Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/JT8yyxuvxZKzuTyfRNhzlBAAMEE.roa
File: JT8yyxuvxZKzuTyfRNhzlBAAMEE.roa (raw, json)
Hash identifier: 68F8B9zewgKiwAeNzRwzfkmqrHrJ0Y4j1PjNfr/l9LU=
Subject key identifier: 25:3F:32:CB:1B:AF:C5:92:B3:B9:3C:9F:44:D8:73:94:10:00:30:41
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 359F90AB
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/JT8yyxuvxZKzuTyfRNhzlBAAMEE.roa
Signing time: Sat 01 Jan 2022 08:54:53 +0000
ROA not before: Sat 01 Jan 2022 08:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33908
IP address blocks: 185.42.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 899649707 (0x359f90ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=253f32cb1bafc592b3b93c9f44d8739410003041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8f:a9:f5:bf:22:fc:49:58:a5:ad:87:60:5e:
90:ba:de:e7:56:d1:40:80:3a:53:ba:c5:c7:b6:c2:
3e:11:97:a0:1d:df:56:11:ac:2f:23:a5:c4:02:67:
81:6d:19:45:6f:14:8c:ca:16:32:13:89:3f:ab:14:
75:ac:92:da:04:9e:20:38:aa:de:7c:7f:01:a5:49:
5e:11:af:12:72:49:69:d4:97:67:f2:9f:99:69:ae:
33:47:f4:c4:3a:bf:ae:9f:02:34:3c:58:e2:dd:07:
0b:2e:58:e0:9c:cb:b1:65:8b:60:83:a6:cc:fa:97:
35:e5:7b:ad:75:87:be:fe:7b:c3:9e:a1:12:26:70:
61:31:04:7a:23:7b:f9:0c:12:be:dc:a3:ed:ce:a6:
90:ee:68:e1:3d:94:50:db:f0:96:af:e0:8b:34:5c:
5c:b8:db:fc:60:fd:39:0d:f9:a8:4f:9a:5a:86:81:
c7:b1:c0:33:fb:94:49:9c:ea:76:6e:7d:a3:67:7e:
f2:4c:52:77:82:6e:e5:e7:7a:a6:c6:66:b3:af:81:
d6:59:68:95:df:0e:b4:c5:9b:78:f3:a3:de:e9:f2:
03:ed:e0:12:02:d8:54:9c:31:cd:c7:54:05:05:5b:
93:9e:bc:82:f8:8b:d2:c6:0b:dc:1f:6c:b3:ea:83:
7e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:3F:32:CB:1B:AF:C5:92:B3:B9:3C:9F:44:D8:73:94:10:00:30:41
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/JT8yyxuvxZKzuTyfRNhzlBAAMEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.62.0/24
Signature Algorithm: sha256WithRSAEncryption
33:fc:c9:42:c8:c2:35:77:47:5c:45:f7:71:f0:5a:a3:19:27:
96:42:80:3c:ba:af:ac:5e:7f:93:bd:f9:d2:45:35:71:f9:a4:
c8:8b:c5:e8:ca:08:62:b2:20:c8:d3:56:f9:ef:53:e7:91:b6:
25:5f:f9:9e:13:23:66:78:40:1e:9c:d4:82:5c:fd:26:49:58:
90:81:e3:db:00:d2:b9:b4:4e:5f:a0:03:1b:99:09:a8:8f:a1:
34:57:57:c6:98:69:ba:84:83:58:a9:9a:41:68:af:80:a5:6d:
cb:92:cc:26:02:be:e7:e4:63:03:fa:21:75:55:b8:2e:7f:1e:
da:74:b5:7e:f2:cb:d0:13:5d:e2:c4:60:ab:0e:43:c9:61:c1:
a7:87:fa:2a:21:3b:9a:e3:24:38:b3:31:4f:0c:18:b7:bb:88:
cb:d8:15:ae:b9:0a:58:19:f2:de:0f:3f:1e:f1:25:52:25:8f:
d3:14:c7:4b:d9:5a:2e:c3:1b:84:48:6d:0a:ee:19:3b:6f:86:
52:7f:1d:b1:0c:ff:76:f2:b9:85:82:23:bb:17:1e:08:ed:95:
fe:cc:16:32:5b:75:b5:cd:95:80:65:5e:29:a7:97:09:64:55:
c9:71:5c:82:76:c2:dd:24:30:53:7c:de:c8:42:50:44:be:ec:
c7:12:73:a1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENZ+QqzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZWJhNDhjN2UyYzllMDVlZGE1NDZkODk5MTQ2Yjg5Zjc5OWRmODVkMB4XDTIyMDEw
MTA4NTQ1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjUzZjMyY2IxYmFm
YzU5MmIzYjkzYzlmNDRkODczOTQxMDAwMzA0MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKOPqfW/IvxJWKWth2BekLre51bRQIA6U7rFx7bCPhGXoB3f
VhGsLyOlxAJngW0ZRW8UjMoWMhOJP6sUdayS2gSeIDiq3nx/AaVJXhGvEnJJadSX
Z/KfmWmuM0f0xDq/rp8CNDxY4t0HCy5Y4JzLsWWLYIOmzPqXNeV7rXWHvv57w56h
EiZwYTEEeiN7+QwSvtyj7c6mkO5o4T2UUNvwlq/gizRcXLjb/GD9OQ35qE+aWoaB
x7HAM/uUSZzqdm59o2d+8kxSd4Ju5ed6psZms6+B1llold8OtMWbePOj3unyA+3g
EgLYVJwxzcdUBQVbk568gviL0sYL3B9ss+qDfoMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQlPzLLG6/FkrO5PJ9E2HOUEAAwQTAfBgNVHSMEGDAWgBS+ukjH4sngXtpU
bYmRRrifeZ34XTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZycEl4LUxKNEY3YVZHMkprVWE0bjNtZC1GMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvN2Y4ODIxLTE1NjYtNDNmNC1hYjI2LTNkNTIyMTgxYTJjNC8x
L0pUOHl5eHV2eFpLenVUeWZSTmh6bEJBQU1FRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
N2Y4ODIxLTE1NjYtNDNmNC1hYjI2LTNkNTIyMTgxYTJjNC8xL3ZycEl4LUxKNEY3
YVZHMkprVWE0bjNtZC1GMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkqPjANBgkqhkiG9w0BAQsFAAOC
AQEAM/zJQsjCNXdHXEX3cfBaoxknlkKAPLqvrF5/k7350kU1cfmkyIvF6MoIYrIg
yNNW+e9T55G2JV/5nhMjZnhAHpzUglz9JklYkIHj2wDSubROX6ADG5kJqI+hNFdX
xphpuoSDWKmaQWivgKVty5LMJgK+5+RjA/ohdVW4Ln8e2nS1fvLL0BNd4sRgqw5D
yWHBp4f6KiE7muMkOLMxTwwYt7uIy9gVrrkKWBny3g8/HvElUiWP0xTHS9laLsMb
hEhtCu4ZO2+GUn8dsQz/dvK5hYIjuxceCO2V/swWMlt1tc2VgGVeKaeXCWRVyXFc
gnbC3SQwU3zeyEJQRL7sxxJzoQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:47 2025 by rpki-client