Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/jtr5GwyHeITh4ayjsL1zB6ZnNeo.roa
File: jtr5GwyHeITh4ayjsL1zB6ZnNeo.roa (raw, json)
Hash identifier: c8geWvoKXT5FlNXrtHgOTSFYxFsHcCMm3Tm5BMp0e7s=
Subject key identifier: 8E:DA:F9:1B:0C:87:78:84:E1:E1:AC:A3:B0:BD:73:07:A6:67:35:EA
Certificate issuer: /CN=22c152606125eb66d522263fa03109bbf0bba3da
Certificate serial: 0B3999E8
Authority key identifier: 22:C1:52:60:61:25:EB:66:D5:22:26:3F:A0:31:09:BB:F0:BB:A3:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsFSYGEl62bVIiY_oDEJu_C7o9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/jtr5GwyHeITh4ayjsL1zB6ZnNeo.roa
Signing time: Sat 01 Jan 2022 13:05:15 +0000
ROA not before: Sat 01 Jan 2022 13:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198874
IP address blocks: 91.234.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188324328 (0xb3999e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c152606125eb66d522263fa03109bbf0bba3da
Validity
Not Before: Jan 1 13:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8edaf91b0c877884e1e1aca3b0bd7307a66735ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:85:2f:5c:06:a2:55:99:28:af:84:0f:ab:88:
86:f2:87:0e:04:98:f1:8e:9b:46:0f:39:62:95:f2:
8c:e0:11:f3:db:a8:7f:5e:bb:9f:03:cd:d7:f7:e7:
b6:ec:74:07:05:c7:5c:dd:21:24:41:c9:76:cc:cd:
5e:6e:bb:e6:d0:b1:30:fc:a8:d2:aa:25:a5:7b:75:
b0:a5:38:48:af:3c:30:10:94:b9:62:1d:a0:07:3c:
a1:77:e6:8d:92:71:bf:f1:45:d5:44:fc:54:c5:1c:
e2:98:d4:ba:7f:e9:3d:e6:ae:06:58:06:05:81:50:
4a:0a:86:42:55:ec:51:f2:28:f6:4b:80:32:ba:99:
4a:ac:41:cf:1a:a4:1e:10:b0:a8:7a:f0:27:de:13:
3e:e3:29:04:8f:be:c1:f5:18:f8:73:e1:63:2a:45:
31:a9:92:c3:da:74:1a:a9:d6:0d:2a:2f:85:29:8c:
30:00:ee:31:67:fa:0a:b5:97:b9:3c:43:e7:b2:e2:
1c:8f:ac:4b:4b:42:4a:93:36:4c:a2:1a:e8:d5:b2:
29:3d:82:b4:79:92:f5:60:7b:c7:a1:65:f1:29:02:
87:e4:16:26:26:f0:9f:c9:fe:a3:4d:e4:05:c1:57:
0b:06:99:5a:bd:9a:c8:93:6e:f6:f0:bb:a9:b6:3e:
47:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:DA:F9:1B:0C:87:78:84:E1:E1:AC:A3:B0:BD:73:07:A6:67:35:EA
X509v3 Authority Key Identifier:
keyid:22:C1:52:60:61:25:EB:66:D5:22:26:3F:A0:31:09:BB:F0:BB:A3:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsFSYGEl62bVIiY_oDEJu_C7o9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/jtr5GwyHeITh4ayjsL1zB6ZnNeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/IsFSYGEl62bVIiY_oDEJu_C7o9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.228.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:34:23:55:fd:2a:f5:bc:a9:8a:6f:e9:6c:6a:a3:f3:d3:30:
e1:b8:63:ad:ed:36:11:ca:e2:27:1a:54:41:aa:7d:fb:29:00:
a7:b7:85:85:93:e7:07:e8:9b:54:1f:05:b4:30:ea:2d:65:55:
3f:b4:f5:00:42:d5:e2:81:2e:65:ba:ae:0d:5e:a4:cf:48:1a:
af:4a:ff:10:d9:0c:6f:df:31:f3:9f:66:a8:70:36:c1:10:c0:
68:99:8a:6d:2a:3b:41:3b:f7:0a:d8:fe:9d:a9:4b:4c:20:dd:
13:23:0f:e9:5f:64:60:8a:2a:eb:22:76:49:2b:6d:64:7e:fd:
8f:ad:54:2b:c5:46:b5:ed:a6:b7:47:86:b5:86:64:15:f0:ad:
f6:a7:b4:77:bd:80:90:8f:88:b4:5b:8c:18:2f:66:dd:30:42:
d0:62:e3:e9:43:e8:57:26:dc:3c:e4:f4:38:99:21:37:5f:dc:
59:d7:6b:b7:01:78:81:2d:31:72:fc:74:5b:54:c8:4b:2e:d5:
a2:d6:95:c8:d2:d8:37:c1:73:97:ac:fc:49:58:65:66:6e:69:
77:22:8a:0c:5b:43:45:04:ef:e4:01:6a:c9:86:68:32:37:fc:
36:c3:40:be:fe:96:39:fd:3f:d9:f5:b1:32:be:f6:56:c0:c7:
a5:c9:dc:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:30 2025 by rpki-client