Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/TbRchtyRZHcZjfHo8uRJ5vC03Bc.roa
File: TbRchtyRZHcZjfHo8uRJ5vC03Bc.roa (raw, json)
Hash identifier: TNTpiADFJqtmSTooNtVJgQ7xJ1tAFp6MBhoX4oAiAEw=
Subject key identifier: 4D:B4:5C:86:DC:91:64:77:19:8D:F1:E8:F2:E4:49:E6:F0:B4:DC:17
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 03A40C8A
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/TbRchtyRZHcZjfHo8uRJ5vC03Bc.roa
Signing time: Mon 21 Feb 2022 09:47:21 +0000
ROA not before: Mon 21 Feb 2022 09:47:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206766
IP address blocks: 83.217.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61082762 (0x3a40c8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Feb 21 09:47:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4db45c86dc916477198df1e8f2e449e6f0b4dc17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:02:d0:04:32:3b:ab:c6:25:c3:89:b3:f0:8c:
7b:6b:49:2c:9b:a5:d2:b0:be:39:0a:70:e3:c0:f4:
a8:7e:32:af:c9:f5:49:e7:01:8c:36:42:0f:65:95:
87:f8:7d:08:7d:01:91:2d:a0:70:09:2e:72:4a:15:
40:ce:a4:0e:3c:cf:2b:55:c5:2d:58:c6:68:a8:99:
c2:14:09:a9:34:80:13:4b:b5:0b:a1:95:7b:b4:62:
4d:f6:11:20:3c:61:6b:b7:ac:c0:cc:73:de:aa:ed:
2e:67:68:5a:81:a1:bb:fb:d9:a1:51:56:fa:65:45:
51:9a:93:df:5d:95:26:fc:f9:0f:7c:62:54:ad:9c:
af:4b:86:a8:a5:f3:fb:51:66:16:fa:a7:61:7b:d8:
d0:8e:72:12:cd:dc:db:93:9b:99:33:22:df:fe:73:
90:b2:08:88:e5:1c:25:02:1b:2a:e7:e4:99:46:97:
26:2d:c3:8d:48:3a:08:d4:8e:ee:d2:6f:fe:50:24:
4d:99:c8:35:59:dc:d8:ff:47:61:b9:57:32:2a:a4:
e8:51:0f:47:07:f2:af:37:55:50:48:29:8e:6e:cc:
0f:07:35:bb:3c:0a:2b:12:08:8d:9f:dc:93:53:70:
ae:d2:cc:3f:c3:70:d4:b4:2f:ac:0c:cf:3e:c6:04:
6a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B4:5C:86:DC:91:64:77:19:8D:F1:E8:F2:E4:49:E6:F0:B4:DC:17
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/TbRchtyRZHcZjfHo8uRJ5vC03Bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.4.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:0d:e7:db:39:be:cd:1c:39:72:99:41:38:c6:78:59:2d:b1:
5a:25:31:c1:4f:52:fc:c4:5b:25:89:2d:7b:88:57:92:3d:ee:
c7:00:7a:39:67:ad:ee:4b:f6:b1:99:ca:c2:b2:7f:51:57:22:
73:fc:87:2f:67:53:65:76:21:b1:b7:3b:87:8f:fb:96:cb:67:
bd:24:1d:fb:fd:5a:2c:b1:a2:f3:e2:b1:08:6d:90:cc:d8:21:
8f:93:ec:c6:49:60:b5:23:5d:4a:89:95:18:1a:c1:31:7f:68:
3a:72:4a:ff:4d:7c:d2:f6:28:48:61:a7:33:14:bd:b6:70:fe:
5f:2a:8c:67:ed:6d:8f:6f:54:7b:33:4c:f8:4e:55:3e:db:92:
51:15:0e:44:e5:d7:16:4e:0f:e5:41:0c:28:e7:a6:21:c0:80:
bb:e1:94:4d:fd:11:64:88:c4:a2:53:3f:93:09:54:a0:d0:85:
0a:27:78:83:8e:fd:d1:d1:9c:ba:7f:7b:70:4e:51:39:4e:39:
ae:96:3c:d8:9a:7f:ed:71:77:18:a8:d9:62:ee:5c:86:3c:93:
1f:87:1d:d8:a3:1a:12:00:84:9b:49:52:76:13:e8:98:84:da:
c2:2e:1a:c1:f6:96:22:72:41:41:70:f9:5a:9c:f5:d8:8c:33:
ec:cc:20:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 00:30:40 2025 by rpki-client