Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/JeYEOY4vlbANx2R-DR9uKODv-fg.roa
File: JeYEOY4vlbANx2R-DR9uKODv-fg.roa (raw, json)
Hash identifier: jZmHOy8U+BN/9Fl7tBkubDXlHeyQrDSJKiuC3iD0CVM=
Subject key identifier: 25:E6:04:39:8E:2F:95:B0:0D:C7:64:7E:0D:1F:6E:28:E0:EF:F9:F8
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0DE952EF
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/JeYEOY4vlbANx2R-DR9uKODv-fg.roa
Signing time: Sat 01 Jan 2022 08:00:51 +0000
ROA not before: Sat 01 Jan 2022 08:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57199
IP address blocks: 80.67.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233394927 (0xde952ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Jan 1 08:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25e604398e2f95b00dc7647e0d1f6e28e0eff9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6a:69:7a:8e:9b:b8:84:89:d1:a2:7f:56:c6:
f7:19:49:87:9c:82:ab:94:45:12:7c:fc:7b:60:9e:
0b:31:e3:04:70:97:01:37:ee:cc:bf:96:6f:75:27:
ef:79:2d:bf:c5:33:60:22:1f:a5:fd:2d:8a:e3:fd:
34:e6:f6:ec:9f:e6:20:5c:ae:87:65:21:6c:02:17:
89:89:1e:03:6e:fa:7f:f1:91:ea:d3:42:15:7e:8a:
5a:18:2e:63:b4:ab:c3:2d:ce:26:45:9c:2d:91:52:
01:c1:1e:19:27:e6:32:90:34:86:c6:c3:3f:ab:29:
4d:5b:39:5d:8c:67:3c:78:d7:81:fd:64:dc:b4:83:
1c:19:a3:79:98:01:88:de:a3:ea:23:71:05:61:c7:
b8:e0:ce:2e:41:f6:7c:08:a8:74:6c:ee:43:ea:1f:
47:23:87:32:76:3f:da:42:19:13:b4:5e:25:d4:36:
8e:29:7a:02:ca:1c:6a:d8:85:ee:26:d2:71:f1:f5:
a1:75:3c:d0:ce:31:52:a8:20:3e:29:b3:33:d7:0c:
a6:61:22:62:21:98:2c:e1:ed:17:fb:6a:f6:04:b2:
1d:8f:e6:71:e5:70:f1:1f:1a:0c:d3:60:3b:72:71:
52:78:97:66:4f:ba:10:bc:7c:4a:07:29:f6:b5:c5:
5e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E6:04:39:8E:2F:95:B0:0D:C7:64:7E:0D:1F:6E:28:E0:EF:F9:F8
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/JeYEOY4vlbANx2R-DR9uKODv-fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.167.0/24
Signature Algorithm: sha256WithRSAEncryption
47:08:f4:40:da:25:d4:52:54:32:10:a4:cd:89:ab:09:06:c3:
8d:a4:dd:30:bf:08:9e:ca:52:fa:77:8a:d2:c9:fc:d8:13:93:
44:15:99:ed:41:61:b9:5d:da:18:2e:86:c9:ec:f0:3c:66:20:
98:01:1c:41:c3:cb:87:9d:fc:0b:48:c1:54:01:91:de:c6:2d:
4e:66:67:6a:52:0a:c3:6b:0b:4f:d3:6c:b5:32:f0:dd:b7:67:
2e:4d:be:34:53:50:97:bb:86:18:b6:78:6a:e4:a4:2e:28:a3:
bb:40:68:d5:5c:be:3b:99:59:d4:06:43:7d:32:f1:1a:69:fa:
d2:8b:1b:73:13:48:35:6d:d9:e7:f4:e9:ed:4a:04:fe:c4:d4:
e0:db:5e:fe:6a:15:fa:1c:01:79:c4:0c:af:73:24:61:af:5c:
04:de:68:df:da:6f:48:53:2b:1f:ed:9f:9c:05:72:a3:41:77:
0b:5e:b3:70:e9:e8:26:b8:35:f1:73:22:04:2c:67:08:2a:9c:
d6:f6:9c:d4:58:1b:d4:fc:e9:ef:cb:a3:c6:44:b6:7b:98:2a:
23:a4:b3:b3:24:07:81:7a:f0:87:98:cb:5d:a1:02:74:5a:e3:
23:1e:aa:ba:56:03:e7:a3:ea:39:c1:45:aa:b0:d7:43:56:db:
83:13:c6:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:58:36 2025 by rpki-client