Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/8c_AtEVA3BmU11QY7mgJHFSYFkI.roa
File: 8c_AtEVA3BmU11QY7mgJHFSYFkI.roa (raw, json)
Hash identifier: TX4ROrH1oahQltDBU/85GJa7cD5vcDstjRJ548R8JBo=
Subject key identifier: F1:CF:C0:B4:45:40:DC:19:94:D7:54:18:EE:68:09:1C:54:98:16:42
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 018573561F9587BA47BA99116770F0E273CC
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/8c_AtEVA3BmU11QY7mgJHFSYFkI.roa
Signing time: Mon 02 Jan 2023 16:35:02 +0000
ROA not before: Mon 02 Jan 2023 16:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 82.222.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:1f:95:87:ba:47:ba:99:11:67:70:f0:e2:73:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 2 16:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1cfc0b44540dc1994d75418ee68091c54981642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f4:29:9b:92:3c:3d:c0:ff:03:30:96:90:79:
1b:f7:c2:30:73:b5:07:a2:5f:0f:a6:5c:0e:8e:de:
2e:98:67:43:7c:96:bf:87:7a:8b:6a:e2:18:a3:7d:
91:54:d8:ea:e5:35:4e:3b:20:4d:f6:e5:13:e8:60:
50:a6:3d:5d:a3:44:2d:41:92:fb:3d:79:f0:12:96:
ef:59:63:de:69:01:77:f2:ca:15:ac:77:96:fc:20:
77:93:cf:94:36:6f:77:17:ad:66:37:6d:49:cf:f0:
ec:3b:d7:70:b1:a6:df:cf:58:d9:99:a6:df:36:c2:
1d:fd:bb:6d:80:f4:82:62:32:62:7a:17:c5:1a:f7:
df:2c:6f:ad:ec:4e:04:37:b7:67:44:30:ef:52:2c:
ca:83:aa:84:e4:64:00:c9:82:64:37:73:e5:e2:62:
3f:69:13:44:84:7e:d7:38:8a:c2:30:d9:11:bb:95:
2f:ed:80:d3:3d:89:47:44:f9:ea:ec:e5:3b:c0:0b:
08:d8:04:e9:6c:eb:4c:95:25:75:aa:30:fe:9f:50:
10:b5:66:1f:c4:65:7e:ca:36:8d:ec:e9:c8:21:01:
74:20:8d:c5:86:4d:50:73:df:0a:d3:74:4d:8d:bf:
5e:ff:d1:17:fc:38:9f:2e:30:b0:81:a6:96:3c:ae:
6d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:CF:C0:B4:45:40:DC:19:94:D7:54:18:EE:68:09:1C:54:98:16:42
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/8c_AtEVA3BmU11QY7mgJHFSYFkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.222.169.0/24
Signature Algorithm: sha256WithRSAEncryption
59:d8:42:82:7f:db:3e:34:5f:d9:84:12:d5:6f:92:99:55:5f:
8a:2d:75:17:ff:5e:43:df:7b:72:ca:22:ec:ff:57:5c:ff:8e:
00:b9:ae:82:9a:1e:ab:21:26:15:e1:3d:85:b3:35:bc:64:de:
4b:9e:2b:a9:c9:a0:07:81:df:5e:90:14:43:96:d6:1e:bf:9e:
77:c6:ae:03:43:9d:79:58:24:4b:74:d9:2c:e2:3c:cb:7f:de:
e1:b3:40:e8:7c:c3:37:8f:18:a5:2d:d5:59:d8:26:0d:81:1a:
1f:8c:41:95:e5:a4:9d:1f:dc:bb:95:d1:73:cd:4d:ce:79:37:
12:86:5a:18:96:83:09:d1:41:c6:31:91:b6:7f:16:02:63:e6:
40:e9:27:f6:d5:4d:ba:89:1c:59:dd:ec:bf:08:32:3e:8e:bf:
87:14:70:33:9c:c1:e8:40:99:f3:bb:23:c7:83:61:5f:c0:9e:
dc:70:74:58:88:5c:0e:81:4f:31:9a:38:55:8a:72:6c:7a:39:
f4:d5:03:08:23:0c:2b:c6:c6:64:86:a5:6f:fe:a2:5a:16:54:
85:5f:70:c8:a0:53:ee:97:1d:b8:26:4e:ff:b2:3b:22:df:b9:
83:e2:5d:6f:08:1f:35:d2:72:4c:1a:fc:cf:28:d9:5c:6a:d3:
30:01:6c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:40:49 2025 by rpki-client