Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/8MymUj5zaJf-39MPA79i5L7PxsY.roa
File: 8MymUj5zaJf-39MPA79i5L7PxsY.roa (raw, json)
Hash identifier: B9JzAOJOP+mnSCmqqa+NYnIzjbRkKjly7XDxi88eRk8=
Subject key identifier: F0:CC:A6:52:3E:73:68:97:FE:DF:D3:0F:03:BF:62:E4:BE:CF:C6:C6
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AABABDA
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/8MymUj5zaJf-39MPA79i5L7PxsY.roa
Signing time: Sat 01 Jan 2022 08:57:45 +0000
ROA not before: Sat 01 Jan 2022 08:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47783
IP address blocks: 217.23.82.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179022810 (0xaababda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0cca6523e736897fedfd30f03bf62e4becfc6c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d6:cc:b1:4f:e6:8e:d5:56:8c:d2:fe:d8:45:
38:2e:98:55:e9:df:33:5e:aa:48:fb:38:16:a6:e5:
a1:98:cf:df:97:27:0b:81:4b:b8:1d:80:ef:a7:db:
83:b0:8a:c7:ba:c7:89:3a:f1:24:ad:72:81:ea:1e:
55:a3:11:07:25:67:ca:92:e4:25:4e:83:24:67:46:
bc:b4:52:91:c6:41:40:79:34:ef:b5:fd:ca:49:73:
4c:c6:47:f3:d0:16:f3:4c:e1:db:3c:2f:79:68:ee:
86:f0:75:c2:5f:11:30:4f:82:e5:9d:24:91:47:1b:
43:14:12:39:6b:7b:dc:49:60:b5:93:60:6c:8a:d1:
a7:68:20:d6:cc:bf:62:9d:1c:76:4e:f1:a9:ad:ff:
21:84:33:ce:9e:88:13:45:95:aa:3f:55:a8:e4:3f:
8e:88:27:22:e9:04:47:42:92:61:2b:29:b7:d4:48:
56:c3:ce:55:95:7b:fe:39:fc:7d:49:7f:d4:ed:42:
d8:33:2e:65:54:7f:d1:0d:6d:75:46:57:d8:22:98:
b3:c6:c3:ce:51:d1:65:d2:7d:7d:a6:60:f8:64:f4:
5c:b8:25:85:95:8c:c6:2e:09:25:92:39:13:ac:8c:
4f:d2:e1:40:34:2a:2e:aa:30:8d:7f:86:a3:e8:a2:
a9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CC:A6:52:3E:73:68:97:FE:DF:D3:0F:03:BF:62:E4:BE:CF:C6:C6
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/8MymUj5zaJf-39MPA79i5L7PxsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.23.82.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:75:29:f3:82:94:70:31:a0:b4:fd:a5:03:ba:a0:61:c9:71:
43:f0:4a:2f:67:83:22:2d:ff:48:c0:a3:a3:af:d6:66:6e:c9:
75:e7:05:1d:ee:20:80:8f:3c:df:78:66:50:b3:8f:df:37:3d:
04:be:d2:ac:6d:c9:e8:49:ef:2b:2e:84:29:af:e3:5a:9e:9b:
cd:d0:78:53:b0:28:3d:06:0c:a3:60:71:06:51:1c:30:17:f6:
6d:71:33:c3:39:37:68:5c:23:d0:79:9b:f1:54:e3:a1:9a:c5:
96:c5:65:35:e8:80:b4:ea:a9:36:f8:b1:7e:12:31:70:71:a3:
44:6a:e2:5d:52:4c:73:16:19:8f:5d:85:80:6f:62:dc:06:2e:
04:91:5a:dc:ff:9c:26:0c:95:3c:ee:12:9c:78:5e:c8:bd:52:
30:cb:c1:b3:2c:c1:cf:a1:0e:40:11:ea:5c:06:3b:79:ad:9d:
d8:73:37:51:fc:61:ad:3b:6d:f7:5a:43:48:e3:d8:47:a5:92:
d2:84:70:c1:0d:a0:91:82:c7:5c:5f:c8:97:e3:b7:2b:7b:a1:
82:72:5d:42:88:25:44:54:d6:4c:4e:60:04:22:49:33:22:91:
97:c0:42:72:3e:fe:df:5a:fa:a1:3a:f2:ef:45:20:36:0d:1b:
07:c3:cd:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:44:52 2025 by rpki-client