Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/JeuR_UTqRcQlkia7g-lJAHJ7Lyg.roa
File: JeuR_UTqRcQlkia7g-lJAHJ7Lyg.roa (raw, json)
Hash identifier: u/BuekJr4GU9YjoKjS1uWJ/6P0Q4UbifJnsZ1DCnxYA=
Subject key identifier: 25:EB:91:FD:44:EA:45:C4:25:92:26:BB:83:E9:49:00:72:7B:2F:28
Certificate issuer: /CN=3de2681dda00702a7597a71257e14f7a725e890e
Certificate serial: 0184427BA4805DAE943C6CBA762189094815
Authority key identifier: 3D:E2:68:1D:DA:00:70:2A:75:97:A7:12:57:E1:4F:7A:72:5E:89:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PeJoHdoAcCp1l6cSV-FPenJeiQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/JeuR_UTqRcQlkia7g-lJAHJ7Lyg.roa
Signing time: Fri 04 Nov 2022 11:51:49 +0000
ROA not before: Fri 04 Nov 2022 11:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 145.43.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:7b:a4:80:5d:ae:94:3c:6c:ba:76:21:89:09:48:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3de2681dda00702a7597a71257e14f7a725e890e
Validity
Not Before: Nov 4 11:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25eb91fd44ea45c4259226bb83e94900727b2f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:41:89:a4:26:df:51:b3:89:9a:fe:fd:73:01:
17:1a:20:fb:d9:fb:f3:e2:6b:7f:9b:d2:a7:3a:09:
3f:48:9a:02:92:3d:76:fa:e7:bd:db:6a:23:c7:d5:
c9:e9:b2:6e:37:6d:32:8a:87:0b:69:e6:6f:94:b3:
2b:97:79:7e:67:0a:dd:a0:e9:7f:e3:93:df:16:6d:
6e:e1:7e:a4:69:d9:9f:4a:b3:0e:43:5d:a5:91:ae:
a8:b7:06:fd:42:40:41:90:56:9b:73:45:c7:76:c2:
d1:08:6e:fc:59:77:95:0f:be:b6:fb:27:e0:4e:1f:
c9:4f:1a:03:8d:a8:20:f9:54:d7:95:91:05:28:c1:
be:67:5a:e2:b8:e2:d0:d3:00:79:e3:c0:37:21:e3:
8d:e2:05:0d:8e:bb:22:9a:98:15:14:13:b9:3b:6c:
66:05:ec:5f:43:d4:09:55:1d:aa:f6:d8:63:7d:dc:
aa:4a:13:ae:d6:56:df:f7:46:eb:ab:ed:65:22:5f:
39:15:73:0f:74:ee:dd:21:87:49:9c:10:2a:28:1a:
e5:6b:63:08:f8:01:79:20:ee:3c:c9:84:d4:1e:57:
61:e7:3b:72:4f:b7:28:db:e4:b1:cd:a9:3c:c7:60:
63:b9:c2:46:85:26:28:40:33:84:bc:61:89:8e:53:
06:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:EB:91:FD:44:EA:45:C4:25:92:26:BB:83:E9:49:00:72:7B:2F:28
X509v3 Authority Key Identifier:
keyid:3D:E2:68:1D:DA:00:70:2A:75:97:A7:12:57:E1:4F:7A:72:5E:89:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PeJoHdoAcCp1l6cSV-FPenJeiQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/JeuR_UTqRcQlkia7g-lJAHJ7Lyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/36d6e4-8d77-48d5-afb6-e0ac7263db12/1/PeJoHdoAcCp1l6cSV-FPenJeiQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.43.244.0/22
Signature Algorithm: sha256WithRSAEncryption
81:af:d9:9e:ef:b5:c4:b9:68:8f:3b:c7:18:6f:35:a0:f6:4b:
74:c4:a6:0c:26:4d:1f:6d:e7:d4:06:ea:39:6d:03:7f:b8:d8:
6d:93:55:78:9e:02:fa:dc:50:5c:15:f2:2a:18:5c:3f:9b:3d:
87:12:ef:e1:c2:26:25:05:1a:59:67:62:98:7b:b8:2d:0e:13:
ab:e8:f0:e7:9d:1a:37:98:38:c4:35:2e:fb:9d:c9:5e:c1:10:
5a:69:45:d8:67:32:31:bc:c8:db:f0:02:5c:8b:da:19:20:87:
35:38:e6:31:60:8c:f8:bd:c1:38:a0:84:2f:31:fc:6b:28:7d:
c3:e1:fe:22:cc:0d:a6:86:f4:7a:94:0c:7e:19:8c:00:2a:72:
15:83:e7:49:ea:92:14:16:06:9c:2d:e4:08:d2:81:86:3c:4f:
b4:b1:05:7b:bf:08:f7:c9:5e:5b:a6:bf:1e:15:92:af:a6:52:
b9:d0:15:25:b0:63:c1:10:a7:91:86:d6:ee:15:e4:30:e5:96:
7e:cd:c5:bf:4d:b3:89:85:41:2a:45:35:68:d6:fa:21:4f:e4:
7e:80:f5:2f:81:1a:2a:7a:4b:24:f9:96:71:a8:53:24:4b:0d:
50:58:22:67:6c:47:43:81:7d:83:46:eb:3a:cf:e9:0c:25:f0:
2b:63:f6:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:27 2025 by rpki-client