Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/pv9lgTg-VgtA_5ixP1smvjTjiEA.roa
File: pv9lgTg-VgtA_5ixP1smvjTjiEA.roa (raw, json)
Hash identifier: LLytx19rr4PoREl+rpf/UEKzCrk7ERYncFEfyzvsWEk=
Subject key identifier: A6:FF:65:81:38:3E:56:0B:40:FF:98:B1:3F:5B:26:BE:34:E3:88:40
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AAE361D
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/pv9lgTg-VgtA_5ixP1smvjTjiEA.roa
Signing time: Sat 01 Jan 2022 08:57:46 +0000
ROA not before: Sat 01 Jan 2022 08:57:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60747
IP address blocks: 81.4.222.0/23 maxlen: 32
81.4.212.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179189277 (0xaae361d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6ff6581383e560b40ff98b13f5b26be34e38840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7a:91:4f:6f:26:e6:40:7d:4c:d1:ba:93:35:
2a:88:2f:0e:37:d7:ef:5b:5a:f2:f5:c8:2b:fa:7c:
22:ee:02:4c:d6:76:95:73:f7:94:d8:4b:6e:b0:4d:
0c:b2:43:d2:18:04:b5:6b:96:a9:3a:b5:c7:36:08:
2f:f2:c0:02:26:7b:07:d8:ae:b7:9b:ec:74:28:da:
78:d5:9f:6c:07:14:47:a5:68:f4:cb:f4:0e:4b:5d:
ec:20:f7:db:78:40:05:8d:26:20:c8:52:11:df:e0:
11:94:e3:fc:c0:d9:b9:0e:a3:96:a1:5c:c1:bd:99:
fb:12:25:e1:de:fa:c3:56:4e:f2:f4:76:3c:ea:49:
71:68:0f:05:66:fe:24:94:b3:28:45:bf:5a:c3:15:
1a:cb:b7:c7:1b:c2:22:96:54:53:b1:4f:ee:aa:fb:
d8:33:90:2e:d6:4b:99:01:2e:dd:7f:d6:59:5a:6b:
fb:47:da:fc:2a:1f:91:20:22:68:ff:57:9d:dd:78:
f9:96:aa:65:6b:f9:d3:a4:3c:a5:fc:06:cc:c1:a1:
fa:0f:39:c3:48:c4:88:2c:97:d0:0f:4b:a2:da:ce:
d8:62:ca:8f:ec:07:92:25:32:2d:fe:46:3f:94:50:
23:2a:e7:63:72:1c:ff:86:a6:bb:4f:f8:55:e2:31:
13:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FF:65:81:38:3E:56:0B:40:FF:98:B1:3F:5B:26:BE:34:E3:88:40
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/pv9lgTg-VgtA_5ixP1smvjTjiEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.4.212.0/22
81.4.222.0/23
Signature Algorithm: sha256WithRSAEncryption
16:e2:85:33:45:75:e3:2d:20:3f:67:98:9d:96:5f:5a:a6:58:
70:a2:cc:92:93:dc:7c:60:2a:ef:c7:17:a1:8d:53:f5:52:72:
a2:4c:1e:e2:c8:41:34:05:4a:5f:61:7a:1f:15:a0:ca:de:8f:
65:64:ad:8b:67:2f:36:2e:81:79:3f:32:55:a1:b5:80:a3:0e:
8e:4c:90:a9:35:ea:68:24:37:3d:bf:7a:59:0d:01:c6:25:bc:
03:0a:7a:7e:59:34:b2:7c:80:b3:14:82:3d:d8:30:6f:19:3c:
c9:0b:74:c0:e0:fa:ee:d1:b0:3e:e9:c4:53:65:02:1b:0b:2b:
1b:70:90:36:8c:f8:a3:ac:3f:7c:0c:89:29:43:9b:45:a9:39:
15:86:3a:21:59:eb:70:38:ec:13:8b:21:a9:2d:b9:88:55:02:
80:5b:d5:d7:0c:8b:8b:26:b0:dc:56:5f:c7:dd:7e:ca:b9:6b:
19:c2:4c:05:bd:30:ec:b0:f3:83:33:eb:c3:17:8f:68:d8:1d:
b4:63:8b:c4:6e:c3:67:d1:5c:5b:01:8f:e2:71:c7:cd:cb:86:
d0:29:92:84:57:da:19:3c:22:c9:e2:bc:40:4c:54:f5:ea:19:
72:b4:75:4c:3c:e2:05:52:9a:4f:83:54:0f:b9:77:c7:ce:69:
98:69:c0:f2
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECq42HTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZGFjODMwY2NhYTc0NzgzZGQ5NjFmYWIyNDFhMjI4ZDdjYzZmODA4MB4XDTIyMDEw
MTA4NTc0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTZmZjY1ODEzODNl
NTYwYjQwZmY5OGIxM2Y1YjI2YmUzNGUzODg0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI96kU9vJuZAfUzRupM1KogvDjfX71ta8vXIK/p8Iu4CTNZ2
lXP3lNhLbrBNDLJD0hgEtWuWqTq1xzYIL/LAAiZ7B9iut5vsdCjaeNWfbAcUR6Vo
9Mv0Dktd7CD323hABY0mIMhSEd/gEZTj/MDZuQ6jlqFcwb2Z+xIl4d76w1ZO8vR2
POpJcWgPBWb+JJSzKEW/WsMVGsu3xxvCIpZUU7FP7qr72DOQLtZLmQEu3X/WWVpr
+0fa/CofkSAiaP9Xnd14+ZaqZWv506Q8pfwGzMGh+g85w0jEiCyX0A9LotrO2GLK
j+wHkiUyLf5GP5RQIyrnY3Ic/4amu0/4VeIxE28CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSm/2WBOD5WC0D/mLE/Wya+NOOIQDAfBgNVHSMEGDAWgBStrIMMyqdHg92W
H6skGiKNfMb4CDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JheURETXFuUjRQZGxoLXJKQm9palh6Ry1BZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvMzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8x
L3B2OWxnVGctVmd0QV81aXhQMXNtdmpUamlFQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
MzI1YzhkLWQzNjgtNGVlZS05Y2E4LTkyOWY3ZDYzNWY0Yi8xL3JheURETXFuUjRQ
ZGxoLXJKQm9palh6Ry1BZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAlEE1AMEAVEE3jANBgkqhkiG9w0B
AQsFAAOCAQEAFuKFM0V14y0gP2eYnZZfWqZYcKLMkpPcfGAq78cXoY1T9VJyokwe
4shBNAVKX2F6HxWgyt6PZWSti2cvNi6BeT8yVaG1gKMOjkyQqTXqaCQ3Pb96WQ0B
xiW8Awp6flk0snyAsxSCPdgwbxk8yQt0wOD67tGwPunEU2UCGwsrG3CQNoz4o6w/
fAyJKUObRak5FYY6IVnrcDjsE4shqS25iFUCgFvV1wyLiyaw3FZfx91+yrlrGcJM
Bb0w7LDzgzPrwxePaNgdtGOLxG7DZ9FcWwGP4nHHzcuG0CmShFfaGTwiyeK8QExU
9eoZcrR1TDziBVKaT4NUD7l3x85pmGnA8g==
-----END CERTIFICATE-----
Generated at Wed Apr 23 01:49:30 2025 by rpki-client