Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/JIyvpY3NY4Xcs84D_XNMecAITQQ.roa
File: JIyvpY3NY4Xcs84D_XNMecAITQQ.roa (raw, json)
Hash identifier: 4Ysju7ePlDohi2/o8O8oeMneQMdUyEsYyIwIBBziN0Y=
Subject key identifier: 24:8C:AF:A5:8D:CD:63:85:DC:B3:CE:03:FD:73:4C:79:C0:08:4D:04
Certificate issuer: /CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Certificate serial: 07461D74
Authority key identifier: 4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/JIyvpY3NY4Xcs84D_XNMecAITQQ.roa
Signing time: Sat 01 Jan 2022 04:52:56 +0000
ROA not before: Sat 01 Jan 2022 04:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203736
IP address blocks: 185.102.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122035572 (0x7461d74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Validity
Not Before: Jan 1 04:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=248cafa58dcd6385dcb3ce03fd734c79c0084d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:59:c2:88:65:a1:e2:f3:65:e1:a9:79:db:88:
d1:67:b1:af:a5:68:4a:69:dc:7c:d8:91:72:a8:06:
2e:6c:41:0f:65:cd:2b:ef:74:6b:db:06:2c:e8:e0:
e4:c7:9b:96:24:99:55:a8:1a:5c:62:d4:f9:33:a5:
97:f4:10:77:e5:4e:e4:ec:52:0d:cf:1b:6c:a5:21:
2e:a8:cc:68:21:b1:36:a9:e7:51:88:15:98:47:a2:
b4:69:3e:9b:72:02:82:7d:5f:be:a7:80:af:38:f0:
0f:50:0f:61:76:98:6a:c4:84:a7:b2:e7:99:e5:e7:
30:97:d1:3e:11:77:2b:29:3a:38:bd:11:8d:23:42:
05:1f:c6:4b:70:06:12:76:c5:7c:7f:ff:1f:7b:ff:
e6:23:2e:da:4b:4c:a7:96:75:34:d5:b1:c9:e4:11:
5f:05:48:7c:be:d9:a8:c3:69:cf:94:83:ff:7f:92:
9d:33:48:db:ab:80:f4:c3:b8:10:fe:54:e1:a9:31:
ba:3e:d0:81:e9:81:31:55:52:d2:36:36:3d:93:ce:
05:03:71:ee:08:5c:f9:35:44:8c:a9:b9:02:41:51:
68:7e:13:5b:82:85:88:15:e2:31:70:62:a9:6b:10:
5c:15:d0:74:87:13:65:ff:d3:ef:09:1f:f0:c5:58:
bb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:8C:AF:A5:8D:CD:63:85:DC:B3:CE:03:FD:73:4C:79:C0:08:4D:04
X509v3 Authority Key Identifier:
keyid:4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/JIyvpY3NY4Xcs84D_XNMecAITQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/TxUpALDTI9NtlFEKsLAck_RRfIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.32.0/22
Signature Algorithm: sha256WithRSAEncryption
44:f5:54:68:49:5a:b5:19:c7:90:66:23:f9:7b:d1:89:78:bc:
f7:59:17:b6:a8:a5:2b:99:3c:e1:c1:d4:0b:1c:38:1f:3d:de:
e2:43:55:71:76:af:23:fd:25:a6:e1:62:85:36:df:69:55:f5:
9e:f7:bd:2d:55:bd:02:7d:6d:61:52:58:c8:86:50:dd:59:4a:
34:32:81:fe:ce:1f:08:43:41:ca:0f:d1:15:dc:e1:f8:14:26:
e5:63:d5:8a:57:f7:24:8f:02:e1:9e:d0:51:b7:ac:13:11:19:
35:06:3d:cf:17:7d:50:7f:5e:a1:15:53:c8:db:0b:4f:ce:73:
b5:73:20:d8:fd:ff:1e:da:b1:30:f1:20:fc:ae:f2:d7:db:d9:
cc:d1:3a:45:18:81:f0:ec:a1:bc:b4:24:91:ec:67:3c:21:dc:
c9:e6:ca:e2:bf:37:c0:48:32:96:f1:f2:a4:74:3d:e4:aa:9e:
95:ca:6a:18:24:a1:50:d1:9f:a8:6f:08:b5:aa:b0:5a:79:f8:
f8:42:dd:8e:35:27:94:9c:a3:24:fb:fc:5c:2c:41:b8:4a:f8:
19:67:02:4c:84:c8:71:5e:1f:79:4a:0c:39:6f:e3:a9:4c:e5:
15:60:c1:0d:3f:b9:cb:bf:45:da:19:36:11:81:03:11:3b:31:
4b:f7:61:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:39 2025 by rpki-client