Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/JZTyy-6Q1WCfdNo92A9YI-00ZZA.roa
File: JZTyy-6Q1WCfdNo92A9YI-00ZZA.roa (raw, json)
Hash identifier: xUYGJdnREkuneGq/PLhh3jYHC1CyBkwbP6qQQTiuwaQ=
Subject key identifier: 25:94:F2:CB:EE:90:D5:60:9F:74:DA:3D:D8:0F:58:23:ED:34:65:90
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 0891B118
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/JZTyy-6Q1WCfdNo92A9YI-00ZZA.roa
Signing time: Sat 01 Jan 2022 03:51:01 +0000
ROA not before: Sat 01 Jan 2022 03:51:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206055
IP address blocks: 213.215.92.0/24 maxlen: 24
2a00:1298:8016::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143765784 (0x891b118)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:51:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2594f2cbee90d5609f74da3dd80f5823ed346590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:99:ef:57:8e:73:59:37:fb:29:f1:7a:40:57:
24:ad:59:22:b7:02:30:50:a5:35:b7:ff:73:a2:92:
39:66:43:3c:ca:40:21:65:0d:30:20:d0:fa:33:22:
47:3c:b2:15:05:a1:de:3e:92:72:12:b9:4d:36:28:
d0:49:9a:b9:eb:21:19:c0:17:5d:3e:1e:92:17:50:
54:4e:a7:3b:07:d9:c0:2b:2e:50:3c:0f:9c:15:ad:
09:3f:df:78:2c:d1:10:8a:d0:e8:5b:15:98:6c:f9:
3d:86:62:a2:91:13:25:2f:08:21:1d:ab:a8:7b:83:
59:2b:49:b8:74:2d:17:bf:78:dd:1d:e5:77:0b:35:
88:bb:57:85:30:e6:ba:23:b2:f6:0f:fc:bb:82:da:
89:d1:91:2e:b5:08:59:b4:81:2b:ab:92:23:46:af:
4b:20:82:8d:44:29:43:9b:81:96:89:52:a8:12:b3:
d7:60:ba:b0:50:72:ba:b2:c7:6c:24:af:73:85:b3:
3a:8e:83:4e:97:c7:70:d7:f0:ab:e4:bc:67:86:c3:
c9:dc:c3:10:97:9f:94:f8:8d:d3:f9:05:49:67:99:
fc:c5:ad:2c:aa:5a:47:86:32:49:55:f6:84:6b:66:
f4:b0:9a:26:8b:1d:bd:6b:f4:fa:df:3e:09:e4:f9:
5f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:94:F2:CB:EE:90:D5:60:9F:74:DA:3D:D8:0F:58:23:ED:34:65:90
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/JZTyy-6Q1WCfdNo92A9YI-00ZZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.215.92.0/24
IPv6:
2a00:1298:8016::/48
Signature Algorithm: sha256WithRSAEncryption
3a:df:0a:24:18:bf:96:5a:0a:fe:82:06:97:12:71:38:60:b1:
6b:a9:63:15:75:45:e1:fe:c8:18:bb:23:af:7c:54:36:3a:71:
f0:61:95:2e:23:a4:84:09:50:e9:f5:03:2e:4b:3e:fd:e1:ff:
03:fa:09:c6:e6:1d:0c:de:fc:a8:30:ff:ac:ca:20:6f:38:12:
d7:1d:eb:8f:34:5f:36:31:8a:c7:fe:98:e1:57:70:ac:95:92:
c4:b5:e6:38:dc:a4:69:3d:d8:55:c1:8c:a9:b7:e8:d7:ef:ef:
b4:c3:72:36:3e:9d:9d:1e:30:d3:7a:56:52:77:e6:b8:87:79:
74:92:8d:62:ce:ca:3e:6d:05:68:f7:1d:f9:cb:f3:e7:62:89:
e8:88:f8:4f:03:18:e5:77:a1:7d:9f:c3:84:6f:57:a5:e8:eb:
76:bd:aa:c9:c6:ae:d2:00:61:be:d9:e6:40:b5:5b:1f:ed:06:
61:74:ba:41:d3:c5:5d:26:d6:31:86:80:26:64:88:f2:b2:3f:
62:64:53:4e:14:49:f4:79:fc:82:b8:98:5b:ef:08:0b:43:fb:
e4:1e:9c:74:a5:2e:9f:a3:86:22:c1:5f:8c:21:29:a8:90:e7:
b5:6e:4d:06:3f:00:d2:e3:9c:c9:11:e1:10:1f:f2:64:44:a0:
ed:22:47:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:58:29 2025 by rpki-client