Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/gepop1YzErG5p_PstSgElj-QRzE.roa
File: gepop1YzErG5p_PstSgElj-QRzE.roa (raw, json)
Hash identifier: eJZ/o4W3OjGUzTwdzY9IGtbhnPaIpCi33B5jKeD6WHU=
Subject key identifier: 81:EA:68:A7:56:33:12:B1:B9:A7:F3:EC:B5:28:04:96:3F:90:47:31
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0AAD2497
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/gepop1YzErG5p_PstSgElj-QRzE.roa
Signing time: Sat 01 Jan 2022 12:00:22 +0000
ROA not before: Sat 01 Jan 2022 12:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51174
IP address blocks: 82.222.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179119255 (0xaad2497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 12:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81ea68a7563312b1b9a7f3ecb52804963f904731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1c:cb:26:05:d0:b2:e1:cc:77:51:e0:b8:33:
df:99:f4:74:cf:6a:49:9b:03:a2:68:9c:b1:48:c8:
48:05:e7:53:b3:08:9b:3b:81:53:ae:d7:5e:33:39:
c1:cc:9c:c4:85:8a:03:b2:6c:30:80:55:a2:06:07:
d4:54:9e:93:20:89:8d:61:46:a2:42:3c:96:59:58:
94:e4:e8:55:92:01:16:7c:04:49:79:aa:c2:6f:fd:
cb:28:c3:77:3a:b6:ea:91:bc:c5:d2:57:44:1d:9d:
51:28:fc:a2:dd:5a:30:05:d9:53:c9:cf:d7:fe:e7:
a6:4c:f3:e0:e3:4e:c0:5c:ec:13:01:1d:5c:34:4d:
fb:30:cb:f4:86:8c:50:6c:62:38:d2:a1:5b:64:70:
e7:37:b8:84:f9:28:4f:63:27:f7:5f:d5:4b:04:12:
91:dc:7e:8a:27:2b:f2:cd:37:48:f1:5a:7e:be:92:
ac:2e:a6:2a:38:e5:77:62:75:0f:ee:b8:a8:b1:8a:
19:7a:dc:b2:ca:7b:9f:58:e3:5f:a8:1e:2a:7f:ae:
58:93:e5:04:2f:fb:3b:97:0e:db:8a:83:04:77:fb:
c8:e1:f4:7e:1a:8e:e7:fc:16:c7:2d:27:00:07:8b:
75:ae:22:14:ea:dd:6d:bb:ac:b8:01:4d:d8:7a:f6:
81:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EA:68:A7:56:33:12:B1:B9:A7:F3:EC:B5:28:04:96:3F:90:47:31
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/gepop1YzErG5p_PstSgElj-QRzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.222.128.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:67:0e:54:74:b8:0e:98:a8:43:fb:29:e8:54:ce:00:84:0f:
e8:a6:1e:98:8e:26:b0:12:87:b3:72:00:d0:ba:95:24:ad:19:
ae:2d:b5:38:a0:d0:32:2d:d0:19:4e:7a:03:b8:14:f2:e6:06:
50:69:06:27:e6:3a:04:67:cc:3f:a7:11:ca:71:4f:0a:0b:2b:
ab:3d:58:5a:c2:1b:17:34:30:a4:98:9b:8d:db:b5:41:ca:a6:
e9:19:d5:06:fa:67:23:0f:fe:66:88:f5:99:be:83:83:33:e9:
14:16:51:d4:df:11:36:46:4e:bf:e8:0c:70:e9:9a:e5:55:44:
92:ac:e1:9a:b2:a1:26:c4:a0:72:7d:ff:cc:01:5c:b9:26:70:
39:a8:3f:a8:fd:6e:9b:9e:2f:5d:cc:95:bb:4b:2b:7c:76:70:
be:08:1a:6e:8a:79:e5:22:8a:8a:26:5e:ad:d7:6a:85:b7:59:
6a:8f:33:6f:24:c3:81:f9:1d:1e:ba:7c:0d:93:a2:f5:df:b7:
4f:c0:70:f5:70:ec:74:54:55:f9:70:b5:46:90:16:2e:79:fd:
0a:d2:bf:55:26:ae:64:53:83:c2:26:49:b9:d0:a2:1d:19:aa:
41:ff:64:eb:34:04:13:1c:33:e9:0e:a8:19:0d:2e:50:48:26:
95:36:a7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:45:32 2025 by rpki-client