Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/jWE1KBa14JrY2kzwYaPA6cipP1U.roa
File: jWE1KBa14JrY2kzwYaPA6cipP1U.roa (raw, json)
Hash identifier: woUF7ebxzCO/ZLU82WS3mSY1A87jhDL3jaNzHRc3fRs=
Subject key identifier: 8D:61:35:28:16:B5:E0:9A:D8:DA:4C:F0:61:A3:C0:E9:C8:A9:3F:55
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A2E421E9175318017F71911B13509E753
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/jWE1KBa14JrY2kzwYaPA6cipP1U.roa
Signing time: Fri 25 Aug 2023 19:53:19 +0000
ROA not before: Fri 25 Aug 2023 19:53:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 2.57.240.0/24 maxlen: 24
89.43.62.0/24 maxlen: 24
86.107.168.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2e:42:1e:91:75:31:80:17:f7:19:11:b1:35:09:e7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 25 19:53:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d61352816b5e09ad8da4cf061a3c0e9c8a93f55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8a:0c:73:a2:53:d0:3e:f5:b0:c5:27:2c:f6:
da:ec:8b:4f:24:7e:49:34:06:7c:45:55:f8:12:34:
d6:2b:76:5c:b5:e2:f7:b5:1c:12:b0:70:2f:19:19:
28:bd:a7:7c:3d:eb:70:88:9a:41:a1:4d:e4:f9:c6:
74:84:0c:34:1f:12:3d:56:2c:b1:37:cf:60:2e:a4:
5f:df:c8:bf:70:08:b8:8b:45:7e:20:f3:56:47:16:
6d:0d:77:5e:da:95:fa:9c:db:2b:d9:fe:3c:fa:36:
3b:86:9c:b3:0b:f0:d7:61:5e:13:5b:ba:c5:ef:d0:
fd:3b:ba:86:f9:fa:78:3d:7b:cf:21:f9:ed:1b:a0:
f4:f5:19:fe:27:f6:c0:48:db:de:52:ba:b3:64:9d:
1b:42:e9:87:7f:dd:92:ef:b1:f7:8a:3f:4a:73:b1:
d9:7a:5c:de:55:07:96:f6:2f:f9:f2:f5:be:96:8d:
48:e9:b0:d4:83:fa:53:b4:67:ba:e5:42:be:08:60:
60:f5:ae:65:83:d5:dd:d3:de:c9:bf:d2:44:89:72:
8f:fd:7d:04:16:f4:32:f7:a1:53:92:32:3c:8a:f3:
f0:94:a7:6d:56:6c:f0:85:df:6c:f5:c7:be:b0:8a:
84:ff:af:78:e4:ee:f4:97:fc:98:f6:be:b7:58:b8:
35:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:61:35:28:16:B5:E0:9A:D8:DA:4C:F0:61:A3:C0:E9:C8:A9:3F:55
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/jWE1KBa14JrY2kzwYaPA6cipP1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.240.0/24
77.81.182.0/24
86.107.168.0/24
89.43.62.0/24
94.177.150.0/24
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:17:63:67:09:fd:2d:ec:13:c4:24:0c:e4:a5:a6:bf:4e:9e:
6b:58:06:c5:fd:f8:5c:c2:e6:0f:1c:2c:81:7e:46:3c:ea:a5:
cc:13:80:43:71:37:49:36:e9:97:86:36:c6:a0:33:3c:67:42:
7f:16:5e:82:0c:6e:78:80:18:99:a0:27:e7:0e:97:3e:60:38:
dd:93:54:11:c0:dc:8d:31:b5:ec:16:bd:3f:67:d3:af:10:16:
09:e7:30:27:d7:74:55:c3:af:95:4d:0a:23:ef:a2:f0:ff:36:
f9:75:30:ae:c5:b5:c4:bf:3a:42:e1:29:c9:88:a4:1d:96:23:
18:62:1d:99:0b:15:83:3e:91:22:a7:b9:3b:ae:f4:66:95:7c:
08:cf:1c:ce:17:9b:02:d8:33:e4:b4:95:0c:1f:e1:1e:5e:c3:
66:d8:65:6a:1c:13:8e:ed:15:b1:1c:ab:e2:aa:e3:30:f9:b2:
8a:2b:65:24:3a:84:09:85:f8:12:52:fc:15:d7:d9:f5:43:96:
54:8d:de:d5:03:b0:da:5b:96:75:6b:b8:a9:bb:d2:7c:3a:63:
7d:b0:ab:f8:6c:7c:8f:27:73:80:d6:95:ad:04:47:aa:1a:7e:
cf:36:7f:fa:3c:3c:8e:cc:bb:5a:a6:3d:1b:87:6e:f9:23:87:
3c:1b:74:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 28 10:11:20 2025 by rpki-client