Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/gVKzbeMPloOxDSPjXF6pvF2PchA.roa
File: gVKzbeMPloOxDSPjXF6pvF2PchA.roa (raw, json)
Hash identifier: /kiI6f37JBjWjphoIBDNrF70I5Tnx0ckXKW6mRxtD/U=
Subject key identifier: 81:52:B3:6D:E3:0F:96:83:B1:0D:23:E3:5C:5E:A9:BC:5D:8F:72:10
Certificate issuer: /CN=a2900e4655ab349a4632b140719dc97230431725
Certificate serial: 0D55489A
Authority key identifier: A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/gVKzbeMPloOxDSPjXF6pvF2PchA.roa
Signing time: Sat 01 Jan 2022 05:55:22 +0000
ROA not before: Sat 01 Jan 2022 05:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51369
IP address blocks: 80.77.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223692954 (0xd55489a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2900e4655ab349a4632b140719dc97230431725
Validity
Not Before: Jan 1 05:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8152b36de30f9683b10d23e35c5ea9bc5d8f7210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d3:a3:c8:00:6f:a8:e3:e7:56:0a:40:9e:30:
96:fb:32:86:03:a8:b1:36:1e:29:93:be:fe:f7:80:
a0:0e:dc:57:5a:66:9b:92:33:f9:f2:35:c8:54:03:
ed:57:c3:99:0b:50:d5:3d:3c:e4:31:93:08:95:ce:
6d:fa:21:72:e7:bf:59:74:4d:22:53:a3:d1:9c:bb:
99:e3:3c:69:21:5e:96:70:0c:5e:2c:43:bb:d2:55:
06:5c:bd:f6:7b:b9:db:e0:9a:a6:16:7d:a1:93:27:
33:c3:ac:b8:65:32:60:4a:bf:fc:68:d1:20:47:ca:
46:e1:43:49:1e:f9:af:c3:c0:73:49:19:84:14:ba:
d7:85:48:11:d2:02:10:a9:12:10:f6:04:a1:70:67:
34:40:d3:88:09:9e:1d:42:cb:f9:4a:f3:59:11:d5:
95:1b:05:4e:93:01:38:98:0b:93:a8:15:52:c4:fa:
05:77:f6:89:49:12:d7:f2:5e:93:bc:10:32:8f:df:
6b:66:0b:31:e4:9c:1a:0d:02:f1:80:45:60:7f:2e:
b8:7c:12:97:26:62:2c:87:3a:98:38:51:72:2a:2a:
a2:f0:4b:64:e1:21:7f:dd:29:a5:2d:5b:01:76:6d:
e4:11:e3:d3:53:83:73:11:b4:61:f3:9f:a3:86:97:
3b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:52:B3:6D:E3:0F:96:83:B1:0D:23:E3:5C:5E:A9:BC:5D:8F:72:10
X509v3 Authority Key Identifier:
keyid:A2:90:0E:46:55:AB:34:9A:46:32:B1:40:71:9D:C9:72:30:43:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/opAORlWrNJpGMrFAcZ3JcjBDFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/gVKzbeMPloOxDSPjXF6pvF2PchA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4f701a-ed6f-47c8-bf73-f4c5fc3ca2c4/1/opAORlWrNJpGMrFAcZ3JcjBDFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.161.0/24
Signature Algorithm: sha256WithRSAEncryption
00:92:1f:ca:41:eb:77:4c:36:ef:95:d2:bf:2c:e2:aa:bf:94:
f6:71:98:ae:6d:aa:e7:09:39:8a:f7:22:ff:c8:cf:cd:13:ab:
c7:2f:0d:5e:13:5e:e5:16:89:7e:95:59:6d:0a:85:dc:95:9a:
4c:ce:32:7e:97:6f:0c:4e:6b:ba:1a:c2:88:98:a0:fe:04:8e:
aa:30:87:d6:16:54:b7:ef:7a:04:98:94:ee:a7:1f:28:b4:32:
d7:92:11:35:7e:63:22:fb:49:4b:44:31:46:41:ce:1a:80:2d:
95:b5:4e:e5:00:94:8d:33:39:fa:c9:e2:cb:e1:ec:a1:33:72:
ec:e4:9d:40:67:5e:95:77:f1:0a:5c:73:a1:eb:16:36:b7:d1:
b6:c8:60:7f:8d:08:6b:12:4d:23:ac:9e:bd:6e:e6:2a:b6:7f:
15:70:fb:2a:24:32:17:6b:91:c6:f5:cc:1a:da:82:d7:84:34:
01:6b:4d:f9:25:eb:ff:e1:2b:bc:ab:18:50:d9:8e:60:2f:a5:
9a:6c:79:0d:aa:f9:1a:da:0c:11:3e:05:0c:85:d1:18:ef:35:
92:9d:a5:91:1d:29:25:a0:8f:f9:d8:cc:11:6e:35:45:04:7c:
7b:63:03:af:76:ad:61:3a:55:92:0b:a8:07:75:89:87:61:99:
1c:24:99:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 07:06:36 2025 by rpki-client