Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/_pMi8PIQsILwvrTZ25z3d-2Ye48.roa
File: _pMi8PIQsILwvrTZ25z3d-2Ye48.roa (raw, json)
Hash identifier: urQL6NB6hINNWIgzYK1E8+0mhkxzuOvNqIvKH1yY+dA=
Subject key identifier: FE:93:22:F0:F2:10:B0:82:F0:BE:B4:D9:DB:9C:F7:77:ED:98:7B:8F
Certificate issuer: /CN=45fd3374c7ac3c03778707f367f9148f1fe0390d
Certificate serial: 01856F0B51034D0B636D81917154F0850F72
Authority key identifier: 45:FD:33:74:C7:AC:3C:03:77:87:07:F3:67:F9:14:8F:1F:E0:39:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/_pMi8PIQsILwvrTZ25z3d-2Ye48.roa
Signing time: Sun 01 Jan 2023 20:34:50 +0000
ROA not before: Sun 01 Jan 2023 20:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8677
IP address blocks: 82.195.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:51:03:4d:0b:63:6d:81:91:71:54:f0:85:0f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45fd3374c7ac3c03778707f367f9148f1fe0390d
Validity
Not Before: Jan 1 20:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe9322f0f210b082f0beb4d9db9cf777ed987b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b3:c7:2a:6c:06:0b:9b:e9:35:b9:e0:b8:c7:
7a:aa:10:f3:9d:1e:b4:d7:8f:c5:cc:96:76:db:7e:
69:93:c0:66:c0:76:ce:69:17:8e:5c:54:73:3c:47:
b1:14:79:3d:37:1e:c6:02:a6:19:95:c5:a7:a9:62:
c4:04:46:2b:29:35:87:36:22:3f:98:a5:74:ee:60:
0a:21:b9:d4:f3:ff:96:7c:e1:df:e7:a1:07:92:77:
cf:7c:e6:58:4c:6f:41:e2:68:9d:9d:9c:b6:0b:bf:
3a:35:82:d2:05:d2:a4:3a:8d:ee:23:0e:3d:f4:93:
4d:e0:bf:9b:7f:d8:89:e7:2f:2e:85:fa:6f:18:70:
83:21:38:e7:fd:37:fa:c0:cd:82:c0:49:2f:2d:cc:
97:76:80:62:77:e5:ae:f4:1d:c9:2a:53:be:27:5a:
98:25:18:52:58:4b:fc:f3:fb:ee:fb:06:33:d5:09:
0c:39:88:d3:af:30:7c:dc:95:64:39:c3:33:d9:5f:
ec:d2:98:1e:03:34:0a:c0:5b:18:be:6e:da:dc:b7:
2d:ee:d7:a2:8a:07:a5:11:a6:04:8e:98:03:f0:32:
a8:16:6d:84:63:28:ec:52:91:a9:dd:5e:a4:91:91:
aa:d9:0f:32:9e:02:98:35:ce:6b:22:4f:40:7d:53:
45:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:93:22:F0:F2:10:B0:82:F0:BE:B4:D9:DB:9C:F7:77:ED:98:7B:8F
X509v3 Authority Key Identifier:
keyid:45:FD:33:74:C7:AC:3C:03:77:87:07:F3:67:F9:14:8F:1F:E0:39:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/_pMi8PIQsILwvrTZ25z3d-2Ye48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.195.32.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:b0:91:6b:ad:8f:c2:b1:99:5f:0b:27:ca:83:ac:75:4b:0c:
6c:5d:fb:ce:0d:7e:8a:fb:7b:14:22:d5:88:a8:ce:bc:b3:a1:
c6:17:be:dc:8f:47:80:f8:7c:18:00:33:56:57:6d:a6:25:83:
96:3b:72:ae:6b:ca:41:cc:44:56:c1:06:1f:a5:e5:9a:bc:e9:
14:e9:0b:64:c8:75:40:65:3e:0e:d1:12:8f:ac:fa:09:83:ff:
59:81:4c:d1:ad:3f:63:cb:1d:3c:e3:bd:24:57:e2:fd:31:a9:
31:13:8a:24:d2:de:3b:02:a2:20:59:40:60:8d:69:df:8e:8e:
70:80:3c:36:03:a4:63:a6:d2:bc:92:1f:d5:36:e6:01:08:2e:
ef:58:90:6a:62:f6:99:fc:5e:8e:67:15:c9:a6:af:a4:e0:05:
58:47:73:f9:2d:57:7b:c6:4f:3e:97:02:a4:80:ec:db:56:11:
5b:1c:e6:e2:1a:df:3c:c9:52:86:f0:4d:e7:03:63:bc:db:71:
bd:b5:55:b3:aa:1d:1e:45:e0:19:80:b5:db:42:78:be:8b:3f:
13:68:55:ea:12:db:1a:30:82:d3:a1:31:bc:86:1f:21:6b:cc:
d1:5b:61:88:40:e5:09:9c:aa:22:39:82:47:1c:2f:f8:0b:2a:
cf:70:88:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 05:37:56 2025 by rpki-client