Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/jJiB_gzLOgRA3EB2sX8N3j3EfGU.roa
File: jJiB_gzLOgRA3EB2sX8N3j3EfGU.roa (raw, json)
Hash identifier: O7XbfXV82QZsgwDlguzBD/cYHF+jBh3dAoxi19VnSvs=
Subject key identifier: 8C:98:81:FE:0C:CB:3A:04:40:DC:40:76:B1:7F:0D:DE:3D:C4:7C:65
Certificate issuer: /CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Certificate serial: 06B3A71D
Authority key identifier: 07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/jJiB_gzLOgRA3EB2sX8N3j3EfGU.roa
Signing time: Sat 01 Jan 2022 15:00:37 +0000
ROA not before: Sat 01 Jan 2022 15:00:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205019
IP address blocks: 91.103.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112437021 (0x6b3a71d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Validity
Not Before: Jan 1 15:00:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c9881fe0ccb3a0440dc4076b17f0dde3dc47c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:95:6a:58:e3:9f:cc:17:2d:2b:3a:c0:40:40:
81:69:bc:bb:03:4b:b3:55:11:ba:0e:e3:17:07:14:
bd:55:09:39:c6:3d:d8:d3:ed:44:b0:5c:67:a5:ba:
80:24:ef:16:71:12:f7:85:b4:9f:64:6d:e9:63:44:
d3:06:a2:66:88:a3:35:97:87:0c:fa:50:02:7c:16:
cc:53:71:ac:9b:fa:72:2f:64:65:91:fa:2d:c0:19:
09:79:b6:cd:ac:f5:23:ff:93:e9:af:2c:68:40:ae:
26:2a:3d:96:4f:c1:cb:c1:60:53:a6:49:27:6f:99:
9b:1f:e6:3f:8b:88:7e:58:39:eb:13:76:9f:27:e8:
9f:67:4f:13:0b:7f:80:97:7b:49:35:60:c2:c7:73:
d1:54:b2:27:44:7a:07:5f:2a:d6:c5:6c:89:59:0f:
55:a7:5c:66:5d:99:69:98:75:28:aa:93:3e:05:cc:
6f:bd:a0:25:10:d8:e1:1d:30:87:6e:d6:41:bc:92:
8b:de:a9:f0:af:a1:ee:d1:c4:ed:10:82:9c:66:79:
62:bb:b1:04:a5:75:15:62:d7:e3:f9:1c:71:e3:e4:
13:8b:81:c5:19:c9:24:8a:f4:52:71:9a:9c:40:80:
76:f8:9c:3b:57:9e:d3:b3:1d:92:27:ea:a2:67:19:
8a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:98:81:FE:0C:CB:3A:04:40:DC:40:76:B1:7F:0D:DE:3D:C4:7C:65
X509v3 Authority Key Identifier:
keyid:07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/jJiB_gzLOgRA3EB2sX8N3j3EfGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/B9dTNfd79CQJdid7HdDhm7I6jh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.82.0/24
Signature Algorithm: sha256WithRSAEncryption
68:5a:be:c3:58:3c:e0:3d:41:8d:bb:9e:e9:a2:80:23:a3:43:
ba:cf:c6:c9:34:86:0e:98:a2:7f:db:7a:c5:a5:56:12:23:84:
48:82:2a:4c:0a:7a:0b:e7:00:91:5a:a5:02:2d:3c:bb:20:50:
d2:be:ce:ad:cf:7d:af:e0:2f:b5:24:e9:a5:37:4d:64:30:c1:
bf:13:4c:1d:34:64:2e:24:5e:e6:8b:03:0b:ed:11:6d:27:b7:
fc:a3:14:ef:be:a7:c6:d6:4b:dd:92:e0:4e:6a:d8:eb:7b:06:
d5:5c:81:ae:dd:a4:07:62:f2:e6:7e:1d:74:9e:09:6d:3a:a0:
f3:ea:3d:10:2e:2c:a4:07:5a:aa:00:94:84:a3:6a:ae:68:8a:
aa:f1:a9:1d:32:d6:4c:39:03:11:36:e2:34:e9:10:05:a5:ec:
15:fa:bc:d6:d1:01:11:92:78:8c:69:72:a2:9c:34:d2:7e:34:
0d:bf:0b:3c:60:87:d6:51:f0:4a:f0:d6:17:8a:35:0d:57:15:
17:b7:ab:4d:f5:a5:00:71:31:6a:e9:e1:2c:85:11:3e:15:30:
76:5f:d3:f8:0e:02:17:76:ac:9b:b0:5f:08:3e:d1:23:8a:67:
6f:fb:12:4e:c7:f0:ed:10:09:8c:f6:e6:da:91:4c:fa:ca:f5:
75:3e:1a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:52:00 2025 by rpki-client