Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/syocmqJcsCVlmqK4pNxbHRiaw3g.roa
File: syocmqJcsCVlmqK4pNxbHRiaw3g.roa (raw, json)
Hash identifier: gzUwy//VvB3AW9XN7NiLOvoXHYl2jkgdGucHvThlK+0=
Subject key identifier: B3:2A:1C:9A:A2:5C:B0:25:65:9A:A2:B8:A4:DC:5B:1D:18:9A:C3:78
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0AB43C85
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/syocmqJcsCVlmqK4pNxbHRiaw3g.roa
Signing time: Sat 01 Jan 2022 12:00:27 +0000
ROA not before: Sat 01 Jan 2022 12:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202924
IP address blocks: 82.222.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179584133 (0xab43c85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 12:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b32a1c9aa25cb025659aa2b8a4dc5b1d189ac378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:77:de:06:f6:98:fd:b9:b3:ad:64:36:1b:83:
1c:c0:21:10:c4:8c:ef:62:97:2a:b1:bd:75:16:6a:
3b:3f:0e:1a:cf:ff:44:eb:0e:48:50:22:ee:bc:b6:
ab:8c:0d:42:2b:2b:ae:5e:ec:b7:0a:88:2c:a7:0b:
4d:18:e2:3c:fe:04:95:97:0b:97:70:47:3e:13:f9:
25:4c:f6:dd:f2:35:66:ec:f6:d1:d3:47:6f:86:73:
0a:a3:49:72:48:2f:96:63:b7:cc:22:5d:2a:4b:bf:
b8:c3:54:9d:02:2d:20:a5:1e:d2:41:d5:fe:73:0a:
79:82:b1:a9:de:24:10:13:aa:e3:66:2f:3b:88:5c:
cf:ec:23:f4:62:ae:41:69:38:ab:ed:3f:ab:69:44:
de:8b:c1:b1:16:2c:29:48:51:68:12:94:fd:da:b2:
0a:30:ed:68:23:8b:52:7d:29:d0:ce:60:9c:bd:4b:
00:ea:cf:61:04:ba:09:5b:b5:fd:d2:ca:76:70:63:
c9:ff:d4:80:37:d4:d0:09:fc:ab:12:43:42:5e:c3:
c4:81:57:21:a0:72:f4:c1:7c:d0:9a:6e:a0:e7:68:
bb:3c:47:08:2f:70:9c:d4:d3:66:1a:e7:5c:78:bb:
59:0d:50:fa:0c:31:9b:3b:c8:03:a6:ce:39:8d:0b:
77:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2A:1C:9A:A2:5C:B0:25:65:9A:A2:B8:A4:DC:5B:1D:18:9A:C3:78
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/syocmqJcsCVlmqK4pNxbHRiaw3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.222.83.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:40:10:d4:7e:91:32:5b:f4:ea:46:8c:10:68:f9:0c:6c:d3:
37:7f:35:ea:b0:ab:7c:b3:6d:6f:49:e6:aa:bc:e2:7f:01:ae:
8d:da:1d:be:a0:9a:ab:1f:ed:40:74:3a:4d:00:c1:26:d8:18:
ab:03:06:91:33:5b:34:a2:3d:51:20:e4:37:2a:10:d8:4e:ac:
b8:5e:44:27:d1:c3:34:3e:1f:f5:49:11:af:6d:4b:24:2a:d3:
7c:18:29:6c:a6:2b:b3:55:e2:9c:0b:67:ce:66:70:c0:76:5c:
f8:29:b3:4f:e3:fe:0a:a6:9f:cf:06:1f:6d:37:29:67:a3:60:
f2:e8:5f:ed:cc:0a:7d:a5:7e:50:79:07:35:7e:46:6b:17:54:
fa:4f:0c:f8:8c:a6:f4:b7:02:96:85:e7:3a:87:d2:79:9e:62:
15:21:98:65:81:04:9c:15:96:58:34:27:0f:de:96:71:18:c2:
ad:72:2e:2f:ee:f5:56:dc:bd:19:df:dd:2f:de:27:4d:7b:96:
62:ab:92:d2:14:dc:72:9e:fb:c5:cd:7b:66:3d:8e:4d:2e:26:
5f:4f:71:49:55:e3:31:38:cb:41:3b:c8:3d:68:44:08:ec:0c:
ee:bb:b7:6d:db:31:61:3f:83:b4:5f:18:22:b2:0b:25:f7:78:
54:2b:81:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:37:22 2025 by rpki-client