Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/eWgdwbunpmpxsUxzSBmYeaubjUY.roa
File: eWgdwbunpmpxsUxzSBmYeaubjUY.roa (raw, json)
Hash identifier: qlVceHqh/iKjNmwiFseP4fsZlr4Pj4ahbpD4G4dW2VE=
Subject key identifier: 79:68:1D:C1:BB:A7:A6:6A:71:B1:4C:73:48:19:98:79:AB:9B:8D:46
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0AB4BF58
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/eWgdwbunpmpxsUxzSBmYeaubjUY.roa
Signing time: Sat 01 Jan 2022 12:00:28 +0000
ROA not before: Sat 01 Jan 2022 12:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203634
IP address blocks: 82.222.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179617624 (0xab4bf58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 12:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79681dc1bba7a66a71b14c7348199879ab9b8d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fd:69:7d:20:28:57:d8:79:2b:4c:44:a4:9d:
15:2f:eb:cc:ec:62:6c:bb:3e:2b:b2:4b:97:6b:31:
cb:ae:62:6a:a2:6f:d7:1f:61:7d:12:23:38:7c:d3:
cc:8a:a3:9a:91:18:38:04:c6:14:45:a9:d5:ad:07:
fb:c4:7f:cb:30:d9:dc:2c:d3:30:fc:9e:68:ac:6b:
7d:a9:cb:7f:6c:c6:28:07:d3:3f:7b:8b:2f:81:81:
ff:59:23:8b:70:f4:75:51:02:98:6f:a5:53:ad:b6:
a5:78:cf:61:fd:01:2b:c7:14:67:c5:f2:c0:f3:c0:
a5:1e:c0:26:09:da:be:49:e5:c8:79:db:4c:70:92:
98:e8:2c:25:79:f0:2c:d5:fc:4f:9d:df:78:f2:65:
32:b3:d3:03:6e:ba:78:ea:13:b2:0b:42:22:e1:0b:
b2:99:ff:07:77:71:75:09:fa:78:39:2e:5a:46:4a:
ad:63:a1:e2:b7:9c:7d:ad:9f:d2:85:62:53:c8:ea:
e9:55:fd:d7:d1:a1:71:6b:b8:80:3e:54:a4:cb:6a:
48:75:a7:6e:a5:1d:f0:57:41:7c:c6:a5:5f:17:b8:
6a:9a:5d:2f:f7:87:26:a6:60:ed:54:f1:8d:99:ad:
e5:d4:17:2b:2e:11:ce:61:e8:6c:3b:7c:64:5d:a2:
f3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:68:1D:C1:BB:A7:A6:6A:71:B1:4C:73:48:19:98:79:AB:9B:8D:46
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/eWgdwbunpmpxsUxzSBmYeaubjUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.222.159.0/24
Signature Algorithm: sha256WithRSAEncryption
17:12:8c:ed:0e:04:e0:ac:77:b1:93:58:af:3c:13:4d:0b:0e:
20:6d:1f:14:3f:03:bd:3b:33:15:d6:dd:9a:42:62:59:0e:01:
a1:f1:75:ed:ad:d1:31:f9:84:f4:12:6f:fc:2f:ae:56:d2:4f:
bf:20:2d:42:ed:10:68:c1:f3:1d:a2:eb:31:17:d0:c7:1e:15:
51:1b:09:1b:a0:58:95:28:fe:d6:2e:91:18:0a:07:49:b3:a0:
cd:d3:b3:51:9d:22:9d:4a:4e:a2:35:06:2d:7a:3a:09:88:fe:
d9:6f:8b:52:8c:ad:18:9b:74:1d:4c:43:1e:31:3b:94:5b:97:
6b:68:c5:fc:d6:2b:d8:68:10:7d:b4:39:a3:88:13:84:bc:9e:
8e:b4:42:ab:0c:ed:5e:8b:89:f7:e8:e0:6d:b2:bc:87:cc:15:
2d:66:5a:0b:f6:a7:d1:14:78:28:5d:86:49:5e:48:fb:50:1a:
e4:9e:ed:1f:d6:c0:e8:35:20:7c:ac:c5:31:63:c5:bd:7d:17:
d0:98:8c:5e:b7:62:2a:22:91:bf:fd:78:ca:f9:a9:03:17:13:
f8:a1:8a:b2:f8:13:c5:05:ae:4c:7c:6a:fd:ae:19:12:f0:fa:
64:71:58:c4:fa:0a:ee:c0:c2:68:05:53:a1:a2:81:61:b1:f5:
cc:1c:3a:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECrS/WDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YTlkMzBlNjAzNWJlOGI4Mzg2MDYxZjI3MTQ4MWM3MDdlMDRjZTJiMB4XDTIyMDEw
MTEyMDAyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzk2ODFkYzFiYmE3
YTY2YTcxYjE0YzczNDgxOTk4NzlhYjliOGQ0NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKf9aX0gKFfYeStMRKSdFS/rzOxibLs+K7JLl2sxy65iaqJv
1x9hfRIjOHzTzIqjmpEYOATGFEWp1a0H+8R/yzDZ3CzTMPyeaKxrfanLf2zGKAfT
P3uLL4GB/1kji3D0dVECmG+lU622pXjPYf0BK8cUZ8XywPPApR7AJgnavknlyHnb
THCSmOgsJXnwLNX8T53fePJlMrPTA266eOoTsgtCIuELspn/B3dxdQn6eDkuWkZK
rWOh4recfa2f0oViU8jq6VX919GhcWu4gD5UpMtqSHWnbqUd8FdBfMalXxe4appd
L/eHJqZg7VTxjZmt5dQXKy4RzmHobDt8ZF2i8zUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR5aB3Bu6emanGxTHNIGZh5q5uNRjAfBgNVHSMEGDAWgBS6nTDmA1vouDhg
YfJxSBxwfgTOKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VwMHc1Z05iNkxnNFlHSHljVWdjY0g0RXppcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvYWM5YzMyLTdkYmMtNGQ2Yy1iYzA4LTVkNTg0ZmJjNWQyNy8x
L2VXZ2R3YnVucG1weHNVeHpTQm1ZZWF1YmpVWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
YWM5YzMyLTdkYmMtNGQ2Yy1iYzA4LTVkNTg0ZmJjNWQyNy8xL3VwMHc1Z05iNkxn
NFlHSHljVWdjY0g0RXppcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFLenzANBgkqhkiG9w0BAQsFAAOC
AQEAFxKM7Q4E4Kx3sZNYrzwTTQsOIG0fFD8DvTszFdbdmkJiWQ4BofF17a3RMfmE
9BJv/C+uVtJPvyAtQu0QaMHzHaLrMRfQxx4VURsJG6BYlSj+1i6RGAoHSbOgzdOz
UZ0inUpOojUGLXo6CYj+2W+LUoytGJt0HUxDHjE7lFuXa2jF/NYr2GgQfbQ5o4gT
hLyejrRCqwztXouJ9+jgbbK8h8wVLWZaC/an0RR4KF2GSV5I+1Aa5J7tH9bA6DUg
fKzFMWPFvX0X0JiMXrdiKiKRv/14yvmpAxcT+KGKsvgTxQWuTHxq/a4ZEvD6ZHFY
xPoK7sDCaAVToaKBYbH1zBw6zg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 19:01:31 2025 by rpki-client