Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/jjkPA2TozQ2EwhMtC-cPSa5vjko.roa
File: jjkPA2TozQ2EwhMtC-cPSa5vjko.roa (raw, json)
Hash identifier: xQqo3GM91NlJFPryl/mF5RWxwZjnvV03hrFk73u6nVY=
Subject key identifier: 8E:39:0F:03:64:E8:CD:0D:84:C2:13:2D:0B:E7:0F:49:AE:6F:8E:4A
Certificate issuer: /CN=412abb114f32570c5dd52066259bdc80c98768fd
Certificate serial: CBA0
Authority key identifier: 41:2A:BB:11:4F:32:57:0C:5D:D5:20:66:25:9B:DC:80:C9:87:68:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSq7EU8yVwxd1SBmJZvcgMmHaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/jjkPA2TozQ2EwhMtC-cPSa5vjko.roa
Signing time: Mon 28 Mar 2022 08:51:37 +0000
ROA not before: Mon 28 Mar 2022 08:51:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197684
IP address blocks: 91.201.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52128 (0xcba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412abb114f32570c5dd52066259bdc80c98768fd
Validity
Not Before: Mar 28 08:51:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e390f0364e8cd0d84c2132d0be70f49ae6f8e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:87:62:d3:c7:4a:4b:3e:b7:24:33:bb:50:f6:
0e:ec:cb:52:2c:27:1c:38:f7:ef:c7:20:6b:23:45:
08:47:02:7e:a0:96:48:ed:62:de:98:20:9c:c9:52:
f8:b1:60:4c:23:12:b4:cb:0f:7c:14:05:3b:b7:0d:
f0:bf:7b:c5:5b:80:c6:1a:1f:66:ea:d5:21:1a:f8:
e5:d7:c8:24:af:1d:de:43:19:6a:ef:7d:18:21:a9:
ee:ff:14:d1:4b:98:33:df:6b:f8:3d:de:15:0e:16:
d1:37:5f:c8:98:57:a4:99:73:28:1b:e6:c9:51:f8:
4e:ea:1a:a4:5e:f2:a5:fa:fe:81:7c:f4:03:be:5b:
8a:f3:b6:41:6a:12:f8:4f:ce:c6:f6:ef:d8:da:da:
a9:49:4c:cf:e5:4c:b2:b0:87:c9:ac:fc:9e:6a:40:
86:ef:e3:2f:4f:80:90:88:3f:ff:3f:4b:7f:d2:e6:
6c:a6:e4:34:b2:df:c5:f7:6b:11:3c:c2:12:a4:dc:
36:d2:fe:48:6b:6f:c4:e1:59:f8:53:ea:bf:60:e8:
f7:f4:36:d1:f4:e5:c7:12:1f:f7:1f:88:a2:7c:bb:
2a:b8:ba:b5:4a:4b:fd:a8:2e:7d:25:77:0e:9b:34:
d2:b4:df:38:25:4c:e8:7e:40:00:12:4e:a1:1b:2b:
8d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:39:0F:03:64:E8:CD:0D:84:C2:13:2D:0B:E7:0F:49:AE:6F:8E:4A
X509v3 Authority Key Identifier:
keyid:41:2A:BB:11:4F:32:57:0C:5D:D5:20:66:25:9B:DC:80:C9:87:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSq7EU8yVwxd1SBmJZvcgMmHaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/jjkPA2TozQ2EwhMtC-cPSa5vjko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/QSq7EU8yVwxd1SBmJZvcgMmHaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.202.0/23
Signature Algorithm: sha256WithRSAEncryption
84:60:e5:ad:78:76:67:4f:f7:12:75:41:fb:97:c3:77:4e:36:
0d:89:13:f8:c4:c7:5d:e1:10:9a:db:23:35:6e:e0:70:f7:d8:
75:04:bb:e9:ae:ea:d6:a0:7d:46:cf:f4:b0:bd:26:cf:33:62:
6b:2b:ba:a0:4c:4b:18:4e:ea:11:01:05:ef:0a:85:63:b8:2d:
73:7d:cc:41:28:91:04:09:a2:3a:03:56:43:bf:83:4c:56:e0:
c3:d6:a9:4a:0d:c8:3f:24:08:8e:72:b9:2b:82:e4:53:ae:39:
02:7e:df:50:60:3e:16:8b:71:bd:4d:45:3f:c2:ef:0d:50:79:
d9:3c:22:d7:53:bb:51:42:0f:03:94:46:f7:24:f1:cd:98:e5:
a5:5c:ae:89:ec:88:dd:c6:39:99:41:88:bf:ad:af:b6:f4:15:
c6:98:50:be:3c:27:38:7a:fe:57:0a:87:c5:59:cc:66:fb:a1:
37:5b:a4:5d:f0:ae:62:1d:f9:5b:0a:47:62:b0:9d:ae:84:43:
1a:d8:49:fe:45:ac:0a:e0:94:ab:e4:0d:0b:90:03:14:07:73:
32:02:57:ec:c1:63:e7:da:2a:bb:0e:62:e2:cd:20:70:c7:a6:
41:85:70:55:ae:c4:b9:2f:3a:d7:10:42:22:e7:23:d6:c5:63:
48:a7:6b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:50 2025 by rpki-client