Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/e3d8b1-101f-40e8-bcd3-155af9d83036/1/jgcW5nVHekqIQUhsiZ7K4j0Yaa0.roa
File: jgcW5nVHekqIQUhsiZ7K4j0Yaa0.roa (raw, json)
Hash identifier: jxg/DVTQnsUMVNaCkISqLatFo7p2+8mGd39DSpe4dy0=
Subject key identifier: 8E:07:16:E6:75:47:7A:4A:88:41:48:6C:89:9E:CA:E2:3D:18:69:AD
Certificate issuer: /CN=4d10e9d4f4afb8a4d1b919ec8593f46ba3bba7f7
Certificate serial: 03B28190
Authority key identifier: 4D:10:E9:D4:F4:AF:B8:A4:D1:B9:19:EC:85:93:F4:6B:A3:BB:A7:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRDp1PSvuKTRuRnshZP0a6O7p_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/e3d8b1-101f-40e8-bcd3-155af9d83036/1/jgcW5nVHekqIQUhsiZ7K4j0Yaa0.roa
Signing time: Sat 01 Jan 2022 00:50:38 +0000
ROA not before: Sat 01 Jan 2022 00:50:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198592
IP address blocks: 91.236.253.0/24 maxlen: 24
91.236.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62030224 (0x3b28190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d10e9d4f4afb8a4d1b919ec8593f46ba3bba7f7
Validity
Not Before: Jan 1 00:50:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e0716e675477a4a8841486c899ecae23d1869ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f1:c1:c3:3d:21:0e:eb:61:30:2d:73:69:04:
ce:f6:e2:9a:6d:fd:34:f6:af:3f:74:a6:2a:0e:a8:
f3:4e:fb:91:69:7a:dd:4a:47:47:44:8a:4f:65:a8:
25:c1:ec:95:97:65:0e:42:4d:70:4b:5a:eb:30:99:
b2:39:eb:7e:8f:4b:6b:0b:46:71:b1:f8:5c:26:38:
15:64:a5:ac:b6:6d:16:82:21:d4:4d:c8:90:94:ba:
2b:b3:7e:47:39:84:82:55:f6:52:e4:6f:c3:0b:db:
f7:3e:2b:e7:1a:12:92:5e:5b:bd:0a:38:a7:80:6d:
4e:b0:0b:7f:01:a4:62:17:12:3d:ca:1a:26:b4:ed:
f0:26:9a:3f:b3:c1:18:24:a2:bf:e3:bc:82:e8:72:
02:12:1e:d1:3c:12:9f:a1:58:9f:d9:44:f7:4e:0e:
15:3e:e1:81:52:28:e6:d1:34:e4:26:55:da:b6:87:
3a:16:b6:3b:1e:fd:a7:07:b0:95:fa:8d:55:13:c2:
6e:9d:36:52:51:e0:95:ea:2e:9f:f7:13:b1:06:7e:
57:6d:83:35:ee:3b:ae:de:48:69:27:b3:40:50:cc:
12:52:62:12:e4:4c:c6:2e:1e:e8:63:3f:1b:6f:df:
03:3c:98:ac:04:ca:31:89:50:f3:cf:18:df:0f:66:
69:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:07:16:E6:75:47:7A:4A:88:41:48:6C:89:9E:CA:E2:3D:18:69:AD
X509v3 Authority Key Identifier:
keyid:4D:10:E9:D4:F4:AF:B8:A4:D1:B9:19:EC:85:93:F4:6B:A3:BB:A7:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRDp1PSvuKTRuRnshZP0a6O7p_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e3d8b1-101f-40e8-bcd3-155af9d83036/1/jgcW5nVHekqIQUhsiZ7K4j0Yaa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e3d8b1-101f-40e8-bcd3-155af9d83036/1/TRDp1PSvuKTRuRnshZP0a6O7p_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.252.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:6a:c4:9a:4c:86:f0:d5:dc:6d:40:28:6a:b4:40:ca:b6:a7:
5a:dc:d5:42:2f:7c:0c:29:e1:5a:d8:bd:6f:92:68:3d:90:cc:
30:fe:b6:b7:49:6e:a7:f3:41:e0:b8:a6:ac:e9:58:b4:2a:bf:
1a:9e:52:94:36:bd:44:94:4e:a9:1d:4e:22:a5:cb:ce:2f:05:
76:73:a7:2f:a9:ad:88:32:c3:22:f1:b3:c8:59:2b:8b:2d:b0:
06:0c:57:b6:6c:f4:4f:b2:8c:16:bb:1a:f4:91:6a:3b:ea:e6:
d9:85:31:7f:59:95:f8:46:50:c8:da:b0:59:3e:8f:21:10:39:
89:3d:11:82:2b:c7:ae:43:1c:2c:61:fa:67:ed:e3:42:3a:8e:
c5:73:62:8d:5b:fb:89:b3:70:00:de:73:f6:17:8d:69:bd:74:
14:ff:76:65:6a:e1:7e:ab:56:1f:4d:2e:fa:5e:f1:a0:a5:c8:
6a:5f:f2:ed:23:c1:dd:e1:04:91:53:54:80:e7:b4:5c:86:94:
6a:c0:26:63:62:b4:5a:a0:86:6d:7f:dd:61:4b:7b:f4:bd:49:
24:3c:95:6b:df:d3:0b:2b:2c:21:5a:f0:21:46:72:62:d8:56:
fb:99:35:8d:d2:69:b0:f2:15:c3:47:98:1b:09:c2:77:e9:37:
61:81:51:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:15 2025 by rpki-client