Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/JyNMwM8flWI8mSaod7PpD26bvLE.roa
File: JyNMwM8flWI8mSaod7PpD26bvLE.roa (raw, json)
Hash identifier: iHau9soT24/qSj3TxBPNW1sioh/fU+6JJEQMwRBFIos=
Subject key identifier: 27:23:4C:C0:CF:1F:95:62:3C:99:26:A8:77:B3:E9:0F:6E:9B:BC:B1
Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Certificate serial: 09FE15EE
Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/JyNMwM8flWI8mSaod7PpD26bvLE.roa
Signing time: Sat 01 Jan 2022 14:02:49 +0000
ROA not before: Sat 01 Jan 2022 14:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57050
IP address blocks: 212.81.56.0/24 maxlen: 24
212.81.57.0/24 maxlen: 24
212.81.58.0/24 maxlen: 24
212.81.59.0/24 maxlen: 24
2a10:fa80:10::/48 maxlen: 48
2a10:fa80:58::/48 maxlen: 48
2a10:fa80:56::/48 maxlen: 48
2a10:fa80:216::/48 maxlen: 48
2a10:fa80:59::/48 maxlen: 48
2a10:fa80:57::/48 maxlen: 48
2a10:fa80:92::/48 maxlen: 48
2a10:fa80:212::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167646702 (0x9fe15ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Validity
Not Before: Jan 1 14:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27234cc0cf1f95623c9926a877b3e90f6e9bbcb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7c:03:6b:78:bc:bf:8a:d1:d8:f8:13:ad:44:
42:ca:f8:b3:e8:bb:01:f6:5b:49:bb:65:59:65:8d:
9c:de:4f:cc:85:30:71:12:b3:a6:83:5f:f1:68:88:
1f:aa:af:23:9a:ad:16:63:63:e0:c2:6d:9d:7e:e8:
f3:12:46:2e:07:7e:bd:eb:ef:26:7d:a3:9e:04:04:
b6:8b:4e:61:54:73:74:2f:15:13:73:c8:82:ff:2b:
a5:1f:58:59:4e:56:ae:16:3e:51:25:a4:70:2e:d9:
cb:55:06:35:11:d0:28:ae:e1:d9:29:07:5e:8f:59:
bd:d8:a5:c6:0d:b0:84:9a:3c:42:67:cf:51:96:0e:
1c:2e:24:28:5a:bf:2b:ce:bf:b8:85:35:d4:68:75:
65:62:91:0a:1a:2e:12:09:85:3b:ff:ad:55:4a:5f:
be:16:24:8a:9f:6b:17:b5:78:30:74:42:9e:41:b7:
df:5f:ff:9d:94:70:37:d0:6c:30:03:61:d1:8e:6b:
90:fe:53:c5:ad:e2:03:4d:77:ae:11:ba:7c:cb:00:
08:91:8e:70:c3:f8:44:ec:40:97:0f:90:d5:49:8a:
64:0e:41:ef:fe:ab:71:d9:5d:c6:ba:14:ad:2d:f6:
c9:74:16:8f:8a:c4:8b:02:9b:d2:31:77:15:13:49:
a9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:23:4C:C0:CF:1F:95:62:3C:99:26:A8:77:B3:E9:0F:6E:9B:BC:B1
X509v3 Authority Key Identifier:
keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/JyNMwM8flWI8mSaod7PpD26bvLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.81.56.0/22
IPv6:
2a10:fa80:10::/48
2a10:fa80:56::-2a10:fa80:59:ffff:ffff:ffff:ffff:ffff
2a10:fa80:92::/48
2a10:fa80:212::/48
2a10:fa80:216::/48
Signature Algorithm: sha256WithRSAEncryption
12:68:2d:7f:7e:1a:6d:45:59:34:d6:46:30:89:49:fd:eb:ad:
a7:db:3e:78:7c:99:88:93:16:a0:5c:12:bb:82:71:73:05:f8:
c9:ff:de:b1:4e:e6:4d:f1:62:87:84:75:0d:07:21:28:71:f3:
35:7a:61:a3:46:05:34:a7:05:8d:e9:a7:6a:40:b4:36:b5:9a:
86:57:de:75:07:7d:51:bf:67:07:ca:e6:2b:d8:c2:e0:a3:bb:
38:9a:48:c2:86:91:27:56:42:ac:e7:67:a0:cc:15:2b:2a:99:
b5:e2:b7:2b:55:6a:e4:f9:a5:78:f6:26:8e:45:b1:22:83:fd:
36:9b:94:6f:30:20:4a:f4:35:80:be:fa:71:c1:b3:49:40:d4:
7d:94:81:3e:5d:d7:ab:c1:b5:47:d6:e3:0a:ed:33:14:ce:f2:
c9:48:0e:f7:f6:8f:15:98:04:bd:31:b0:4d:41:56:24:cc:a7:
ea:5a:c2:08:17:d4:1e:1c:a5:ab:17:2f:32:19:ae:15:0d:53:
07:92:df:1e:64:13:05:10:8b:bc:77:a6:50:72:2d:25:ed:98:
b7:c5:49:e0:87:09:31:41:79:d4:24:7c:9b:49:30:fd:15:0f:
20:9d:4b:34:8f:40:84:10:ec:95:ee:c9:fc:1a:f0:1e:0d:e4:
41:da:e8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:07:37 2025 by rpki-client