Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/jZEia6RUcd3RMRk25az4GuFG9kM.roa
File: jZEia6RUcd3RMRk25az4GuFG9kM.roa (raw, json)
Hash identifier: 1WgYVOvICQS1gzEPGVI4uNQYOoXT4BpSBiUEkGOQhAE=
Subject key identifier: 8D:91:22:6B:A4:54:71:DD:D1:31:19:36:E5:AC:F8:1A:E1:46:F6:43
Certificate issuer: /CN=527ad19786dd54b35a4b96ad3fbc5793278e4474
Certificate serial: 0188FCACB3422FC54A2EEA3F2E7BB5789E2F
Authority key identifier: 52:7A:D1:97:86:DD:54:B3:5A:4B:96:AD:3F:BC:57:93:27:8E:44:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnrRl4bdVLNaS5atP7xXkyeORHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/jZEia6RUcd3RMRk25az4GuFG9kM.roa
Signing time: Tue 27 Jun 2023 11:45:56 +0000
ROA not before: Tue 27 Jun 2023 11:45:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9002
IP address blocks: 185.241.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:ac:b3:42:2f:c5:4a:2e:ea:3f:2e:7b:b5:78:9e:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=527ad19786dd54b35a4b96ad3fbc5793278e4474
Validity
Not Before: Jun 27 11:45:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d91226ba45471ddd1311936e5acf81ae146f643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7f:6a:b0:3e:70:5f:3c:e2:6c:3f:29:50:7e:
d0:53:bf:b4:6c:f7:19:64:8a:74:25:66:6f:2d:5d:
9a:13:83:d8:e5:b9:90:83:41:2e:f6:89:aa:15:4f:
6c:07:5d:97:b6:32:1f:71:a4:4f:03:b7:25:ba:60:
c7:21:b0:4e:e9:a5:cd:a3:b6:38:f6:fd:7c:c9:3b:
12:47:48:43:d0:3f:15:32:99:d5:72:47:e4:8d:8a:
3d:21:16:7e:1a:37:5e:4c:60:03:c1:41:db:5b:13:
0e:75:40:ac:87:3e:57:6a:33:ed:8c:20:60:49:98:
f7:de:99:b9:2f:f8:53:d7:6b:97:b7:c9:01:68:bf:
bf:ca:8f:50:d6:85:21:f6:16:21:6a:75:ec:06:45:
2f:73:88:8b:90:71:90:08:50:53:c8:42:9e:45:bb:
dd:96:8b:ef:21:2f:5f:12:0d:ad:aa:6c:56:20:32:
f9:6d:2a:05:07:bc:73:99:b0:65:42:ac:04:49:d3:
6b:c5:f0:e6:68:9a:89:07:a4:69:40:b4:c0:da:f6:
52:e9:43:13:66:7f:e7:32:3e:5a:4c:d5:97:b1:fa:
78:f3:8a:97:d1:4b:65:a5:a3:ea:ee:9e:88:51:63:
c9:23:c3:f9:d5:32:80:6b:d9:bb:b5:db:27:e3:10:
12:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:91:22:6B:A4:54:71:DD:D1:31:19:36:E5:AC:F8:1A:E1:46:F6:43
X509v3 Authority Key Identifier:
keyid:52:7A:D1:97:86:DD:54:B3:5A:4B:96:AD:3F:BC:57:93:27:8E:44:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnrRl4bdVLNaS5atP7xXkyeORHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/jZEia6RUcd3RMRk25az4GuFG9kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/UnrRl4bdVLNaS5atP7xXkyeORHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.39.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:cc:47:8e:5d:f1:4c:c7:f6:02:ac:a4:ac:ee:06:48:82:8f:
7c:7e:9c:82:6f:51:49:f5:24:32:d6:63:60:a5:2e:6e:c4:58:
b2:40:7d:50:14:7d:64:96:07:e3:39:9e:81:c8:bc:a0:cd:1e:
66:fe:0e:75:f8:dc:2a:cf:de:b0:86:57:c2:bf:8b:5a:28:8c:
c4:de:73:39:fd:d9:bd:22:80:fe:b7:ee:fa:10:97:97:4e:24:
92:2f:29:e0:32:80:73:4a:5a:ec:94:97:b3:4b:7b:b1:63:61:
a5:db:2f:0a:87:ec:09:1f:c3:7c:4f:03:cd:2a:65:78:76:5a:
c2:89:ab:b6:c1:bd:f5:bb:26:54:d1:bb:3b:e2:bb:5e:f2:e4:
a6:ac:37:5a:b2:cf:fc:32:ec:ff:99:b1:2b:94:b4:5a:63:81:
ae:ad:b0:29:11:5c:5c:40:72:92:4e:47:c9:a9:bc:51:09:0a:
08:c7:83:02:19:e1:99:b5:ce:e3:01:08:a3:78:97:02:75:d4:
bd:db:c0:64:87:0e:1c:16:0a:91:2e:5d:56:9f:3e:36:10:8e:
45:58:33:2b:d9:21:d1:49:07:10:77:6e:15:df:09:6b:27:60:
77:7e:85:26:7d:ce:1b:64:f2:af:08:ad:70:b2:d5:3b:28:25:
ea:23:bb:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:32 2025 by rpki-client