Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/ji2VPHyLT5GqHi_yjkZSQ7dfFk0.roa
File: ji2VPHyLT5GqHi_yjkZSQ7dfFk0.roa (raw, json)
Hash identifier: hQEdzYa5NCJlyV/h7/QNZy6sFLaRIZ6TKb5O2F81uCI=
Subject key identifier: 8E:2D:95:3C:7C:8B:4F:91:AA:1E:2F:F2:8E:46:52:43:B7:5F:16:4D
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 08161350
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/ji2VPHyLT5GqHi_yjkZSQ7dfFk0.roa
Signing time: Sat 01 Jan 2022 05:00:17 +0000
ROA not before: Sat 01 Jan 2022 05:00:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 188.124.25.0/24 maxlen: 24
185.93.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135664464 (0x8161350)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Jan 1 05:00:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e2d953c7c8b4f91aa1e2ff28e465243b75f164d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fe:12:c0:85:e4:62:42:64:e1:8f:0f:28:92:
25:71:59:d7:b3:55:36:09:d1:ea:55:41:2b:2d:09:
3f:ae:a6:00:bf:5d:60:19:40:17:42:17:3c:6a:e4:
d5:33:ed:cf:09:89:f8:51:d7:f0:81:f3:85:a7:fb:
5f:a9:b2:2e:51:0f:91:06:40:97:44:04:5a:c0:15:
6a:b6:79:1b:fb:68:1e:08:c4:46:08:24:97:0d:42:
43:f0:5d:b7:d2:4a:f2:7e:90:0f:7d:ce:3e:90:7c:
38:df:19:6d:d0:94:e5:c3:b8:c3:c5:04:57:15:51:
68:cb:57:7a:04:cf:d9:57:40:2e:40:ea:60:2c:48:
6e:14:82:56:28:0c:a2:4c:37:f2:84:89:a5:49:f0:
31:89:55:95:c5:4a:ea:12:35:90:41:2a:f5:d0:2d:
13:f0:71:a6:87:24:01:01:7a:b0:8a:1e:b7:00:1c:
ef:92:36:66:4a:4a:75:98:81:88:53:96:69:25:8c:
2a:92:e7:97:d3:e4:8f:05:80:53:9b:1f:9e:9f:c8:
2d:b9:2f:04:85:09:c9:ab:8e:6e:8e:1a:fd:e8:f4:
21:eb:d8:cf:4f:fd:f2:4f:e3:59:af:d1:91:15:f6:
25:a6:88:2e:32:a6:3b:05:e8:6d:8c:53:5a:25:4d:
6b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:2D:95:3C:7C:8B:4F:91:AA:1E:2F:F2:8E:46:52:43:B7:5F:16:4D
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/ji2VPHyLT5GqHi_yjkZSQ7dfFk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.248.0/24
188.124.25.0/24
Signature Algorithm: sha256WithRSAEncryption
49:e6:6b:0d:1b:e4:64:2a:25:1f:fc:6d:39:fc:70:32:51:0b:
d8:25:cd:f5:c2:7d:28:ec:cc:7b:cb:e6:53:c7:29:4c:22:37:
ba:62:3a:b3:4f:d4:37:49:50:cb:4d:a4:45:0a:9b:7b:c6:4a:
98:47:ec:fc:d8:ec:dc:1d:c1:a4:0d:76:19:42:59:5d:66:74:
37:38:3f:8a:13:26:bb:2e:10:6c:2e:9f:a6:2d:9d:24:e0:a5:
c8:d7:f7:5b:80:b3:73:7a:1c:bc:b3:fc:52:50:e3:74:f5:8a:
62:06:ea:33:2a:1a:25:ee:4b:3e:2b:6b:5d:03:70:3e:4c:87:
80:50:35:b8:62:94:ee:6a:3d:a1:82:58:92:35:65:61:b4:ed:
5a:cd:8d:f7:ff:28:3f:8c:56:8f:5f:f8:0a:d2:28:6a:15:21:
b5:cf:b7:f1:f8:ce:ee:25:5d:19:5a:3d:dc:ba:54:16:df:d6:
48:b8:6a:20:c5:6a:6f:a4:b6:80:d4:d6:f1:bd:83:a8:e3:0a:
bf:01:89:22:f4:00:de:d2:b2:3b:4b:87:f5:29:aa:9d:30:c8:
09:5e:2b:00:c8:45:7d:92:74:db:c9:a4:56:af:4e:04:26:9b:
c0:89:78:96:e7:28:8f:8f:36:fa:a1:28:17:2a:db:e6:71:c3:
b0:c3:38:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 00:49:04 2025 by rpki-client