Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/JZi5EYXBbF0ukfU9jWQeZASW-zk.roa
File: JZi5EYXBbF0ukfU9jWQeZASW-zk.roa (raw, json)
Hash identifier: Y0338zwbuB4gNBqVmbuzg9CgS6E6XJWO54EreQ4GcRk=
Subject key identifier: 25:98:B9:11:85:C1:6C:5D:2E:91:F5:3D:8D:64:1E:64:04:96:FB:39
Certificate issuer: /CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Certificate serial: 027E57CF
Authority key identifier: 2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/JZi5EYXBbF0ukfU9jWQeZASW-zk.roa
Signing time: Sat 01 Jan 2022 10:57:19 +0000
ROA not before: Sat 01 Jan 2022 10:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211735
IP address blocks: 185.242.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41834447 (0x27e57cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e890193743bdf24dd22c3ed6f28b3031a2ec806
Validity
Not Before: Jan 1 10:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2598b91185c16c5d2e91f53d8d641e640496fb39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7d:77:f1:31:65:07:bc:b1:bf:9c:43:03:34:
80:c0:3e:78:46:96:ff:cd:42:44:1c:cf:aa:fc:6b:
b4:ec:d5:92:e0:3a:0c:98:2d:24:25:3b:1a:05:9f:
81:fe:26:da:d3:25:b3:30:f1:df:63:6b:6c:f0:72:
09:97:82:d0:f9:69:7a:e5:ca:e9:4f:68:49:9c:f4:
2e:1a:7c:d6:4c:5d:11:0d:c3:1c:ad:dd:13:16:10:
83:3a:7d:0b:6b:c9:21:04:9b:6b:a8:cf:95:e5:e7:
d7:56:6c:c6:fe:8b:c9:c5:6f:19:8e:d7:65:3c:85:
93:ac:87:5a:f8:25:c2:cc:11:69:a9:67:7d:1f:19:
da:36:c4:bb:80:21:1b:a3:6e:94:54:0a:8a:88:c0:
28:3c:f8:b6:46:e5:5e:04:9d:39:bb:81:41:ff:dd:
4e:ae:52:70:5f:ec:9f:a0:0e:ee:ce:eb:1d:6f:ea:
61:ae:61:81:7f:1a:6d:0b:e7:c9:aa:a2:de:5f:76:
0f:fb:0a:ce:47:a8:d7:8b:95:15:0d:0f:fa:78:88:
41:8c:4c:26:c8:f4:96:d5:22:26:8a:af:45:c9:93:
04:b6:89:2a:2f:a5:27:ac:f8:84:a8:e0:db:a4:bf:
15:2b:0a:47:88:98:43:11:6c:af:9c:9b:3f:48:6e:
49:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:98:B9:11:85:C1:6C:5D:2E:91:F5:3D:8D:64:1E:64:04:96:FB:39
X509v3 Authority Key Identifier:
keyid:2E:89:01:93:74:3B:DF:24:DD:22:C3:ED:6F:28:B3:03:1A:2E:C8:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LokBk3Q73yTdIsPtbyizAxouyAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/JZi5EYXBbF0ukfU9jWQeZASW-zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/8c27aa-b500-4c96-84ec-f8be495252b0/1/LokBk3Q73yTdIsPtbyizAxouyAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.176.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:68:90:38:90:64:c2:fa:84:30:5d:58:14:5a:a2:24:95:20:
cb:c9:d4:90:9f:59:a9:ea:c6:89:49:b4:0b:d3:03:af:90:6e:
1b:30:dc:a6:80:0e:6b:51:ba:e9:32:5b:cc:76:bc:12:e5:67:
58:c1:0b:39:f1:b2:7e:e0:b3:88:72:d9:69:1a:c2:a9:56:88:
00:93:00:af:f1:47:79:c1:0c:e0:97:88:75:b9:60:70:2f:a6:
82:de:7b:0e:b9:53:6a:9e:9c:0d:ed:1d:c9:d9:b9:33:47:99:
6f:26:65:90:0f:ae:d5:87:a5:63:76:bd:9a:f3:ce:48:53:a4:
03:80:fe:70:ce:95:ef:4f:01:39:e0:ac:bb:4f:db:93:fe:da:
ea:d0:25:58:c3:76:26:0c:24:40:c3:0c:b1:27:6d:1d:dc:94:
24:a8:9b:dc:ad:77:6e:b4:ae:5f:12:ff:be:85:89:72:93:d2:
dc:a9:66:e9:7e:bd:2e:48:7a:8f:72:97:4e:3b:02:58:51:f5:
c8:58:db:d4:9d:2f:06:f8:a2:a2:5c:27:58:28:72:5a:11:91:
25:5d:5b:bb:1f:12:94:d7:21:e0:54:32:96:68:75:6b:22:6e:
15:84:48:c6:52:5d:2c:c1:ce:2a:2c:03:48:34:6f:48:dd:88:
86:35:4d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:04:58 2025 by rpki-client