Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/4dcO-0AnGsPBjit6qRATWz3TNJM.roa
File: 4dcO-0AnGsPBjit6qRATWz3TNJM.roa (raw, json)
Hash identifier: wSQNbMENH/7ox3DUx7r+Lll9+pIr94U92LtqSLM8LIo=
Subject key identifier: E1:D7:0E:FB:40:27:1A:C3:C1:8E:2B:7A:A9:10:13:5B:3D:D3:34:93
Certificate issuer: /CN=45fd3374c7ac3c03778707f367f9148f1fe0390d
Certificate serial: 01856F0B51AC3486AC52F5E43E6C55468558
Authority key identifier: 45:FD:33:74:C7:AC:3C:03:77:87:07:F3:67:F9:14:8F:1F:E0:39:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/4dcO-0AnGsPBjit6qRATWz3TNJM.roa
Signing time: Sun 01 Jan 2023 20:34:50 +0000
ROA not before: Sun 01 Jan 2023 20:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16177
IP address blocks: 82.195.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:51:ac:34:86:ac:52:f5:e4:3e:6c:55:46:85:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45fd3374c7ac3c03778707f367f9148f1fe0390d
Validity
Not Before: Jan 1 20:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1d70efb40271ac3c18e2b7aa910135b3dd33493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:04:b5:67:bb:aa:70:db:ff:03:ce:e3:a7:6c:
72:fd:46:24:40:fa:9c:2d:4d:0d:13:28:8f:73:92:
db:60:93:98:49:a4:17:22:fc:a0:1d:7c:bb:de:08:
62:a8:3e:f2:9b:e0:18:e3:e8:4d:8e:4a:98:f5:7e:
56:68:2b:a8:9f:aa:7a:28:98:b0:72:44:ab:79:af:
7d:8f:5f:28:21:e3:c7:e6:5d:cc:a6:22:1a:f5:41:
45:5a:25:d4:43:71:ce:b7:85:fe:22:4b:0c:fe:9c:
f4:89:4d:00:f1:28:70:c4:24:7d:d9:60:62:e2:a8:
09:c5:59:2e:d2:46:d2:df:17:29:25:94:24:f7:32:
25:60:e9:5a:ea:36:e0:b0:7a:7e:a9:b6:34:2d:9a:
74:42:2f:e1:da:07:9c:96:9b:e3:8d:84:97:87:f2:
b3:f7:9c:12:1e:44:75:41:98:f8:8d:a4:32:d5:1d:
8e:69:5c:4a:ef:ce:0c:f5:be:96:7a:ec:ea:1a:f6:
00:8d:a9:4b:be:61:70:b5:63:b6:c8:f5:ce:2c:5f:
11:47:9f:24:60:44:96:53:6a:86:80:a0:a9:a8:81:
79:a8:ca:b3:38:a4:30:20:58:46:0b:5d:f6:9d:f6:
10:4d:4d:34:0b:8a:08:6a:21:c3:f8:d9:3b:d6:ed:
80:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D7:0E:FB:40:27:1A:C3:C1:8E:2B:7A:A9:10:13:5B:3D:D3:34:93
X509v3 Authority Key Identifier:
keyid:45:FD:33:74:C7:AC:3C:03:77:87:07:F3:67:F9:14:8F:1F:E0:39:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/4dcO-0AnGsPBjit6qRATWz3TNJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.195.32.0/19
Signature Algorithm: sha256WithRSAEncryption
eb:61:8b:63:bf:e2:97:dd:b3:ea:bd:82:97:62:4c:51:3d:29:
6e:41:d5:f8:7b:f8:a9:67:93:04:a0:3f:cc:d3:84:09:7c:33:
6f:67:ea:9f:7d:cc:f4:8f:70:47:e4:4e:4d:b6:5e:22:2f:64:
af:5d:2f:b8:62:0d:2b:ab:0d:3c:29:83:ac:52:16:0e:a3:0d:
86:12:d5:27:4b:50:b2:1d:eb:65:f4:c3:8d:5f:f0:59:d7:02:
29:cb:11:3f:c6:af:f5:44:60:06:8f:35:80:f3:79:3a:f7:4b:
b9:c8:ba:ec:f2:11:99:f7:d1:83:3f:0b:3a:c1:2b:ec:54:f6:
67:df:eb:f2:62:2b:06:17:69:a0:82:18:55:23:14:3f:06:9c:
59:53:18:e3:18:d0:40:8a:46:47:72:ab:a2:95:fb:c8:d0:a6:
2e:6d:a7:88:83:43:76:d9:31:db:56:a8:4a:9a:5c:64:0b:d3:
7a:f1:7c:6a:64:18:db:53:91:d2:38:16:20:9a:ae:a5:87:e5:
a2:9d:c0:42:1f:f1:0e:9b:86:4e:2a:ef:c5:99:07:9a:ab:c6:
6e:2f:88:32:29:cc:04:6a:af:b9:5d:fb:67:29:6f:ce:6e:c0:
b2:2d:ca:6f:47:42:3e:c3:f4:b6:51:21:e9:b0:d6:7f:6c:cc:
c2:51:79:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 05:38:00 2025 by rpki-client