Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/sjLEaqMnLQ22U2Z3n_WY21U2WSA.roa
File: sjLEaqMnLQ22U2Z3n_WY21U2WSA.roa (raw, json)
Hash identifier: UAE2wgAyhzFGKYkGF2/zBMfRO+SUP5W0V0JNJOI2nDw=
Subject key identifier: B2:32:C4:6A:A3:27:2D:0D:B6:53:66:77:9F:F5:98:DB:55:36:59:20
Certificate issuer: /CN=89e21a2b8a25b971bdb741a0aae325992304194e
Certificate serial: 07A3F661
Authority key identifier: 89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/sjLEaqMnLQ22U2Z3n_WY21U2WSA.roa
Signing time: Fri 18 Feb 2022 16:19:20 +0000
ROA not before: Fri 18 Feb 2022 16:19:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396998
IP address blocks: 193.25.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128185953 (0x7a3f661)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e21a2b8a25b971bdb741a0aae325992304194e
Validity
Not Before: Feb 18 16:19:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b232c46aa3272d0db65366779ff598db55365920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d7:46:b5:f0:a9:63:2f:8f:7d:6c:98:d9:36:
8b:42:78:30:b8:a5:bd:71:c3:98:87:a6:9e:75:a4:
25:41:12:1d:53:bc:c1:c7:7d:22:c7:97:17:9c:de:
1f:e7:ae:4d:38:d9:bb:71:5b:f0:51:48:40:c7:06:
30:a4:e9:fd:9d:6e:e1:4c:bb:6a:96:bb:8f:cd:55:
6e:34:e2:4e:01:31:cd:13:6d:a3:c2:f6:53:5f:f0:
4d:13:34:8e:82:31:51:22:69:a4:cc:45:c2:eb:93:
33:04:eb:d3:0a:09:f4:54:4f:9b:91:6b:bf:d9:c7:
90:94:f2:79:90:b3:c5:b2:08:52:27:3d:39:40:38:
97:4d:71:f7:31:f4:4b:89:f0:80:4a:51:30:dd:c4:
a0:e0:44:ea:b8:cf:a8:42:9c:fe:0a:ca:6f:2e:84:
58:61:2a:89:74:9e:02:93:5e:1c:1d:a3:4a:3c:c9:
f3:6b:eb:1a:58:87:dd:df:6c:c8:0d:e2:c5:cf:dd:
aa:ca:d3:fa:2a:85:94:b4:88:98:52:b4:44:77:e8:
00:76:ce:92:1f:91:90:ee:74:94:0b:b9:34:da:69:
6d:28:b7:36:43:0d:b5:47:11:1b:9a:54:4e:02:f7:
c9:be:65:56:5e:89:d4:56:4d:2b:49:74:47:21:b1:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:32:C4:6A:A3:27:2D:0D:B6:53:66:77:9F:F5:98:DB:55:36:59:20
X509v3 Authority Key Identifier:
keyid:89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/sjLEaqMnLQ22U2Z3n_WY21U2WSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/ieIaK4oluXG9t0GgquMlmSMEGU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.252.0/24
Signature Algorithm: sha256WithRSAEncryption
15:50:48:56:32:6d:9f:57:c9:5e:e0:b8:de:86:71:dd:c6:84:
c4:88:78:08:98:fa:f2:58:9f:0c:73:81:9a:a0:11:67:f2:bc:
e1:65:1e:54:83:f9:6d:99:7b:c0:17:7e:c5:c8:3b:46:dc:86:
ba:4d:b8:51:ca:3e:06:5d:9f:dc:e9:2e:f7:8a:01:2f:65:1a:
ce:b6:ee:02:04:58:16:49:ac:3d:fc:e8:2e:1a:08:d6:4e:fe:
50:10:95:6e:13:9d:3b:0b:e0:5b:26:b9:fa:63:05:1e:32:4a:
44:84:18:41:16:91:5e:76:84:a7:10:60:30:13:87:fc:00:41:
da:78:5a:a7:07:10:f4:4e:a5:14:2b:a9:b5:0b:41:e5:f8:75:
f8:ba:84:7c:68:89:6c:db:fa:e5:0f:96:f9:ae:1e:4b:c3:ce:
b2:7a:27:83:c8:07:8d:39:9d:7b:6f:57:e5:7a:1c:5a:6a:44:
9d:37:30:3e:d7:a2:e4:a6:a9:4e:77:03:1c:a4:f4:6a:71:4f:
72:55:3f:83:88:09:64:c3:e3:8b:e5:6c:7b:40:fa:11:b9:ac:
4a:f4:e8:55:f6:1f:b8:53:b3:d8:fe:c8:64:fc:84:05:a5:31:
f4:9f:0a:cf:a7:60:1b:dd:e9:07:b9:f6:99:c9:77:72:59:d3:
f9:6a:a7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:37:29 2025 by rpki-client