Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/A_jaAJUVB1JSFWvM2GsLK_Acqqc.roa
File: A_jaAJUVB1JSFWvM2GsLK_Acqqc.roa (raw, json)
Hash identifier: sdGi6KFqsWoVxbfIZ/X4QV26oG6pgod7pjUbhyNdpdk=
Subject key identifier: 03:F8:DA:00:95:15:07:52:52:15:6B:CC:D8:6B:0B:2B:F0:1C:AA:A7
Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial: 14751369
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/A_jaAJUVB1JSFWvM2GsLK_Acqqc.roa
Signing time: Sat 01 Jan 2022 15:57:24 +0000
ROA not before: Sat 01 Jan 2022 15:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60706
IP address blocks: 109.104.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343217001 (0x14751369)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
Validity
Not Before: Jan 1 15:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03f8da009515075252156bccd86b0b2bf01caaa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:07:8b:3c:c8:ae:87:86:28:db:d2:dd:34:96:
be:7b:8f:19:dd:b6:77:a0:6f:8a:38:cc:ce:34:5d:
98:ea:63:c4:cf:4f:9e:22:77:5f:e3:9d:57:67:9f:
f5:82:89:d6:83:92:9a:51:f6:42:0a:ff:6a:d7:cc:
8c:37:37:d9:82:2e:35:0a:2e:2f:b4:ba:e0:36:3b:
ae:d2:fb:28:90:ee:a2:15:2e:f5:b0:83:eb:51:25:
67:a1:cc:2c:b2:ed:14:4d:d9:3b:dc:ed:88:48:d5:
ce:42:f2:a5:a9:51:8e:58:00:1a:81:e5:8a:00:29:
5c:ad:e4:85:c2:82:a0:e7:28:c5:ec:58:ae:97:6e:
56:06:c3:f7:34:0d:49:a7:e4:25:a4:d6:66:88:06:
f7:2e:82:44:84:a2:3a:55:b7:32:8e:b2:3f:b9:65:
63:22:da:11:4f:72:40:05:ec:30:fd:8a:82:9d:fa:
81:4c:bb:c6:74:bd:55:ca:27:7d:ee:07:5c:99:dc:
ee:1a:e2:cd:06:c1:26:ee:31:63:8c:1e:69:c9:ac:
ea:5c:db:4c:ca:a8:1b:80:50:4e:0c:f4:22:fa:85:
20:5f:7f:af:59:74:88:90:18:2b:2a:36:6b:d2:68:
39:c4:4a:82:08:f8:b9:21:8b:e7:88:da:4e:19:9d:
ae:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F8:DA:00:95:15:07:52:52:15:6B:CC:D8:6B:0B:2B:F0:1C:AA:A7
X509v3 Authority Key Identifier:
keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/A_jaAJUVB1JSFWvM2GsLK_Acqqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.252.0/22
Signature Algorithm: sha256WithRSAEncryption
36:dc:39:77:68:e5:25:f4:55:f7:de:fb:57:4f:3f:4e:67:9d:
f2:a3:f7:5a:70:61:c4:f2:ed:59:a8:c5:77:12:34:55:98:50:
32:87:a2:43:fc:7d:ed:4e:18:58:14:7a:69:6c:cc:66:82:8f:
fa:e4:6a:50:b4:a0:1a:30:14:77:f7:e9:d7:ce:aa:50:46:74:
18:15:6b:8f:3c:e0:6b:45:c1:62:99:30:09:33:fd:b8:e7:a3:
94:ae:f2:8d:a6:06:b3:2a:48:5f:69:a5:1f:ea:76:44:6a:8a:
b7:a4:7d:11:25:f1:1e:9d:78:cf:32:c4:b1:65:fd:d1:1c:b8:
1a:d3:94:33:e9:12:b3:df:9d:89:57:3c:5d:36:33:4c:dc:c3:
c1:b9:67:7b:81:81:59:19:72:66:41:d2:2c:d8:ca:36:27:e0:
b0:5c:14:f6:5a:a6:d2:63:6f:a0:d7:02:90:cb:62:1b:eb:75:
e1:8d:e6:93:20:b4:c8:d6:56:1f:5e:1c:fa:60:44:46:95:85:
21:d3:df:87:1d:b0:b1:5a:a5:3e:a8:72:84:c8:97:64:17:67:
e4:c1:ae:8e:81:30:f4:b1:b2:41:e1:7f:72:32:58:61:a5:62:
5f:e0:c9:b9:59:69:26:01:51:13:53:0a:bd:e7:5a:79:bb:75:
37:ec:24:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:27:40 2025 by rpki-client