Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/9neVx8CqdcLU-L1PcED3J_q4yzQ.roa
File: 9neVx8CqdcLU-L1PcED3J_q4yzQ.roa (raw, json)
Hash identifier: 8BFyp5drS26Bo+zcniW4cxio28Kf74V6UnliuiYwOXY=
Subject key identifier: F6:77:95:C7:C0:AA:75:C2:D4:F8:BD:4F:70:40:F7:27:FA:B8:CB:34
Certificate issuer: /CN=91f5fcedbdb84dd52fc6770d7ccfd3fc6684fa41
Certificate serial: 08C8D34E
Authority key identifier: 91:F5:FC:ED:BD:B8:4D:D5:2F:C6:77:0D:7C:CF:D3:FC:66:84:FA:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfX87b24TdUvxncNfM_T_GaE-kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/9neVx8CqdcLU-L1PcED3J_q4yzQ.roa
Signing time: Tue 18 Jan 2022 09:52:58 +0000
ROA not before: Tue 18 Jan 2022 09:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209733
IP address blocks: 45.82.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147379022 (0x8c8d34e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5fcedbdb84dd52fc6770d7ccfd3fc6684fa41
Validity
Not Before: Jan 18 09:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f67795c7c0aa75c2d4f8bd4f7040f727fab8cb34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:75:ca:96:e3:42:0f:cc:f0:0f:8a:80:90:59:
06:c2:df:eb:07:8a:f9:7c:f3:3f:22:7c:0b:68:b3:
dc:78:0d:77:0e:e7:6c:1a:2d:9f:c6:4d:c0:fb:e9:
8e:d4:87:b2:61:52:f5:cf:e4:61:50:31:11:43:a0:
50:ff:72:16:84:f9:3f:fd:fc:e4:c6:ce:d8:da:f7:
0f:bc:13:6e:87:96:57:14:e5:75:2d:97:19:0f:b8:
0e:4d:34:7e:4d:9b:9e:1f:23:b2:74:af:99:d7:3f:
64:91:ca:7b:1c:41:95:f0:99:ab:23:61:24:0f:cd:
4f:fc:76:ba:ea:0a:74:14:df:c4:5b:a0:b8:cf:b7:
40:92:99:f1:cb:6c:00:36:4a:34:02:eb:41:3a:c4:
0b:d5:64:22:3d:bc:74:a9:71:31:fc:8d:a8:8a:83:
a6:c7:80:98:48:a8:e3:e7:b6:91:50:b0:c3:0f:3f:
97:8a:8d:e2:6a:5d:43:6b:61:df:f2:b8:b5:be:7a:
7b:d8:f0:72:61:74:79:c8:51:ba:7e:25:e2:b3:15:
fc:51:66:a5:e9:a5:b4:dc:3d:23:bf:70:d9:2d:e3:
e5:cd:b7:08:6e:42:c4:54:04:ae:ca:0c:29:1f:ca:
91:32:3e:6c:51:90:5e:33:f6:79:01:4f:66:81:03:
30:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:77:95:C7:C0:AA:75:C2:D4:F8:BD:4F:70:40:F7:27:FA:B8:CB:34
X509v3 Authority Key Identifier:
keyid:91:F5:FC:ED:BD:B8:4D:D5:2F:C6:77:0D:7C:CF:D3:FC:66:84:FA:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfX87b24TdUvxncNfM_T_GaE-kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/9neVx8CqdcLU-L1PcED3J_q4yzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/kfX87b24TdUvxncNfM_T_GaE-kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.61.0/24
Signature Algorithm: sha256WithRSAEncryption
