Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/JuH4JUN_FOrxNAS8Zw1yipmH64s.roa
File: JuH4JUN_FOrxNAS8Zw1yipmH64s.roa (raw, json)
Hash identifier: m6T7NVCwb88288hqRmuB5tlblaev3nVthu0gc8hiMGY=
Subject key identifier: 26:E1:F8:25:43:7F:14:EA:F1:34:04:BC:67:0D:72:8A:99:87:EB:8B
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 018C4B6B1F12DEFB96FDAB69E82D25E9602B
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/JuH4JUN_FOrxNAS8Zw1yipmH64s.roa
Signing time: Fri 08 Dec 2023 21:52:40 +0000
ROA not before: Fri 08 Dec 2023 21:52:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216435
IP address blocks: 2a10:500:fe01::/48 maxlen: 48
2a10:500:2400::/40 maxlen: 40
2a10:500:2500::/40 maxlen: 40
2a10:500:200::/40 maxlen: 40
2a10:500:9400::/40 maxlen: 40
2a10:500:ce00::/40 maxlen: 40
2a10:500:9800::/40 maxlen: 40
2a10:500:1800::/40 maxlen: 40
2a10:500:9500::/40 maxlen: 40
2a10:500:1500::/40 maxlen: 40
2a10:500:f000::/40 maxlen: 40
2a10:500:2600::/40 maxlen: 40
2a10:500:1200::/40 maxlen: 40
2a10:500:4800::/40 maxlen: 40
2a10:500:2300::/40 maxlen: 40
2a10:500:100::/40 maxlen: 40
2a10:500:5c00::/40 maxlen: 40
2a10:500:fe00::/40 maxlen: 40
2a10:500:7e00::/40 maxlen: 40
2a10:500:2000::/40 maxlen: 40
2a10:500:1a00::/40 maxlen: 40
2a10:500:1300::/40 maxlen: 40
2a10:500:4900::/40 maxlen: 40
2a10:500:c300::/40 maxlen: 40
2a10:500:8d00::/40 maxlen: 40
2a10:500:9e00::/40 maxlen: 40
2a10:500:1e00::/40 maxlen: 40
2a10:500:7c00::/40 maxlen: 40
2a10:500:1000::/40 maxlen: 40
2a10:500:2100::/40 maxlen: 40
2a10:500:5600::/40 maxlen: 40
2a10:500:b100::/40 maxlen: 40
2a10:500:1d00::/40 maxlen: 40
2a10:500:6700::/40 maxlen: 40
2a10:500:1b00::/40 maxlen: 40
2a10:500:6000::/40 maxlen: 40
2a10:500:1900::/40 maxlen: 40
2a10:500::/32 maxlen: 48
2a10:500:1600::/40 maxlen: 40
2a10:500:9600::/40 maxlen: 40
2a10:500:4d00::/40 maxlen: 40
2a10:500:de00::/40 maxlen: 40
2a10:500:1700::/40 maxlen: 40
2a10:500:1400::/40 maxlen: 40
2a10:500:1c00::/40 maxlen: 40
2a10:500:1100::/40 maxlen: 40
2a10:500:2200::/40 maxlen: 40
2a10:500:8e00::/40 maxlen: 40
2a10:500:3600::/40 maxlen: 40
2a10:500::/40 maxlen: 48
2a10:500:8b00::/40 maxlen: 40
2a10:500:7a00::/40 maxlen: 40
2a10:500:1f00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:6b:1f:12:de:fb:96:fd:ab:69:e8:2d:25:e9:60:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Dec 8 21:52:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26e1f825437f14eaf13404bc670d728a9987eb8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fa:65:f7:78:82:c6:3d:d4:db:c4:45:09:8d:
86:77:96:d0:a7:49:f4:59:98:d4:05:f8:ab:20:e7:
4a:66:69:3e:1f:ec:f4:22:09:bc:f6:b2:f9:a6:44:
6e:3a:6f:6f:1e:df:b9:7b:9c:66:ab:cc:ea:60:ed:
ef:59:24:80:d3:77:d8:7b:e6:1b:bc:81:cd:a1:4c:
99:80:34:bb:ac:fe:c6:1c:17:d5:66:e1:bb:b7:fd:
52:2e:11:3d:91:51:a8:46:ec:2b:7e:54:24:6e:ad:
0c:70:40:c2:0a:5c:73:00:16:ed:64:89:ae:04:66:
21:9a:2e:bc:4a:b9:1e:99:8b:bd:57:5a:4b:65:11:
6a:09:c3:cb:4e:d6:b4:46:9c:ed:e4:66:c7:75:3a:
ff:0e:fe:3f:ec:4b:a5:56:0d:64:0c:03:7a:93:0c:
65:24:0c:8b:65:91:c7:ce:b8:0b:b0:14:61:85:8b:
85:6a:44:9c:cc:64:c8:fe:09:72:5a:96:f0:9d:86:
01:09:58:a8:6a:d0:84:77:40:ce:72:cd:d5:1e:73:
8c:72:25:00:70:87:6d:2c:06:87:2c:c4:58:05:a1:
93:42:96:17:51:23:1e:e2:5b:46:72:bb:05:63:1c:
cd:9d:ae:e6:3a:4e:62:32:73:8f:e5:ac:62:e2:90:
4e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E1:F8:25:43:7F:14:EA:F1:34:04:BC:67:0D:72:8A:99:87:EB:8B
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/JuH4JUN_FOrxNAS8Zw1yipmH64s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500::/32
Signature Algorithm: sha256WithRSAEncryption
61:39:5c:eb:a0:13:55:d4:e8:fa:6d:10:91:2e:71:78:60:2e:
3b:de:c3:05:05:4c:03:17:5d:13:71:6b:3f:31:24:16:3f:45:
c7:f1:98:e2:ed:79:83:8a:fb:3d:e5:97:36:9e:e9:a5:a1:4e:
a6:28:12:e9:9b:99:18:0c:e2:8e:61:38:2f:23:52:b6:1f:75:
61:1b:7a:64:ef:2d:e7:03:06:06:f2:e1:25:89:da:d1:fb:0b:
b1:a7:10:4f:3e:33:47:d9:ba:49:76:69:6b:aa:25:f5:d1:16:
28:57:c5:be:00:66:0a:46:92:79:78:fa:e6:75:15:5a:fe:6d:
ce:57:14:12:8b:3c:76:5f:65:97:e1:be:c8:2b:4d:8b:69:fb:
e5:46:ce:28:6a:7f:69:4f:ce:ef:4b:6f:bc:4d:e6:eb:66:09:
6a:36:55:71:be:4d:54:a1:ae:fe:10:e1:d8:34:f8:2a:7a:f1:
f4:7c:69:eb:e6:b3:7a:cf:dd:25:71:64:15:0c:c7:ec:42:3b:
bb:02:c7:f6:87:71:34:72:9f:db:a0:fc:bf:24:b9:bb:86:92:
92:56:a2:f3:9d:4e:12:5a:1c:8c:ec:74:1d:cf:42:3f:1f:7c:
98:e8:76:ee:62:61:43:4b:08:4b:ed:62:e8:99:66:b4:ae:f7:
1e:88:65:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:32 2025 by rpki-client