Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/795baf-508b-477d-8926-2d953600ff37/1/J1HopD9i-W8xhmNFL-InLg_DUXw.roa
File: J1HopD9i-W8xhmNFL-InLg_DUXw.roa (raw, json)
Hash identifier: auDU61WE1S4EqZgR+Ht1SJhKclO6nGYhSkOv77FTtZM=
Subject key identifier: 27:51:E8:A4:3F:62:F9:6F:31:86:63:45:2F:E2:27:2E:0F:C3:51:7C
Certificate issuer: /CN=99a62d3073a82da86542acfc36f6fcb9e66a05bb
Certificate serial: 0164F3
Authority key identifier: 99:A6:2D:30:73:A8:2D:A8:65:42:AC:FC:36:F6:FC:B9:E6:6A:05:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maYtMHOoLahlQqz8Nvb8ueZqBbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/795baf-508b-477d-8926-2d953600ff37/1/J1HopD9i-W8xhmNFL-InLg_DUXw.roa
Signing time: Mon 11 Apr 2022 11:10:21 +0000
ROA not before: Mon 11 Apr 2022 11:10:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212097
IP address blocks: 45.81.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91379 (0x164f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99a62d3073a82da86542acfc36f6fcb9e66a05bb
Validity
Not Before: Apr 11 11:10:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2751e8a43f62f96f318663452fe2272e0fc3517c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4c:2c:1a:fb:e3:1e:f6:f4:ce:e4:f2:9b:b7:
ae:1e:41:8a:47:c2:c3:af:0b:cf:37:1c:0a:b1:57:
ce:ae:80:67:57:dd:f1:fb:bb:31:97:30:e1:fa:de:
b6:a1:81:6a:cb:b0:d1:72:d4:28:d7:34:ec:c6:de:
41:79:75:96:71:f9:1e:ff:a5:f9:b5:4c:83:d8:ef:
41:2d:78:80:08:e2:ea:1c:a6:a0:84:35:eb:2d:90:
63:de:24:04:5f:ad:f4:b8:69:43:91:52:1b:d0:a2:
25:5d:5e:85:3a:06:48:25:d7:c8:f2:48:f7:f0:68:
13:6a:ab:53:4a:ce:c9:c9:b2:bc:74:77:6f:e0:b0:
cf:36:d9:3c:a9:80:95:87:bb:c7:4a:c5:27:a7:98:
25:18:c7:44:82:a1:d0:a9:68:c2:23:3b:fb:f7:d4:
da:ce:d5:9a:7a:c3:e5:ce:39:93:1a:db:64:3e:5a:
ee:b8:46:b6:98:21:cb:50:d0:42:ac:f5:74:f2:1b:
b8:3f:69:7d:18:78:e4:04:1d:f0:d5:65:84:40:a5:
3f:f0:35:99:a7:99:65:16:d5:da:c0:ab:75:37:e1:
8c:0b:0b:01:a3:14:12:7f:a2:c7:40:a2:9d:83:1f:
af:97:5d:c7:95:94:62:54:e5:d3:40:bb:0c:df:d3:
24:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:51:E8:A4:3F:62:F9:6F:31:86:63:45:2F:E2:27:2E:0F:C3:51:7C
X509v3 Authority Key Identifier:
keyid:99:A6:2D:30:73:A8:2D:A8:65:42:AC:FC:36:F6:FC:B9:E6:6A:05:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maYtMHOoLahlQqz8Nvb8ueZqBbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/795baf-508b-477d-8926-2d953600ff37/1/J1HopD9i-W8xhmNFL-InLg_DUXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/795baf-508b-477d-8926-2d953600ff37/1/maYtMHOoLahlQqz8Nvb8ueZqBbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.88.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:4a:55:0b:cd:18:78:71:72:dd:97:f0:01:25:7c:e3:03:18:
0d:94:b3:36:9d:61:f2:fa:df:a2:68:b5:a9:ce:68:0d:65:30:
75:05:41:3a:37:0e:bb:c3:3e:93:78:c1:72:d3:4e:85:36:49:
e6:ab:18:d2:1c:ea:9e:21:e1:28:bd:f1:82:97:40:17:92:25:
33:45:26:9a:19:e4:1c:73:47:6a:c6:d6:89:d0:8d:50:f4:61:
59:ad:9d:46:dd:a2:ad:e1:44:bf:e9:f8:62:3d:f5:fb:77:33:
5f:9b:50:75:31:7c:bd:93:7a:f2:50:1f:28:31:ac:72:1a:7c:
99:48:50:6f:ff:50:cb:70:a0:29:9f:2b:da:30:a7:ca:3e:3c:
c1:aa:80:a1:98:5c:fe:12:2d:fe:ad:49:17:0d:cb:61:a0:92:
af:19:33:c3:69:d9:69:0b:35:ff:ff:31:67:56:de:ea:e9:4e:
3d:b2:87:2c:bd:6e:b8:5a:f4:b1:bc:18:17:5b:f5:d4:8f:f0:
db:bc:c7:02:8a:ee:b0:a9:6f:68:b4:91:6d:f9:34:08:77:c1:
ec:61:29:a9:9a:7a:24:fc:7d:48:27:3f:db:ff:bd:11:b5:0e:
b9:73:53:17:38:5f:45:76:00:37:a8:de:e8:d9:bd:35:df:c2:
43:58:02:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:14 2025 by rpki-client