29:f9:45:07:7b:a0:b6:3d:ff:10:c2:39:d6:a8:f3:b9:40:a6:
79:a9:9b:bb:43:67:4c:c9:95:ed:a1:b4:ef:d4:d8:fc:e5:74:
4e:f7:31:12:b1:e8:cb:83:2e:e6:dd:38:03:10:3d:34:e9:b2:
b1:44:fd:66:c7:8f:6d:52:c7:6c:46:4e:b8:9e:9a:ec:a0:a8:
cf:78:00:9f:7d:3c:94:d6:af:f2:83:a4:e4:b2:94:d9:99:08:
02:c4:ed:87:2a:bc:13:ba:5a:f5:c4:12:f1:64:af:d6:fa:5b:
49:5c:dd:6b:ca:92:e6:22:48:13:51:ee:23:c1:35:67:05:59:
1e:fd:47:89:c2:70:de:ab:e1:3b:80:d1:bd:a0:57:6a:0d:25:
fa:5d:09:96:85:8c:ef:ae:f1:2a:0a:d0:5f:9b:7c:cb:e8:29:
8e:b0:29:5e:fe:61:cb:a6:11:c3:34:ce:70:cc:c6:b8:e8:48:
57:18:2b:4f:41:c0:a6:4f:ce:71:ff:14:07:6a:49:c7:d2:93:
77:f7:41:5a:37:98:16:90:1c:33:d3:d4:59:43:99:98:30:b4:
e8:67:cc:1c:0c:83:1a:db:1b:fd:1b:f5:23:cd:a6:d1:e8:cd:
40:34:2f:bc:02:d0:a9:a3:ee:83:cb:20:aa:8f:7f:34:36:59:
9e:18:11:57
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECMjTTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MWY1ZmNlZGJkYjg0ZGQ1MmZjNjc3MGQ3Y2NmZDNmYzY2ODRmYTQxMB4XDTIyMDEx
ODA5NTI1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjY3Nzk1YzdjMGFh
NzVjMmQ0ZjhiZDRmNzA0MGY3MjdmYWI4Y2IzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANF1ypbjQg/M8A+KgJBZBsLf6weK+XzzPyJ8C2iz3HgNdw7n
bBotn8ZNwPvpjtSHsmFS9c/kYVAxEUOgUP9yFoT5P/385MbO2Nr3D7wTboeWVxTl
dS2XGQ+4Dk00fk2bnh8jsnSvmdc/ZJHKexxBlfCZqyNhJA/NT/x2uuoKdBTfxFug
uM+3QJKZ8ctsADZKNALrQTrEC9VkIj28dKlxMfyNqIqDpseAmEio4+e2kVCwww8/
l4qN4mpdQ2th3/K4tb56e9jwcmF0echRun4l4rMV/FFmpemltNw9I79w2S3j5c23
CG5CxFQErsoMKR/KkTI+bFGQXjP2eQFPZoEDMM0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT2d5XHwKp1wtT4vU9wQPcn+rjLNDAfBgNVHSMEGDAWgBSR9fztvbhN1S/G
dw18z9P8ZoT6QTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tmWDg3YjI0VGRVdnhuY05mTV9UX0dhRS1rRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvOWEwOTgxLTBhZDgtNDhhNS1iZmVjLThjYzk4MzM2MTFlNi8x
LzluZVZ4OENxZGNMVS1MMVBjRUQzSl9xNHl6US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
OWEwOTgxLTBhZDgtNDhhNS1iZmVjLThjYzk4MzM2MTFlNi8xL2tmWDg3YjI0VGRV
dnhuY05mTV9UX0dhRS1rRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1SPTANBgkqhkiG9w0BAQsFAAOC
AQEAKflFB3ugtj3/EMI51qjzuUCmeambu0NnTMmV7aG079TY/OV0TvcxErHoy4Mu
5t04AxA9NOmysUT9ZsePbVLHbEZOuJ6a7KCoz3gAn308lNav8oOk5LKU2ZkIAsTt
hyq8E7pa9cQS8WSv1vpbSVzda8qS5iJIE1HuI8E1ZwVZHv1HicJw3qvhO4DRvaBX
ag0l+l0JloWM767xKgrQX5t8y+gpjrApXv5hy6YRwzTOcMzGuOhIVxgrT0HApk/O
cf8UB2pJx9KTd/dBWjeYFpAcM9PUWUOZmDC06GfMHAyDGtsb/Rv1I82m0ejNQDQv
vALQqaPug8sgqo9/NDZZnhgRVw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 07:12:24 2025 by rpki-client