Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/PytjN9kdZ_OnmQrixNamAUXxGNk.roa
File: PytjN9kdZ_OnmQrixNamAUXxGNk.roa (raw, json)
Hash identifier: 6m7YjXUrgHHNGA/gdcv3ipHN3jPeDsVieRDcYnVlup0=
Subject key identifier: 3F:2B:63:37:D9:1D:67:F3:A7:99:0A:E2:C4:D6:A6:01:45:F1:18:D9
Certificate issuer: /CN=12c889964b35b51ba8e5e679a15b19a31f133578
Certificate serial: 0A74CE96
Authority key identifier: 12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/PytjN9kdZ_OnmQrixNamAUXxGNk.roa
Signing time: Mon 11 Apr 2022 12:26:17 +0000
ROA not before: Mon 11 Apr 2022 12:26:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15739
IP address blocks: 82.146.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175427222 (0xa74ce96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c889964b35b51ba8e5e679a15b19a31f133578
Validity
Not Before: Apr 11 12:26:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f2b6337d91d67f3a7990ae2c4d6a60145f118d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fd:bf:1f:c3:2b:c4:0d:06:f0:ef:65:84:34:
6f:a0:10:db:92:b3:65:40:de:59:03:91:54:cc:af:
d1:04:76:d9:b8:d3:d6:54:3b:cc:f8:ba:a5:76:6a:
60:f3:0d:d2:e6:e3:40:42:d7:45:21:9f:07:37:de:
63:03:30:1c:5b:10:59:fc:2e:d0:74:10:5a:bb:7c:
a3:15:4d:4d:f9:06:53:45:d7:6c:40:b7:13:db:0a:
d5:84:b9:e4:29:9a:97:97:22:ba:ac:a3:05:45:0e:
30:6f:c3:8c:90:13:20:ab:0b:13:20:d5:85:b1:2d:
13:d9:ec:c3:1a:cc:de:f0:50:18:bc:d1:04:9e:ac:
62:01:4c:59:41:26:30:14:a9:20:98:7e:b5:e9:5c:
63:22:b7:5f:c7:55:10:05:d6:34:4c:79:11:26:90:
cd:d1:fa:32:1a:ec:ae:fc:6a:90:24:c7:81:eb:66:
ab:6c:0f:46:db:15:ba:50:4e:25:3a:7e:e6:4f:e2:
92:79:68:44:56:b5:93:36:d4:fc:52:81:e1:d9:df:
d9:be:8b:a7:47:42:54:d3:10:5d:f8:a3:62:61:ea:
62:67:1c:ef:d7:b5:38:53:0d:75:7d:8e:78:4a:b1:
1c:5e:8e:14:b4:b6:7a:6d:ea:aa:df:71:fc:e7:d1:
9a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2B:63:37:D9:1D:67:F3:A7:99:0A:E2:C4:D6:A6:01:45:F1:18:D9
X509v3 Authority Key Identifier:
keyid:12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/PytjN9kdZ_OnmQrixNamAUXxGNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/EsiJlks1tRuo5eZ5oVsZox8TNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.170.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:65:d4:fa:15:56:4e:bb:df:6a:2a:90:20:90:10:4a:d5:ef:
21:8d:10:3b:9f:0a:2a:99:c0:71:1c:24:bd:83:11:24:66:46:
89:3f:10:d5:43:94:59:a1:a1:6c:04:a6:77:57:a1:8d:db:0d:
3e:70:fe:e7:de:12:25:38:27:9e:f8:e5:60:d0:27:32:fa:36:
dc:1e:4f:a7:2a:cf:88:3e:a6:4a:72:c4:20:41:e0:ec:8f:e4:
52:a7:c9:0c:a6:f9:da:e0:eb:24:19:91:7f:f2:ae:5f:94:fe:
58:68:2c:b4:9d:ab:86:dd:c9:c7:5f:bf:68:97:10:ab:24:e8:
05:88:5f:4b:26:21:e6:62:1e:3f:3e:0f:c9:b3:ee:6c:6f:c2:
c2:7f:44:69:e5:46:42:72:3a:fd:75:d2:66:83:b4:99:43:11:
c8:28:63:54:f1:2b:a4:e3:78:01:ad:b1:cd:94:e6:d1:45:13:
1d:7b:3b:1b:14:88:80:46:c6:9d:db:4f:19:ed:bc:13:8d:bf:
f2:d9:83:6d:b3:df:5d:a3:30:19:de:3b:5e:c8:e2:db:f9:2b:
98:95:33:d6:69:d1:c7:cc:04:8b:6b:38:6d:c3:b2:33:1b:fc:
3c:54:78:08:e5:11:e7:36:3d:26:da:44:f3:fd:0f:fc:40:77:
e2:71:03:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:28:07 2025 by rpki-client