Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/JLjUstOVYxh1tQm-zmQ-t6TIq-s.roa
File: JLjUstOVYxh1tQm-zmQ-t6TIq-s.roa (raw, json)
Hash identifier: b2r5EHpXAMHgcTrVxrN7FYUgM/2XLeOqvj6x7sLGgWc=
Subject key identifier: 24:B8:D4:B2:D3:95:63:18:75:B5:09:BE:CE:64:3E:B7:A4:C8:AB:EB
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 07147BC8
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/JLjUstOVYxh1tQm-zmQ-t6TIq-s.roa
Signing time: Sat 01 Jan 2022 11:56:31 +0000
ROA not before: Sat 01 Jan 2022 11:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42675
IP address blocks: 91.226.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118782920 (0x7147bc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: Jan 1 11:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24b8d4b2d395631875b509bece643eb7a4c8abeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f0:a8:5d:0c:27:de:b3:db:eb:f8:5b:7b:3f:
8c:3c:0f:e7:79:c5:ee:aa:5b:d5:3b:44:6f:d5:59:
04:80:e7:a5:19:31:5f:26:a5:c8:25:ef:88:8f:5b:
64:e6:16:8d:1a:69:34:4e:37:cc:e0:f7:7d:ab:8e:
12:93:63:02:99:05:59:f7:e1:c7:ee:b5:66:dc:9c:
89:94:ec:5c:b9:6a:04:19:4e:74:e7:dd:26:a9:0a:
30:ea:b5:c7:2f:b1:cf:c9:e3:3e:59:f5:b5:a6:e9:
9c:fa:eb:9c:d1:82:51:fc:4b:ea:f1:a8:0b:e9:66:
60:dd:4b:ab:3c:fa:5d:88:ba:12:58:0b:30:dc:5b:
05:32:30:84:bd:35:9e:12:f7:b9:b5:3f:5a:e7:70:
29:90:7b:d6:e6:6f:ac:d6:98:30:71:be:ae:e3:4e:
b9:92:b6:5f:00:11:23:b5:76:17:b5:01:75:19:a7:
5f:44:d3:54:8b:2e:9d:04:f3:f4:dc:14:30:1f:a9:
31:6a:e9:4d:92:82:40:f2:34:d0:ac:9a:9d:66:e6:
15:f0:c4:4d:15:8d:ed:39:b1:cd:d6:5a:3a:7e:2f:
f7:8d:a1:2c:4f:57:f0:da:82:84:3a:5d:e9:df:cc:
37:be:8c:a7:9e:60:92:ee:60:c7:79:0b:ea:76:02:
85:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B8:D4:B2:D3:95:63:18:75:B5:09:BE:CE:64:3E:B7:A4:C8:AB:EB
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/JLjUstOVYxh1tQm-zmQ-t6TIq-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.221.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c5:1a:69:db:dd:86:ed:e2:f3:18:e9:0b:22:85:b2:ba:22:
36:17:a8:9d:50:4e:f1:83:98:a1:31:fd:b1:69:af:4d:2e:1b:
e5:ee:0e:0b:8d:1c:dc:c6:de:43:ff:28:ff:6d:43:3f:5a:72:
aa:8f:6a:37:df:5e:30:36:55:cf:74:e7:3a:d3:d1:7b:fc:a7:
fa:99:b6:b7:0e:03:26:cb:1d:8a:09:66:fb:1a:8b:d9:2b:fd:
8a:03:8b:6f:3d:da:9c:eb:97:d9:e5:07:81:df:cb:7f:44:d2:
c3:f8:b6:8c:2d:b6:86:19:40:80:19:82:eb:91:d3:5f:95:f5:
29:79:5a:14:4a:39:49:c5:cc:92:04:1d:3d:a5:68:6b:ba:bb:
12:58:b6:85:92:12:f0:3d:0b:5b:c1:e9:61:89:9b:ca:ac:b4:
07:b5:42:ba:3f:ec:4e:87:06:44:aa:9d:5a:b7:2f:06:70:e7:
6f:c5:3b:14:56:f6:f0:86:62:ed:eb:1b:eb:56:b6:8a:8d:f1:
98:6b:59:c2:ad:fd:e7:66:16:3f:36:ff:ad:f2:f4:b5:32:49:
8e:8c:f9:3d:fb:f1:f5:45:02:37:6b:a3:3a:a0:d6:49:39:9a:
5f:78:bd:91:62:97:91:e8:3f:0c:1b:cd:ff:b5:a4:f6:a6:09:
e4:3b:b8:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:30 2025 by rpki-client