Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/jfO9VaOZFOSyhHAXY28WuQXLp58.roa
File: jfO9VaOZFOSyhHAXY28WuQXLp58.roa (raw, json)
Hash identifier: 3uR1FvCwwdgJIuntSvfWV2vdeUescypLFw1wY16KzqE=
Subject key identifier: 8D:F3:BD:55:A3:99:14:E4:B2:84:70:17:63:6F:16:B9:05:CB:A7:9F
Certificate issuer: /CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Certificate serial: 0857D364
Authority key identifier: B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/jfO9VaOZFOSyhHAXY28WuQXLp58.roa
Signing time: Sat 01 Jan 2022 10:04:19 +0000
ROA not before: Sat 01 Jan 2022 10:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202468
IP address blocks: 45.82.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139973476 (0x857d364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Validity
Not Before: Jan 1 10:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8df3bd55a39914e4b2847017636f16b905cba79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d9:2e:63:36:74:93:a9:6b:97:2c:4d:d6:fd:
5e:d4:51:e5:d5:5f:36:0f:1f:db:8c:56:75:6b:2d:
3c:79:5c:92:f1:16:09:1e:04:56:3a:55:64:9c:37:
78:8c:cc:02:a1:90:5f:10:08:44:b4:10:26:ef:e9:
3d:32:43:ca:1c:a8:4c:e3:c1:00:da:68:15:c6:78:
4c:5d:7f:3c:63:7a:40:c5:1b:bf:91:1d:79:69:c1:
8a:aa:06:de:1f:a8:94:ad:4c:95:ca:ce:f7:d2:1e:
49:e1:5c:a5:11:60:f2:58:8d:8b:f1:1f:d8:bf:34:
8a:0b:e6:4b:22:72:65:04:aa:02:a2:65:a6:dd:95:
db:9a:29:ff:32:0e:5f:91:1d:35:12:5e:7f:47:7b:
e6:60:3b:7d:4f:05:aa:e2:38:fe:16:c4:e2:ec:a8:
5b:a2:41:2e:13:f6:fd:94:dd:f3:58:a2:7f:7a:26:
26:b5:94:c2:ba:ed:4d:3a:9c:8a:83:1b:e6:b1:23:
b2:f7:1e:15:bc:7a:0b:74:f4:bf:3d:f0:5b:b7:67:
04:7d:dd:aa:5e:67:41:10:f6:5a:e3:3f:23:f0:8c:
90:a3:99:0e:48:98:e0:3c:95:44:59:82:6d:15:1e:
a6:2e:53:61:52:39:32:16:6a:65:0f:cc:c5:d3:32:
07:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F3:BD:55:A3:99:14:E4:B2:84:70:17:63:6F:16:B9:05:CB:A7:9F
X509v3 Authority Key Identifier:
keyid:B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/jfO9VaOZFOSyhHAXY28WuQXLp58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/t3haMNhRLQ2KtjeBK3n6RSmh7xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.136.0/22
Signature Algorithm: sha256WithRSAEncryption
02:75:05:2d:7c:ce:1a:28:88:92:44:1d:d6:c0:db:a0:20:9e:
3a:1a:ec:ca:38:e3:b0:dc:aa:31:63:81:cf:cb:6e:b3:02:ee:
c1:0c:93:ad:12:09:61:e9:80:a9:11:99:5c:b1:08:0d:9f:ee:
2c:07:65:27:3a:01:0e:cb:8b:2c:33:7e:ed:bd:bf:19:99:51:
07:cf:0a:be:cd:19:3f:e8:0c:ba:c7:b4:44:a5:11:ff:aa:62:
58:48:e9:89:58:41:61:11:0c:97:2f:3c:6d:95:81:d9:6d:97:
57:0f:f2:78:9b:bf:bc:52:2f:4a:2e:2e:95:e1:ac:cf:04:06:
f7:31:51:70:1a:fa:ab:b7:23:fc:9e:a7:53:9f:bd:31:7e:09:
f1:1d:70:d2:dd:99:fa:a9:60:97:27:be:31:db:00:65:b2:36:
8f:1c:a0:46:04:45:5e:0d:c6:d3:e8:0d:84:f8:84:89:9b:a4:
de:ad:74:db:28:01:5a:5b:00:b7:8f:60:5f:b5:4c:83:0d:66:
8d:52:48:ad:af:0a:d1:4d:36:01:c0:b8:ff:8d:b7:c6:e1:e6:
7d:6d:8f:7a:64:a8:2c:00:c9:68:fd:57:c0:b0:ac:a1:6a:81:
41:1d:5a:07:89:8a:73:00:59:b4:08:6f:d4:2d:da:04:50:00:
01:b3:1d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:04 2025 by rpki-client