Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/H2xnSTKMgh5Phsc1C5nx5Mt2Uco.roa
File: H2xnSTKMgh5Phsc1C5nx5Mt2Uco.roa (raw, json)
Hash identifier: fYAbM6vMEE6BR8K1kgSbhZWifd2v7xyNwwwqEAaIggY=
Subject key identifier: 1F:6C:67:49:32:8C:82:1E:4F:86:C7:35:0B:99:F1:E4:CB:76:51:CA
Certificate issuer: /CN=8e95484fff3a9f618c03a79621d0798d24865071
Certificate serial: 01857B08F1044DCDF7A3CFEB164F1AA8E08D
Authority key identifier: 8E:95:48:4F:FF:3A:9F:61:8C:03:A7:96:21:D0:79:8D:24:86:50:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jpVIT_86n2GMA6eWIdB5jSSGUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/H2xnSTKMgh5Phsc1C5nx5Mt2Uco.roa
Signing time: Wed 04 Jan 2023 04:27:41 +0000
ROA not before: Wed 04 Jan 2023 04:27:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212086
IP address blocks: 79.140.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7b:08:f1:04:4d:cd:f7:a3:cf:eb:16:4f:1a:a8:e0:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e95484fff3a9f618c03a79621d0798d24865071
Validity
Not Before: Jan 4 04:27:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f6c6749328c821e4f86c7350b99f1e4cb7651ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7b:a8:f3:7e:12:ce:37:d0:d9:7c:5b:b0:52:
84:72:6d:ea:c3:6a:99:10:5c:65:57:12:f4:f1:17:
e9:6b:34:0f:85:2a:56:21:1d:7b:80:32:2b:eb:4b:
c7:66:66:bc:7f:74:48:7d:45:6d:89:0e:ed:e8:da:
82:f8:14:e1:ba:89:3c:5b:fd:7a:3b:d8:49:75:d6:
57:b8:dd:e7:7b:74:6c:fe:42:a7:d7:4d:3b:4e:ee:
ff:f8:4b:b6:e2:04:5c:ee:9d:ae:4c:87:a2:3b:c3:
8c:c2:d4:dd:13:73:09:09:c5:2f:57:35:af:4e:a4:
3d:03:79:89:2a:c7:ff:20:21:96:eb:8c:55:37:a1:
cc:bb:9e:7a:e0:01:1e:80:01:4b:99:a5:3b:c4:05:
97:d1:79:a2:da:ae:46:ec:cd:93:94:f6:dc:3e:60:
4d:cc:00:90:d2:99:9f:f6:b9:e0:fd:fb:2b:1d:08:
cb:e5:0f:0c:76:37:16:56:b2:31:3e:5d:66:55:03:
a6:6f:55:e2:8f:23:5e:bc:0f:f2:88:cd:82:21:8d:
d2:ea:69:c4:b2:e8:99:ae:ca:15:4a:c9:76:14:78:
b3:e2:38:77:88:03:7e:2c:0f:5c:f7:7c:87:f9:e5:
79:0b:75:89:c9:0c:fd:e4:7b:68:cf:21:cd:17:4e:
ff:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6C:67:49:32:8C:82:1E:4F:86:C7:35:0B:99:F1:E4:CB:76:51:CA
X509v3 Authority Key Identifier:
keyid:8E:95:48:4F:FF:3A:9F:61:8C:03:A7:96:21:D0:79:8D:24:86:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jpVIT_86n2GMA6eWIdB5jSSGUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/H2xnSTKMgh5Phsc1C5nx5Mt2Uco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/65a2e2-74cf-4d8b-aad6-b2a13440f1a5/1/jpVIT_86n2GMA6eWIdB5jSSGUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.140.238.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:b3:34:d5:48:b4:ae:02:a6:13:cf:05:09:30:f9:35:2c:96:
09:2f:fa:55:93:13:c4:b3:17:17:e8:82:b0:91:62:1e:07:6b:
be:ff:b7:07:ad:8b:59:4d:35:ec:5a:15:ca:25:c1:2c:97:f4:
a2:0e:e5:5d:16:89:15:57:33:35:32:21:1a:78:26:c9:0a:95:
5b:7a:26:6a:66:ed:06:15:30:8f:6c:dd:7c:46:03:2a:f3:8a:
a6:39:b5:ec:f1:33:05:6f:6e:60:99:5f:45:75:bb:fd:47:d8:
df:d4:31:84:c9:d2:5a:56:0c:43:52:61:31:11:79:3f:8b:54:
45:12:de:91:87:36:b2:8d:a6:e7:1c:ca:61:26:72:b2:3c:fc:
61:78:fd:c5:c3:36:9e:5d:69:c4:ce:f4:3c:3c:96:2c:0f:a3:
3d:47:22:1e:99:d2:26:8b:e6:51:cc:db:42:10:18:2e:2e:2a:
3d:dc:e9:0f:55:9d:c0:80:05:1f:71:5f:50:d1:22:4f:56:78:
2d:2f:3f:27:5e:59:01:12:5f:68:48:33:a9:00:85:13:8a:a8:
cb:d3:2a:89:6f:5f:dd:35:68:b5:6e:bb:ff:35:ec:5a:a9:83:
37:44:17:b8:f0:65:b6:d1:14:98:45:c8:02:a2:1e:98:b7:78:
52:de:e0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:18:44 2025 by rpki-client