Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/ju3SOAZ-zzlMrhC2dfUfbOsWeXI.roa
File: ju3SOAZ-zzlMrhC2dfUfbOsWeXI.roa (raw, json)
Hash identifier: 8ov7y4JCgUV72CxYViXpa6xJ3s5mUYCB33+EgWx4Y1Q=
Subject key identifier: 8E:ED:D2:38:06:7E:CF:39:4C:AE:10:B6:75:F5:1F:6C:EB:16:79:72
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 087F7B7E
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/ju3SOAZ-zzlMrhC2dfUfbOsWeXI.roa
Signing time: Sat 28 May 2022 04:07:14 +0000
ROA not before: Sat 28 May 2022 04:07:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34427
IP address blocks: 45.157.132.0/22 maxlen: 24
2a0f:4280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142572414 (0x87f7b7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: May 28 04:07:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eedd238067ecf394cae10b675f51f6ceb167972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:84:2e:e0:cc:8a:5b:5f:54:1f:9b:d4:7e:
a6:18:83:ef:fe:05:41:6e:11:fd:65:df:e5:37:3d:
cf:c1:6e:56:cc:b5:aa:07:f0:3c:cf:85:f6:b2:d1:
5e:b5:c9:2e:34:1e:cf:6e:5b:e4:5d:81:c4:e6:30:
ec:8c:61:ec:e7:7e:e2:8f:db:01:c1:33:d7:30:c9:
dc:1d:5c:1a:ca:81:4c:e9:60:8e:1f:7c:b9:4b:15:
31:22:ae:78:8b:51:bb:ce:ae:a9:44:62:63:b7:71:
1f:3d:9e:c0:39:df:44:6c:ef:8b:cf:39:22:c6:b4:
22:7b:ca:11:87:22:9e:7d:ab:88:35:e7:8a:c5:8e:
16:76:5a:a5:20:69:88:24:f5:01:c3:67:12:91:91:
3d:9d:90:b8:f5:ab:08:d7:c6:5e:5c:bd:e0:f1:f7:
df:78:02:68:32:68:79:6e:a5:b9:16:d5:ea:39:a2:
3e:d7:1a:77:85:2d:dc:62:7b:21:4a:16:65:cd:77:
bb:05:d2:a8:6f:74:90:99:6a:7f:31:06:45:d6:d0:
5d:0e:20:59:af:0c:8c:be:9a:17:eb:62:4e:9a:a7:
80:f8:c4:56:09:32:7f:1e:80:9c:c1:01:6a:74:54:
43:f6:09:7b:03:61:25:df:80:6b:6f:2d:4b:89:5a:
61:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:ED:D2:38:06:7E:CF:39:4C:AE:10:B6:75:F5:1F:6C:EB:16:79:72
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/ju3SOAZ-zzlMrhC2dfUfbOsWeXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
IPv6:
2a0f:4280::/29
Signature Algorithm: sha256WithRSAEncryption
5f:0a:6f:d2:80:3f:39:61:17:c7:d3:49:67:be:f0:9c:06:11:
cc:75:c6:1f:19:3e:e9:17:0e:6b:ff:32:45:75:94:81:d9:48:
e3:4b:9b:f8:5d:5d:92:ea:9b:81:1c:9d:9a:98:df:50:18:47:
3b:a0:b4:55:ae:76:3b:65:50:ef:e0:5f:f2:ac:28:97:72:7a:
73:a4:1d:ac:c9:43:06:7f:56:61:ff:ad:72:d3:7c:d8:d4:f2:
d0:81:dd:69:97:fe:72:4a:97:95:f6:38:73:c5:da:68:6f:c1:
71:91:b0:1e:00:4d:fe:d4:ee:d2:18:76:46:e3:fd:c3:0f:b4:
85:49:05:80:a3:cf:65:b3:99:96:08:01:fb:df:35:ab:6b:9e:
a9:42:31:e0:a6:92:fa:19:a8:4f:5d:86:ac:7f:79:f2:a3:fa:
6b:ce:21:7f:e4:13:4e:84:d7:61:33:51:a9:75:74:a7:39:d4:
f8:07:2b:eb:d7:1e:4d:cc:77:2f:3a:59:d3:ed:fb:cc:88:1d:
14:45:75:38:8d:0f:81:28:43:1a:c7:b7:00:79:fd:a8:32:4c:
1d:3d:6f:b8:ad:29:6c:9c:b2:aa:5a:cd:56:bb:e7:08:2b:8e:
73:e1:a5:aa:25:e9:0a:30:83:39:0f:0d:04:0b:ad:78:0b:2f:
05:35:e7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:12 2025 by rpki-client