Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/1cdce2-a3f8-44b6-b5e1-b7f2984eb653/1/ogpcdIX6uywWpJgMHqY5BKk_Ptg.roa
File: ogpcdIX6uywWpJgMHqY5BKk_Ptg.roa (raw, json)
Hash identifier: rGyPO0rrFAVZUw/1li3oyY5fssdKHM1XTSpdBumSozc=
Subject key identifier: A2:0A:5C:74:85:FA:BB:2C:16:A4:98:0C:1E:A6:39:04:A9:3F:3E:D8
Certificate issuer: /CN=75ea894ee05775e0ef061d086ca252147f5c91de
Certificate serial: 14D046F3
Authority key identifier: 75:EA:89:4E:E0:57:75:E0:EF:06:1D:08:6C:A2:52:14:7F:5C:91:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deqJTuBXdeDvBh0IbKJSFH9ckd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/1cdce2-a3f8-44b6-b5e1-b7f2984eb653/1/ogpcdIX6uywWpJgMHqY5BKk_Ptg.roa
Signing time: Sat 01 Jan 2022 16:04:07 +0000
ROA not before: Sat 01 Jan 2022 16:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58075
IP address blocks: 37.235.80.0/21 maxlen: 24
45.154.44.0/22 maxlen: 24
185.43.20.0/22 maxlen: 24
185.21.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349193971 (0x14d046f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75ea894ee05775e0ef061d086ca252147f5c91de
Validity
Not Before: Jan 1 16:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a20a5c7485fabb2c16a4980c1ea63904a93f3ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ed:7f:f6:b5:e7:1d:ec:e0:b9:3b:8a:c6:d5:
b4:b2:d2:27:9d:76:bb:97:c9:7f:16:21:e7:ff:9a:
1d:c1:5f:6b:a7:7e:f8:99:cc:9e:75:e5:24:cf:6e:
00:ee:db:af:de:9e:78:e3:33:eb:2c:eb:9e:0e:71:
7c:d9:17:3d:e7:52:a7:21:4e:3b:c5:dc:7f:eb:39:
95:c0:5e:9a:a7:d6:a3:c3:fe:1d:25:bb:c7:33:d9:
a9:98:ec:70:cf:5d:f5:e6:18:a1:47:fd:88:b6:6b:
39:cc:52:98:38:94:ae:92:c3:9b:4b:40:e1:a5:5e:
b9:5d:69:33:09:a6:c6:b1:c1:72:b3:c8:c8:53:09:
bc:8b:84:3d:2e:c7:c7:02:bd:69:d7:96:97:1f:b5:
f7:94:97:79:e4:4c:d6:86:d5:5a:71:f0:da:0a:f9:
8d:c7:80:7e:77:06:e8:6e:7c:5d:2b:0b:80:46:4c:
63:9f:d6:aa:33:c8:1d:24:05:07:a0:86:7d:ef:a3:
9d:e0:af:53:f2:16:3c:3f:23:b1:33:6e:33:15:cb:
83:72:29:7f:a1:5c:d4:30:30:45:db:c4:1b:41:6c:
3b:7a:69:6a:0b:1f:8c:b7:c7:14:98:26:fa:76:ce:
2d:21:82:01:5b:54:9a:58:5f:90:d4:24:17:60:1a:
45:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:0A:5C:74:85:FA:BB:2C:16:A4:98:0C:1E:A6:39:04:A9:3F:3E:D8
X509v3 Authority Key Identifier:
keyid:75:EA:89:4E:E0:57:75:E0:EF:06:1D:08:6C:A2:52:14:7F:5C:91:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deqJTuBXdeDvBh0IbKJSFH9ckd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1cdce2-a3f8-44b6-b5e1-b7f2984eb653/1/ogpcdIX6uywWpJgMHqY5BKk_Ptg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1cdce2-a3f8-44b6-b5e1-b7f2984eb653/1/deqJTuBXdeDvBh0IbKJSFH9ckd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.80.0/21
45.154.44.0/22
185.21.52.0/22
185.43.20.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:17:91:b0:cd:fb:9f:9d:ce:81:e0:f4:fb:81:41:c3:66:54:
86:9a:df:02:37:f1:38:83:1e:d9:da:49:f9:26:18:c3:4a:4b:
bc:bc:a0:40:8f:79:4b:99:16:f6:75:d3:ec:ca:07:3d:c9:51:
f3:54:69:86:38:ea:5e:1a:82:da:d0:7e:23:01:c0:f3:77:89:
68:cb:a3:01:56:89:16:7a:fe:15:d8:9e:a9:94:d5:70:70:4d:
22:8d:c8:c0:c4:e5:92:cd:36:e6:ec:15:6b:58:97:dd:93:77:
33:10:ff:9e:1e:cc:1a:a6:3e:54:bb:1b:3c:10:8a:1a:c1:c1:
f9:2d:9e:4c:e3:96:c9:c6:b2:b2:46:64:35:54:03:8f:45:34:
28:ab:b6:bc:bf:88:d7:fd:0f:b2:b8:51:5e:78:60:42:11:06:
ae:77:d1:35:e5:59:ab:20:e4:f9:60:84:80:2c:b1:88:45:52:
3e:6b:13:69:5a:53:a4:2b:db:89:bf:09:35:ed:58:b3:2a:49:
e1:c5:04:df:4a:9e:ea:5d:1e:01:38:25:90:75:6c:a9:3c:23:
7a:3a:e3:4b:de:8d:c0:0c:17:13:19:aa:9c:f0:53:5b:06:56:
7b:76:fa:6b:a8:a0:4d:87:f7:36:2c:fd:00:2d:d4:07:9f:c5:
ee:b8:fe:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:48:07 2025 by rpki-client