Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/vXBN5ZA9rGtsVNAPyuCTiT22Edo.roa
File: vXBN5ZA9rGtsVNAPyuCTiT22Edo.roa (raw, json)
Hash identifier: M6Rn5lJZMVuuUeRY+UitQ/PXOFrtcT6pEGyeoDexYXs=
Subject key identifier: BD:70:4D:E5:90:3D:AC:6B:6C:54:D0:0F:CA:E0:93:89:3D:B6:11:DA
Certificate issuer: /CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Certificate serial: 08711846
Authority key identifier: 88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/vXBN5ZA9rGtsVNAPyuCTiT22Edo.roa
Signing time: Sat 01 Jan 2022 14:02:32 +0000
ROA not before: Sat 01 Jan 2022 14:02:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201127
IP address blocks: 77.39.220.0/22 maxlen: 24
185.84.88.0/22 maxlen: 24
2a05:a3c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141629510 (0x8711846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Validity
Not Before: Jan 1 14:02:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd704de5903dac6b6c54d00fcae093893db611da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:66:7d:30:c2:c9:dd:20:b8:b3:7d:7b:8e:28:
87:07:2a:e6:17:80:0a:da:e3:09:31:0d:34:5e:3c:
c9:7a:07:b6:b6:56:47:a1:09:0b:69:f5:63:0a:e7:
fb:a7:e4:55:51:d7:20:83:0a:ef:5b:05:92:69:1b:
78:4d:fa:fc:25:ac:11:ce:55:0d:75:4e:7a:b3:53:
9d:f7:eb:17:13:ac:71:ad:3c:1a:8e:bd:14:a9:c7:
88:73:4b:0b:e3:f0:b1:73:14:98:3e:81:d7:c2:d8:
3f:ad:84:b4:16:5c:9c:87:14:c2:5f:8c:38:cd:10:
5f:29:8f:e2:d5:a8:51:f4:91:e1:3c:b2:c0:20:87:
d2:1e:df:5c:9a:89:9f:97:98:ef:3e:c0:36:97:60:
5a:af:f1:84:c8:09:6c:12:e1:ac:62:c5:d1:88:e7:
0b:57:fa:44:47:ee:25:da:25:03:9e:8f:db:e0:1d:
07:43:a5:62:8e:b3:56:de:f2:6a:dc:a0:55:73:f3:
6c:17:22:52:5b:0a:73:f5:9c:a4:ae:d3:60:2d:26:
e8:48:07:ad:8b:68:eb:ea:92:98:cb:8e:40:25:d0:
ee:0f:c4:83:fb:f3:c1:2c:6c:72:c6:5a:f8:97:c0:
c1:4b:b5:c3:ff:bc:ee:e9:86:78:ec:c2:41:b2:16:
55:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:70:4D:E5:90:3D:AC:6B:6C:54:D0:0F:CA:E0:93:89:3D:B6:11:DA
X509v3 Authority Key Identifier:
keyid:88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/vXBN5ZA9rGtsVNAPyuCTiT22Edo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.39.220.0/22
185.84.88.0/22
IPv6:
2a05:a3c0::/29
Signature Algorithm: sha256WithRSAEncryption
94:86:e7:49:f5:80:29:ab:ee:d4:45:4a:7f:8d:17:3d:24:d2:
7c:8c:9d:19:78:d0:33:d2:43:40:c9:fd:3a:f5:ed:5f:05:8e:
dc:2b:5c:c5:97:04:aa:58:84:44:45:58:2c:30:19:77:4a:dd:
0c:b2:e1:b0:d3:2d:93:79:47:a3:79:d5:ac:c1:00:b7:f6:ae:
82:bb:a3:77:63:f9:6d:fe:43:f7:57:47:7c:2a:3c:c5:ad:f6:
f6:41:c0:b1:f4:3b:79:5c:a6:71:b9:ea:06:68:ca:93:1b:26:
2d:c4:a2:b7:cd:aa:ca:8e:b5:f3:21:a0:4d:e1:c2:ff:f6:2b:
26:0f:9d:3d:4c:04:2b:ea:9c:b5:04:6c:9e:d7:e0:fc:02:11:
a1:2c:e8:e2:86:95:6b:d2:18:81:7a:16:b4:9d:c1:48:cc:ce:
87:8c:69:a8:a2:a7:7b:79:af:b9:50:72:13:9a:75:c2:8a:72:
45:fe:20:e4:86:ed:24:cd:b3:05:18:0a:fc:27:5d:e8:c3:1a:
81:63:0e:0d:91:26:12:8a:dd:28:c1:07:1e:01:b9:38:47:93:
b4:f2:3d:46:79:81:0c:4b:bb:cd:96:d0:af:c5:c6:d7:d4:5c:
67:8b:3b:84:c5:00:98:46:1d:88:90:b8:2f:13:93:fd:7f:f2:
eb:08:50:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 17:05:36 2025 by rpki-client