Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/jPOLJamAsyJblmiChP0iywqn4fU.roa
File: jPOLJamAsyJblmiChP0iywqn4fU.roa (raw, json)
Hash identifier: cglK3du9WYvJEwkJD9rZG3VenAPaJs517OSQkv3hh6o=
Subject key identifier: 8C:F3:8B:25:A9:80:B3:22:5B:96:68:82:84:FD:22:CB:0A:A7:E1:F5
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 0185730CD66B4D38EBC4FA54AFEC9A0A7047
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/jPOLJamAsyJblmiChP0iywqn4fU.roa
Signing time: Mon 02 Jan 2023 15:14:59 +0000
ROA not before: Mon 02 Jan 2023 15:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207106
IP address blocks: 147.234.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:d6:6b:4d:38:eb:c4:fa:54:af:ec:9a:0a:70:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 2 15:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cf38b25a980b3225b96688284fd22cb0aa7e1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3b:41:9b:7e:14:b1:46:29:93:fc:89:01:6e:
2d:e6:ca:5c:cc:45:96:7b:4f:37:ec:1e:a6:c0:a6:
f5:5d:f5:84:d5:60:1c:d0:12:53:f4:30:69:9b:d1:
29:f7:71:e9:ee:47:4a:cf:3f:10:85:83:df:5e:dd:
25:32:b7:7e:ae:7a:7f:44:80:70:37:cd:7f:76:c3:
f5:51:d7:b1:51:8f:94:80:66:79:b6:59:ae:b6:b4:
1b:9a:b5:67:29:52:0f:ea:73:a5:92:20:a9:a2:91:
7f:d8:52:f5:3b:dd:39:44:98:b9:f7:2f:18:7d:93:
d3:50:5f:59:ea:a6:d9:c1:77:57:06:13:ef:85:47:
e0:cf:ee:1e:d8:46:00:4f:32:c0:a9:46:fc:45:ff:
c2:58:7d:95:35:96:13:21:18:7d:62:d9:66:ed:d5:
4e:0c:ae:76:b2:0a:d7:f7:3e:96:53:2e:fc:9e:d6:
ac:63:d4:6e:cc:83:61:c3:de:7c:81:22:14:19:66:
03:ea:da:32:52:af:78:eb:11:de:77:78:a1:50:74:
18:86:99:6e:e2:ac:5d:65:71:01:aa:d7:5f:6f:d1:
18:74:ec:eb:6a:8e:f4:23:5d:9b:4c:ce:41:49:e3:
d7:af:d9:1b:e9:36:f7:ac:8a:6a:69:80:dd:bb:63:
7e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F3:8B:25:A9:80:B3:22:5B:96:68:82:84:FD:22:CB:0A:A7:E1:F5
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/jPOLJamAsyJblmiChP0iywqn4fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.8.0/24
Signature Algorithm: sha256WithRSAEncryption
28:7b:87:7b:1e:82:be:7f:0d:3f:b5:7d:ae:2a:a7:c3:77:4d:
7e:60:0e:7f:ad:6e:a7:f4:c0:10:bf:25:d1:37:dc:86:91:e2:
67:88:c0:a8:58:ec:a0:ed:a9:1c:49:5b:a6:3a:89:7f:25:19:
76:25:b0:ce:ca:ef:2d:b6:6c:68:b7:57:96:d8:08:17:9d:a2:
71:d6:3f:6a:a3:6a:63:ce:0b:85:43:37:44:26:c3:17:31:2c:
91:85:04:1e:d0:4d:fd:1f:2b:72:1c:b1:e5:61:f5:85:cc:4c:
44:ee:10:19:43:9b:9b:f0:2d:7a:f2:29:5d:8a:88:32:3b:80:
86:04:e5:d8:6b:2a:85:4b:a9:1d:c7:bc:21:10:f5:50:34:d5:
da:52:46:8c:c4:44:14:11:97:09:cc:37:75:6a:65:4c:c1:70:
6e:f7:2e:ba:64:5f:a9:ac:32:b3:94:9c:6e:79:d6:5f:8a:76:
8b:06:9f:b8:d4:99:c0:bb:e7:e3:7f:2d:28:a0:a9:58:a3:92:
bd:d8:29:8c:75:a2:87:3e:84:86:f2:d3:9c:1b:da:f9:00:a2:
0d:fb:78:68:9a:91:c8:eb:36:a6:24:28:52:03:2f:28:7d:92:
25:cd:48:3c:39:61:fc:56:6b:0d:0e:42:b8:07:a2:df:71:3e:
ab:38:5a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:58 2025 by rpki-client