4a:
4f:41:cc:db:98:40:2a:95:85:de:8c:d9:62:61:7f:e5:55:7b:
f1:50:2e:e1:6d:0b:55:ec:61:e0:f9:5c:14:fe:b4:52:74:8a:
1f:8f:1b:34:70:df:ca:20:34:6d:07:5b:fc:dd:7b:09:59:8f:
b7:b1:44:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:57:52 2025 by rpki-client