Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/M0qNNpFuelktztWYaMFoHQhTOoY.roa
File: M0qNNpFuelktztWYaMFoHQhTOoY.roa (raw, json)
Hash identifier: Yyu3WV2JozysbhwaARdG2CBGssXkuGim5T+dD9yxTvc=
Subject key identifier: 33:4A:8D:36:91:6E:7A:59:2D:CE:D5:98:68:C1:68:1D:08:53:3A:86
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 30496BF5
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/M0qNNpFuelktztWYaMFoHQhTOoY.roa
Signing time: Thu 20 Jan 2022 08:46:15 +0000
ROA not before: Thu 20 Jan 2022 08:46:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35508
IP address blocks: 81.27.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 810118133 (0x30496bf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Jan 20 08:46:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=334a8d36916e7a592dced59868c1681d08533a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:05:6f:ac:45:f4:49:c0:98:f5:76:87:0f:e8:
69:fe:b0:8d:a0:03:25:15:d3:de:fc:86:9f:db:0f:
7a:a6:dd:3b:21:7d:51:b2:f3:df:ba:09:b3:53:3c:
be:56:0c:f6:b6:a2:99:89:0c:0d:df:0f:6f:46:5d:
79:96:ac:7c:e2:22:70:06:ff:bb:c9:63:fe:02:ab:
1f:86:61:96:9d:80:74:ef:ee:57:28:25:df:4f:dd:
3a:01:c1:b4:f6:12:8e:5c:87:1a:10:55:50:a4:c0:
58:e5:2a:05:32:72:20:64:32:c8:5f:47:aa:58:04:
49:c2:36:d7:f0:db:b8:46:14:17:4f:01:75:89:21:
31:6c:ec:dc:98:02:1d:dc:41:16:67:55:85:93:41:
cc:d4:01:39:35:ee:1b:d2:f0:c8:e2:5b:ba:dc:43:
57:6b:73:32:ad:88:69:1f:0c:85:cc:29:b7:46:66:
ee:f1:ac:58:a4:3c:83:b0:6f:83:f4:d4:f0:b6:4b:
7b:ab:8d:a8:5f:c0:f1:83:18:d1:06:ce:63:88:bc:
f4:e0:b5:d6:63:1e:d6:8a:24:fc:e8:9a:2a:be:c1:
33:22:ca:cd:27:7c:69:9a:52:7c:37:30:12:6c:e5:
83:12:21:34:48:e1:ae:d1:c0:e8:c6:61:41:4b:cf:
bb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4A:8D:36:91:6E:7A:59:2D:CE:D5:98:68:C1:68:1D:08:53:3A:86
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/M0qNNpFuelktztWYaMFoHQhTOoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.27.244.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:ca:47:2e:c9:c7:d3:d5:e6:a6:49:de:08:24:ff:4d:40:e8:
9f:fc:28:66:c7:ef:0c:00:2a:c7:e7:aa:56:1a:a4:e5:e8:93:
57:1a:86:7f:8b:2f:45:85:6a:29:86:7d:bb:a3:44:d9:8f:ff:
ba:78:df:9e:e3:69:26:b3:57:92:a4:ec:01:b7:34:76:f6:0a:
e2:02:26:73:19:7b:ad:00:aa:0c:ef:2f:cc:a6:5b:08:69:fd:
2f:e5:e2:dc:73:6d:7c:ed:82:e4:3f:52:10:d1:be:85:86:93:
1e:ab:41:de:4c:b8:5b:61:39:3c:84:d1:a4:3e:b7:03:23:25:
b3:ff:38:95:8c:b9:97:af:7d:9c:71:ea:bc:70:9b:b3:26:68:
b2:bd:e1:b3:28:c8:b8:fb:23:03:f7:6f:c3:13:ea:67:8e:74:
e6:18:a8:cf:99:e2:0c:35:99:d8:3d:f4:c5:4c:2e:65:27:58:
16:31:f3:6a:6e:d7:e8:e1:0d:ec:86:25:af:bc:7b:c1:3c:ad:
1d:95:5f:49:39:2f:7c:f2:38:bb:db:47:2b:1b:c0:fc:bf:67:
44:6c:b6:fa:8e:fe:46:a4:69:00:83:5a:e2:62:7e:ff:4a:b0:
4d:56:f4:b0:83:cb:ed:32:b4:71:aa:87:20:90:78:0b:18:c1:
a1:6c:70:dd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMElr9TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NjhhZTgwM2I5YmEzODg1NTQwMTgyN2IzZWVjZTE0NTA1YTljMGY2MB4XDTIyMDEy
MDA4NDYxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzM0YThkMzY5MTZl
N2E1OTJkY2VkNTk4NjhjMTY4MWQwODUzM2E4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI0Fb6xF9EnAmPV2hw/oaf6wjaADJRXT3vyGn9sPeqbdOyF9
UbLz37oJs1M8vlYM9raimYkMDd8Pb0ZdeZasfOIicAb/u8lj/gKrH4Zhlp2AdO/u
Vygl30/dOgHBtPYSjlyHGhBVUKTAWOUqBTJyIGQyyF9HqlgEScI21/DbuEYUF08B
dYkhMWzs3JgCHdxBFmdVhZNBzNQBOTXuG9LwyOJbutxDV2tzMq2IaR8Mhcwpt0Zm
7vGsWKQ8g7Bvg/TU8LZLe6uNqF/A8YMY0QbOY4i89OC11mMe1ook/OiaKr7BMyLK
zSd8aZpSfDcwEmzlgxIhNEjhrtHA6MZhQUvPu20CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQzSo02kW56WS3O1ZhowWgdCFM6hjAfBgNVHSMEGDAWgBRWiugDubo4hVQB
gns+7OFFBanA9jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Zvcm9BN202T0lWVUFZSjdQdXpoUlFXcHdQWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvMjc4ZDVmLTllZTYtNDQ3Ny05ZmUwLThlYWU4Yjc1ZTljYS8x
L00wcU5OcEZ1ZWxrdHp0V1lhTUZvSFFoVE9vWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
Mjc4ZDVmLTllZTYtNDQ3Ny05ZmUwLThlYWU4Yjc1ZTljYS8xL1Zvcm9BN202T0lW
VUFZSjdQdXpoUlFXcHdQWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEb9DANBgkqhkiG9w0BAQsFAAOC
AQEAs8pHLsnH09XmpkneCCT/TUDon/woZsfvDAAqx+eqVhqk5eiTVxqGf4svRYVq
KYZ9u6NE2Y//unjfnuNpJrNXkqTsAbc0dvYK4gImcxl7rQCqDO8vzKZbCGn9L+Xi
3HNtfO2C5D9SENG+hYaTHqtB3ky4W2E5PITRpD63AyMls/84lYy5l699nHHqvHCb
syZosr3hsyjIuPsjA/dvwxPqZ4505hioz5niDDWZ2D30xUwuZSdYFjHzam7X6OEN
7IYlr7x7wTytHZVfSTkvfPI4u9tHKxvA/L9nRGy2+o7+RqRpAINa4mJ+/0qwTVb0
sIPL7TK0caqHIJB4CxjBoWxw3Q==
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:21:42 2025 by rpki-client