Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/2097dd-c396-48f6-be87-7bbac8cc2783/1/FypRmrXnTLU737SAIP3VD1oF9p0.roa
File: FypRmrXnTLU737SAIP3VD1oF9p0.roa (raw, json)
Hash identifier: 4quq/AryUaf2XBxfb386pbeSNNqoXNxjLov5dhhl8Ww=
Subject key identifier: 17:2A:51:9A:B5:E7:4C:B5:3B:DF:B4:80:20:FD:D5:0F:5A:05:F6:9D
Certificate issuer: /CN=03d8024188491a319c5276721f940efae7fc21af
Certificate serial: 0306B80C
Authority key identifier: 03:D8:02:41:88:49:1A:31:9C:52:76:72:1F:94:0E:FA:E7:FC:21:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9gCQYhJGjGcUnZyH5QO-uf8Ia8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/2097dd-c396-48f6-be87-7bbac8cc2783/1/FypRmrXnTLU737SAIP3VD1oF9p0.roa
Signing time: Sat 01 Jan 2022 09:06:09 +0000
ROA not before: Sat 01 Jan 2022 09:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61397
IP address blocks: 45.12.156.0/22 maxlen: 22
185.105.180.0/22 maxlen: 22
185.9.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50771980 (0x306b80c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d8024188491a319c5276721f940efae7fc21af
Validity
Not Before: Jan 1 09:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=172a519ab5e74cb53bdfb48020fdd50f5a05f69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:11:18:e2:7a:43:2a:31:bf:36:93:51:ab:6f:
fb:90:38:7e:ad:4a:fa:74:18:e7:f4:9f:ad:93:69:
fd:ad:de:30:9e:16:fd:0c:f2:f3:cf:41:29:42:eb:
ff:67:85:52:84:c9:36:25:ca:4f:f0:e0:ac:d6:56:
42:53:01:45:51:a5:1c:f1:bb:57:24:7a:17:72:7e:
34:6f:d6:06:62:62:6c:68:0f:73:69:62:f2:76:57:
e1:fe:2d:a6:01:37:9f:68:b2:5d:6e:78:6b:74:be:
88:df:3a:1c:fb:e2:49:4c:cb:e2:06:a5:49:b2:ee:
ac:3f:0f:c4:67:85:36:6e:8d:42:72:e6:ab:74:a1:
3b:b6:5a:d4:66:46:c6:35:1b:fe:0a:12:ff:dc:93:
08:ed:1d:a8:f8:fa:20:cd:22:14:96:d2:5c:ca:2f:
52:ef:bf:c0:e8:84:7b:26:7e:ea:b6:43:5c:4f:9d:
46:59:2d:d4:c8:a0:47:ae:90:f9:b5:b3:71:39:b4:
96:d9:82:25:dd:b5:a8:06:1e:49:ff:39:a0:a0:cc:
ad:e9:b4:a9:22:54:72:2e:49:c8:07:da:88:e3:31:
08:22:ec:15:ed:78:10:6c:02:b6:b6:dc:b5:fa:59:
76:ac:3a:56:60:40:c1:5c:6a:70:95:a0:fe:35:d6:
6a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2A:51:9A:B5:E7:4C:B5:3B:DF:B4:80:20:FD:D5:0F:5A:05:F6:9D
X509v3 Authority Key Identifier:
keyid:03:D8:02:41:88:49:1A:31:9C:52:76:72:1F:94:0E:FA:E7:FC:21:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9gCQYhJGjGcUnZyH5QO-uf8Ia8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/2097dd-c396-48f6-be87-7bbac8cc2783/1/FypRmrXnTLU737SAIP3VD1oF9p0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/2097dd-c396-48f6-be87-7bbac8cc2783/1/A9gCQYhJGjGcUnZyH5QO-uf8Ia8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.156.0/22
185.9.4.0/22
185.105.180.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:f9:3f:72:73:2d:3e:7c:a3:e2:9d:f3:04:c3:7f:82:d5:17:
37:fa:a9:10:20:13:29:00:c4:86:fe:8c:1f:be:89:1d:ce:96:
f5:c9:5f:6f:9a:10:73:4d:5d:a0:93:e9:b1:c7:d2:49:2c:3c:
d9:02:74:4c:c0:08:a4:49:d5:db:2e:5d:f3:df:24:47:1b:21:
94:98:32:86:27:fe:61:b9:8b:ef:b3:1f:34:4e:4d:95:5a:77:
0f:86:6a:58:4d:72:86:4b:a3:4b:ea:c6:e0:0b:c2:45:7d:03:
0c:47:f7:fd:92:23:e3:58:23:ff:cf:bb:14:e3:d2:91:43:4a:
75:87:30:41:e7:29:55:18:c5:dd:48:45:a7:0c:18:6b:67:1c:
19:97:74:86:03:fd:1b:cc:86:84:a8:97:b2:26:47:3b:58:c8:
a1:0f:f8:e8:06:cc:8d:56:2d:9e:09:98:a7:28:82:1a:71:d7:
cf:27:13:6b:4c:13:57:64:48:41:9b:5b:13:1d:9a:26:f2:17:
de:29:10:b2:31:45:92:9d:00:ed:a0:40:55:1e:af:a8:47:f3:
3a:8d:56:39:22:ea:a7:83:3e:45:47:a7:87:f1:89:54:d6:1f:
8d:cc:8b:b2:b6:8e:0f:79:44:c6:1e:c2:8a:5e:c3:ec:4c:f2:
79:19:77:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:42:14 2025 by rpki-client