Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/crC2cS0Uq_8felRuZ8oSGoS8DUc.roa
File: crC2cS0Uq_8felRuZ8oSGoS8DUc.roa (raw, json)
Hash identifier: IBtzqoujtxFhlOn6LJtncuWlulEQkg0Eybww1t1prPE=
Subject key identifier: 72:B0:B6:71:2D:14:AB:FF:1F:7A:54:6E:67:CA:12:1A:84:BC:0D:47
Certificate issuer: /CN=45fd3374c7ac3c03778707f367f9148f1fe0390d
Certificate serial: 0309D810
Authority key identifier: 45:FD:33:74:C7:AC:3C:03:77:87:07:F3:67:F9:14:8F:1F:E0:39:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/crC2cS0Uq_8felRuZ8oSGoS8DUc.roa
Signing time: Sat 01 Jan 2022 14:05:16 +0000
ROA not before: Sat 01 Jan 2022 14:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16177
IP address blocks: 82.195.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50976784 (0x309d810)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45fd3374c7ac3c03778707f367f9148f1fe0390d
Validity
Not Before: Jan 1 14:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72b0b6712d14abff1f7a546e67ca121a84bc0d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ed:0b:c1:b8:54:3a:72:35:3a:18:13:b7:a9:
2d:1c:6a:6b:ed:49:ed:c2:7f:bf:c0:9e:3d:84:93:
54:bb:5c:ef:d7:78:0a:54:6a:62:fb:24:9d:e0:be:
6f:4c:09:93:25:e1:da:68:78:48:0c:8c:5f:4d:aa:
a9:01:9f:00:6d:d8:ab:cf:ae:33:21:5c:ad:cb:76:
87:1e:53:c2:cf:75:e2:fc:a2:0f:cc:ca:29:7e:fb:
28:ca:d7:5d:2e:3a:22:eb:60:ca:4d:b6:a9:82:94:
3e:44:7b:e6:49:dd:a4:3b:5d:0c:5d:b3:44:2d:2a:
23:40:02:18:ca:e4:67:65:5e:c7:2e:34:d6:8c:e7:
6b:56:04:c2:07:f1:c5:84:2b:45:52:9d:5f:fe:3a:
6b:f5:fc:e4:95:5f:68:65:8e:40:03:36:bd:14:b9:
1d:4b:e6:b1:c8:49:76:50:aa:b9:1d:fb:f3:27:71:
92:a2:f4:7d:c0:97:bc:e3:4f:65:e6:7a:d5:e0:a8:
f7:eb:72:2d:02:ff:ff:97:6d:bd:e2:ad:df:0b:b0:
36:7d:42:ad:b8:11:58:b4:03:a3:b6:29:02:43:9b:
65:a1:be:d3:2c:f2:7b:fd:36:19:2e:f5:28:c6:c5:
e5:b7:c3:ab:3d:81:08:3c:9e:ba:5d:47:1d:02:b6:
45:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B0:B6:71:2D:14:AB:FF:1F:7A:54:6E:67:CA:12:1A:84:BC:0D:47
X509v3 Authority Key Identifier:
keyid:45:FD:33:74:C7:AC:3C:03:77:87:07:F3:67:F9:14:8F:1F:E0:39:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/crC2cS0Uq_8felRuZ8oSGoS8DUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8809bb-2468-41e6-8a42-de25cdc8f211/1/Rf0zdMesPAN3hwfzZ_kUjx_gOQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.195.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3f:a6:02:d7:a9:70:d5:94:17:82:f3:2e:dd:3d:83:a6:37:be:
