Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/JjDV1MnAPAI_y4cumfnkSivq7B8.roa
File: JjDV1MnAPAI_y4cumfnkSivq7B8.roa (raw, json)
Hash identifier: LRDM/5I6knXSFpEr1MS4KTN6BRHSnwRWfGtHD/IAGJo=
Subject key identifier: 26:30:D5:D4:C9:C0:3C:02:3F:CB:87:2E:99:F9:E4:4A:2B:EA:EC:1F
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 0106EC
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/JjDV1MnAPAI_y4cumfnkSivq7B8.roa
Signing time: Fri 24 Jun 2022 15:00:40 +0000
ROA not before: Fri 24 Jun 2022 15:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43099
IP address blocks: 91.194.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67308 (0x106ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: Jun 24 15:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2630d5d4c9c03c023fcb872e99f9e44a2beaec1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2b:fe:a5:91:31:4c:31:e1:d9:e3:8d:4f:f8:
a3:b0:e3:12:fe:f6:53:ed:0f:5c:76:9d:e0:e7:4e:
75:38:48:95:f0:36:5a:2f:1c:e1:85:0e:27:69:21:
58:9d:bb:99:94:77:af:c2:e5:1a:6c:12:ea:d0:0a:
ce:fa:7b:cf:b2:72:b3:eb:14:ab:07:4f:c9:5c:1c:
3e:1a:1d:a8:9e:8e:57:86:e7:c2:4d:3e:b8:5a:29:
43:51:7f:de:22:54:f2:b1:f5:f7:2c:ba:9d:67:0b:
1e:52:49:34:4f:5c:bc:62:f2:81:83:dc:6d:83:a2:
28:64:5a:24:85:44:cb:eb:3d:41:74:a8:98:40:5b:
8b:15:d3:ce:80:3f:77:a4:2f:da:09:b1:21:86:b4:
bd:ae:32:36:81:ee:ec:70:d1:54:23:fc:7f:92:4b:
a5:f3:fb:25:3f:b2:07:8e:fb:e7:75:1e:f1:fe:16:
52:17:41:83:00:32:2e:fb:af:7f:4f:73:1d:48:2e:
51:58:ea:ae:6b:16:30:1b:73:e5:ac:dd:99:84:23:
99:ab:d7:14:e6:ae:45:39:d5:d7:2e:cd:27:4b:f4:
7e:cc:08:b6:8b:ea:5d:1e:48:f5:bf:d2:56:04:2f:
3e:28:2b:91:1e:ed:99:68:4c:37:7e:d3:ee:9f:e9:
5c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:30:D5:D4:C9:C0:3C:02:3F:CB:87:2E:99:F9:E4:4A:2B:EA:EC:1F
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/JjDV1MnAPAI_y4cumfnkSivq7B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.66.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:90:b0:97:8c:68:68:bd:8d:a6:55:9e:7d:07:4b:cf:b1:2c:
ab:ff:e0:37:6c:b1:c6:6f:26:75:9f:ae:0a:09:4f:bd:c4:c3:
ba:cd:1e:7b:45:0c:8c:0d:91:ed:59:4b:5f:10:20:eb:22:2b:
b6:30:ec:14:a1:56:7d:8f:cb:4b:a7:91:f2:a5:06:82:c6:7c:
b1:ac:f0:26:28:22:bc:6f:4f:16:8e:5a:b7:fc:62:84:17:56:
63:b8:4c:e9:0e:8b:74:2e:ef:6c:2c:37:10:83:64:ee:f9:96:
7a:ef:78:e0:6b:3f:8d:94:b2:3a:9c:b6:8e:41:b1:59:6d:8f:
94:f3:35:c5:f5:20:12:44:82:6b:50:21:93:36:fe:fd:a1:80:
dd:e9:55:3d:b7:b6:07:fc:df:e1:18:c6:d0:85:ec:6c:5d:79:
d9:98:db:f6:7e:99:79:08:ed:1a:ea:4f:77:df:bd:46:64:d5:
8e:86:27:e0:3a:a9:38:2d:e1:ee:c4:7c:9e:2c:36:52:ac:08:
26:99:76:25:bc:04:bb:ca:7c:9f:2f:3b:0f:b2:c5:1b:a2:e9:
54:50:0f:72:21:36:12:aa:d9:31:68:89:39:0e:66:84:2e:24:
93:ef:f5:3f:43:72:71:d8:d2:b7:9e:c0:29:db:ed:dd:1e:47:
02:c0:15:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:40:48 2025 by rpki-client