Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/jaP3r-7J_Smxnbo5TuYIVass7Ec.roa
File: jaP3r-7J_Smxnbo5TuYIVass7Ec.roa (raw, json)
Hash identifier: OVUf7ISNksqqjVQX8nKXRysLLMs6bqh2S2L9v8UuPkk=
Subject key identifier: 8D:A3:F7:AF:EE:C9:FD:29:B1:9D:BA:39:4E:E6:08:55:AB:2C:EC:47
Certificate issuer: /CN=bc4f1e6b011f4d6331a127955a548fa5052580a5
Certificate serial: 018570428ED928DD12A290EE6C01720670BA
Authority key identifier: BC:4F:1E:6B:01:1F:4D:63:31:A1:27:95:5A:54:8F:A5:05:25:80:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE8eawEfTWMxoSeVWlSPpQUlgKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/jaP3r-7J_Smxnbo5TuYIVass7Ec.roa
Signing time: Mon 02 Jan 2023 02:14:48 +0000
ROA not before: Mon 02 Jan 2023 02:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48281
IP address blocks: 185.128.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:8e:d9:28:dd:12:a2:90:ee:6c:01:72:06:70:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4f1e6b011f4d6331a127955a548fa5052580a5
Validity
Not Before: Jan 2 02:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8da3f7afeec9fd29b19dba394ee60855ab2cec47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6b:04:8c:b8:cd:4c:15:20:34:6c:f1:5f:f1:
8b:74:74:91:ef:88:c8:e8:eb:ef:99:c0:f3:d8:19:
0a:1d:03:d7:8e:0b:b3:7c:da:b1:9e:f8:a7:e3:a3:
89:0f:43:bd:3b:d7:3a:9a:70:36:8c:ab:2c:ef:84:
41:1f:59:73:20:50:f8:40:4d:f1:b8:a7:5d:b0:b5:
d6:1f:ca:83:62:9d:b6:e3:e7:61:d9:a7:4c:89:fa:
d3:99:d8:c8:3e:03:b9:91:cd:05:46:6b:4c:1f:10:
08:9b:bb:1c:7e:eb:7a:e2:00:4b:d5:32:1a:dc:d5:
6f:20:2f:1a:ba:25:00:7a:68:28:b2:43:f4:4b:3f:
d1:07:95:30:f1:b6:29:48:53:44:69:6e:c8:7b:76:
0a:5d:0e:44:7a:9d:91:a8:9c:79:6a:4c:cb:88:e6:
8e:32:33:1c:d2:98:d8:55:3e:ac:fb:27:4f:a7:29:
2e:f2:b7:07:d3:1e:6d:cf:14:11:7d:37:87:7a:7e:
ef:14:b7:31:4f:18:bd:d8:e0:cb:9c:af:e0:0e:21:
f0:ea:e0:bd:e0:ec:22:06:02:5e:bb:97:2a:af:d3:
6f:f9:ff:b7:ef:ea:1d:79:4c:e6:80:bb:a4:bb:6b:
93:c9:68:25:15:06:03:7a:89:99:4d:66:80:6f:6b:
ce:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A3:F7:AF:EE:C9:FD:29:B1:9D:BA:39:4E:E6:08:55:AB:2C:EC:47
X509v3 Authority Key Identifier:
keyid:BC:4F:1E:6B:01:1F:4D:63:31:A1:27:95:5A:54:8F:A5:05:25:80:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE8eawEfTWMxoSeVWlSPpQUlgKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/jaP3r-7J_Smxnbo5TuYIVass7Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/vE8eawEfTWMxoSeVWlSPpQUlgKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.154.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:00:d8:a1:84:27:62:19:a6:bd:89:57:d0:73:5f:f4:e0:45:
5c:0b:cd:43:59:8c:e9:a1:17:a7:03:b2:c5:ff:c1:28:7c:ac:
75:46:42:09:38:64:8d:83:55:67:e1:75:a1:10:19:67:61:ad:
dc:bf:cb:c8:0c:d0:96:e6:30:60:8f:d7:bd:90:6a:74:e1:f1:
eb:0d:34:d7:c0:08:48:94:fe:48:87:2d:fb:44:4f:44:72:6d:
2c:b2:2d:e9:bb:30:b1:40:68:a5:24:2a:cf:90:ab:e3:f6:db:
1d:6e:41:22:fc:18:2a:56:bb:01:2a:ac:ab:6c:a6:da:f2:e1:
4c:6c:66:ac:e7:8a:44:3a:91:33:6a:df:58:63:f0:9d:ef:2e:
0a:80:d3:81:49:4c:09:d1:d8:eb:c3:ca:0c:a3:9c:d6:0c:40:
e3:4f:96:80:14:cf:6b:86:43:7e:5e:fe:71:f9:b6:72:a6:7e:
3a:08:db:a2:72:3c:9c:c6:d1:50:46:4a:3b:42:d3:74:c6:6f:
18:0a:2f:65:af:59:f2:07:41:2a:e7:97:8d:61:aa:76:5b:6a:
2f:16:84:33:65:dd:b7:08:74:82:22:0e:51:c4:fc:71:4e:b6:
48:d0:07:97:65:2b:9a:3a:83:a2:00:85:7d:32:60:3a:8a:60:
03:89:c6:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:26 2025 by rpki-client