ad:9c:2d:73:97:2d:1f:25:f7:52:52:03:e7:1f:1c:0d:25:dc:
50:62:2d:4b:8b:af:61:f9:19:78:0e:0e:ea:ca:5e:f9:5d:ff:
f3:6e:3c:d4:5b:88:bb:92:e7:9c:9e:fe:4f:fc:36:19:1b:08:
c0:34:84:d2:61:01:d6:6c:d0:05:4b:ae:ce:e6:3d:c4:b1:bf:
30:81:1b:a7:30:3a:1f:81:d8:e3:99:74:6f:77:78:9b:f6:e8:
e2:1b:1f:4e:7e:d0:3f:5f:6c:80:55:ad:b6:f5:d0:82:28:ca:
50:40:86:9e:02:0e:39:0f:7c:b7:9d:c5:89:f5:95:c8:61:c3:
6c:f9:b7:70:eb:28:31:4e:4e:a4:9c:12:55:57:e9:8b:c5:e1:
8a:15:0d:87:3c:3c:53:7a:0f:d4:05:eb:dc:c0:cf:42:81:70:
cf:70:ad:9a:79:f2:2a:87:98:91:fd:94:7d:ec:20:bc:bb:bc:
1f:4f:32:50:95:2e:84:a8:9e:1b:ed:58:10:45:f0:cc:49:98:
db:e7:8b:61:19:1a:9e:20:61:f4:14:91:af:a3:bf:0b:46:a4:
ee:2b:8e:a3:79:99:5c:61:35:82:a1:5b:10:fb:6a:3c:6b:e1:
4b:1f:02:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwnYEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NWZkMzM3NGM3YWMzYzAzNzc4NzA3ZjM2N2Y5MTQ4ZjFmZTAzOTBkMB4XDTIyMDEw
MTE0MDUxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJiMGI2NzEyZDE0
YWJmZjFmN2E1NDZlNjdjYTEyMWE4NGJjMGQ0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKTtC8G4VDpyNToYE7epLRxqa+1J7cJ/v8CePYSTVLtc79d4
ClRqYvskneC+b0wJkyXh2mh4SAyMX02qqQGfAG3Yq8+uMyFcrct2hx5Tws914vyi
D8zKKX77KMrXXS46Iutgyk22qYKUPkR75kndpDtdDF2zRC0qI0ACGMrkZ2Vexy40
1ozna1YEwgfxxYQrRVKdX/46a/X85JVfaGWOQAM2vRS5HUvmschJdlCquR378ydx
kqL0fcCXvONPZeZ61eCo9+tyLQL//5dtveKt3wuwNn1CrbgRWLQDo7YpAkObZaG+
0yzye/02GS71KMbF5bfDqz2BCDyeul1HHQK2RWMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRysLZxLRSr/x96VG5nyhIahLwNRzAfBgNVHSMEGDAWgBRF/TN0x6w8A3eH
B/Nn+RSPH+A5DTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JmMHpkTWVzUEFOM2h3ZnpaX2tVanhfZ09RMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzcvODgwOWJiLTI0NjgtNDFlNi04YTQyLWRlMjVjZGM4ZjIxMS8x
L2NyQzJjUzBVcV84ZmVsUnVaOG9TR29TOERVYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcv
ODgwOWJiLTI0NjgtNDFlNi04YTQyLWRlMjVjZGM4ZjIxMS8xL1JmMHpkTWVzUEFO
M2h3ZnpaX2tVanhfZ09RMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBVLDIDANBgkqhkiG9w0BAQsFAAOC
AQEAP6YC16lw1ZQXgvMu3T2Dpje+rZwtc5ctHyX3UlID5x8cDSXcUGItS4uvYfkZ
eA4O6spe+V3/82481FuIu5LnnJ7+T/w2GRsIwDSE0mEB1mzQBUuuzuY9xLG/MIEb
pzA6H4HY45l0b3d4m/bo4hsfTn7QP19sgFWttvXQgijKUECGngIOOQ98t53FifWV
yGHDbPm3cOsoMU5OpJwSVVfpi8XhihUNhzw8U3oP1AXr3MDPQoFwz3CtmnnyKoeY
kf2UfewgvLu8H08yUJUuhKieG+1YEEXwzEmY2+eLYRkaniBh9BSRr6O/C0ak7iuO
o3mZXGE1gqFbEPtqPGvhSx8Czg==
-----END CERTIFICATE-----
Generated at Tue Apr 15 05:29:01 2025 by rpki-client