Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3632f5-89e7-4d22-8bc1-33399080270f/1/jn_vCcbY8hxjqnQCOMGCGwyI39I.roa
File: jn_vCcbY8hxjqnQCOMGCGwyI39I.roa (raw, json)
Hash identifier: 7fh1Q6IJcju6898Th5V5sefN11OvxSSe5CQT0EStvmU=
Subject key identifier: 8E:7F:EF:09:C6:D8:F2:1C:63:AA:74:02:38:C1:82:1B:0C:88:DF:D2
Certificate issuer: /CN=a2d37fc31efd3703bf2c4c3e88bc3c1cfb479919
Certificate serial: 1228DB3B
Authority key identifier: A2:D3:7F:C3:1E:FD:37:03:BF:2C:4C:3E:88:BC:3C:1C:FB:47:99:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otN_wx79NwO_LEw-iLw8HPtHmRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3632f5-89e7-4d22-8bc1-33399080270f/1/jn_vCcbY8hxjqnQCOMGCGwyI39I.roa
Signing time: Sat 01 Jan 2022 00:51:36 +0000
ROA not before: Sat 01 Jan 2022 00:51:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57317
IP address blocks: 185.105.112.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304667451 (0x1228db3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d37fc31efd3703bf2c4c3e88bc3c1cfb479919
Validity
Not Before: Jan 1 00:51:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e7fef09c6d8f21c63aa740238c1821b0c88dfd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:37:a3:9a:23:2e:42:1f:75:ab:50:c1:1f:2b:
be:0e:1e:08:a0:8c:08:6a:5b:51:a5:bd:ae:51:f9:
19:9f:34:a4:de:8a:ce:e3:1d:4a:45:ec:ad:2d:24:
89:92:5b:45:c3:e9:38:41:b3:51:88:71:05:7a:ac:
fc:cd:40:3d:fc:2d:ae:0c:12:a7:7c:b5:3d:56:5e:
79:a1:28:b1:e4:c5:dc:8f:bd:ef:ba:d8:dd:3d:c6:
da:e8:be:51:98:79:84:6b:be:57:1b:f0:03:73:cd:
18:b2:0e:b3:06:90:8a:f3:3d:5f:52:45:f2:b7:73:
ef:ca:3f:49:7c:dc:1b:d6:ea:59:05:aa:24:93:ab:
78:a9:c9:4e:89:47:20:25:23:57:bc:95:b4:d6:af:
bb:06:5d:f5:b6:9a:3e:e2:f7:33:00:5a:71:91:9a:
ed:35:00:99:8a:33:29:f7:a2:8b:e5:46:8e:85:d2:
03:54:ed:4d:05:d4:09:e1:c2:4e:31:c4:09:f8:b6:
b1:f8:42:cb:bd:22:3c:37:3e:75:ac:65:e5:1e:f7:
b7:ff:ba:68:0a:be:bd:7a:74:54:88:4c:5f:75:cc:
e1:7a:12:d4:cd:78:08:95:ed:5f:fc:b7:68:eb:f2:
23:85:2d:c4:de:38:40:21:d3:7a:28:c9:9c:e8:8a:
da:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7F:EF:09:C6:D8:F2:1C:63:AA:74:02:38:C1:82:1B:0C:88:DF:D2
X509v3 Authority Key Identifier:
keyid:A2:D3:7F:C3:1E:FD:37:03:BF:2C:4C:3E:88:BC:3C:1C:FB:47:99:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otN_wx79NwO_LEw-iLw8HPtHmRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3632f5-89e7-4d22-8bc1-33399080270f/1/jn_vCcbY8hxjqnQCOMGCGwyI39I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3632f5-89e7-4d22-8bc1-33399080270f/1/otN_wx79NwO_LEw-iLw8HPtHmRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.112.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:19:27:77:cd:2a:bd:27:0f:65:39:41:cf:65:59:19:8f:02:
e4:3f:cb:5a:7c:7b:18:1d:b6:93:b5:86:d6:e4:38:7b:d4:3c:
5f:02:72:95:37:d8:43:5e:04:54:81:4c:ac:bd:4e:0f:85:57:
00:bf:e8:04:35:2d:40:bf:9c:f3:57:f6:e7:bd:00:27:05:53:
39:9c:da:e0:6f:02:87:d5:6c:86:76:f3:80:b8:05:f3:99:eb:
e3:88:fc:50:0d:25:76:00:e2:78:43:d9:ed:e7:52:59:d9:80:
3f:f9:5d:b3:77:43:e3:4d:da:67:a8:e1:23:05:f3:1c:07:b6:
da:46:26:10:d2:93:91:07:a1:fc:d7:ab:da:67:a9:70:8e:31:
b6:98:eb:98:e5:f6:ba:8c:a7:be:e1:7e:d7:0f:2e:84:07:1d:
7c:78:12:f9:56:79:ba:8a:b2:e5:01:ca:b2:b3:a0:35:17:7c:
6f:8b:60:7e:18:75:6c:a1:12:78:77:90:01:24:ba:df:bb:41:
91:e2:2f:e8:5b:ca:2b:0f:81:05:62:17:80:c1:60:bb:be:46:
56:e4:03:f1:15:f3:5a:0a:a9:09:bf:1e:a8:32:89:2d:50:cd:
ce:88:9e:f0:57:bd:3d:af:25:1c:49:1e:b0:ae:61:c8:33:e4:
01:7d:e3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 03:08:44 2025 by rpki-client