Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/jkNBWPr4fprr3FPpG7DgXpagA5Y.roa
File: jkNBWPr4fprr3FPpG7DgXpagA5Y.roa (raw, json)
Hash identifier: ho1UZAEz84QM1HduwmW4fv5OEVZt0SHl/zIcd71Klb8=
Subject key identifier: 8E:43:41:58:FA:F8:7E:9A:EB:DC:53:E9:1B:B0:E0:5E:96:A0:03:96
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 012E61E1
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/jkNBWPr4fprr3FPpG7DgXpagA5Y.roa
Signing time: Wed 18 May 2022 12:40:16 +0000
ROA not before: Wed 18 May 2022 12:40:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2.59.183.0/24 maxlen: 24
2.59.182.0/24 maxlen: 24
45.156.144.0/24 maxlen: 24
45.156.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19816929 (0x12e61e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 18 12:40:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e434158faf87e9aebdc53e91bb0e05e96a00396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:de:d9:58:a5:48:21:c9:25:7a:e1:45:2a:87:
28:a5:aa:70:75:7c:e8:a3:7b:7b:6e:a3:30:d2:82:
61:a3:bd:3c:fe:54:ec:d8:96:a5:a7:17:59:05:38:
82:6e:a5:07:f1:94:47:a7:b0:3b:e7:7a:5f:1a:f0:
9d:d2:0c:ed:ca:9b:07:aa:c0:cc:e3:ae:05:4f:a0:
aa:d6:13:dd:d4:a7:3d:c2:f3:ea:d2:a0:8b:ea:75:
90:cb:f2:5a:74:6b:92:f3:3f:6b:ea:d2:a3:5a:b5:
1d:16:6d:81:2c:c3:6c:b9:dc:27:a7:6d:4f:70:e1:
40:52:2b:22:67:e1:f4:16:92:f7:96:42:10:42:4c:
99:34:f5:d2:72:18:2d:47:73:b0:99:fa:3b:73:26:
c4:6d:da:d1:d9:ec:56:e2:2e:ed:c3:82:de:7d:af:
5f:a9:06:75:f5:4a:50:3b:bf:95:f7:28:77:c3:08:
e0:47:05:20:6d:86:aa:7d:b5:55:32:da:61:d7:7a:
17:37:8e:c0:cb:0c:56:f5:5f:43:d6:d8:79:5c:2c:
8d:b8:d4:bc:07:53:3b:98:b2:1c:45:bf:67:0e:64:
2e:f3:0c:a4:6d:f5:6d:2c:10:27:12:da:c1:78:fd:
ae:a2:fe:5b:01:00:7d:af:df:22:47:90:25:38:19:
9c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:43:41:58:FA:F8:7E:9A:EB:DC:53:E9:1B:B0:E0:5E:96:A0:03:96
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/jkNBWPr4fprr3FPpG7DgXpagA5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.182.0/23
45.156.144.0/23
Signature Algorithm: sha256WithRSAEncryption
90:a9:b0:f4:f9:01:9f:4b:29:b4:15:26:f9:de:f0:06:f0:26:
08:a4:78:ed:93:d1:3a:c4:1a:af:b1:14:4b:c7:cc:5b:d4:fa:
7b:e3:fc:7c:9b:9c:72:3c:d1:1e:70:06:2f:53:ed:6a:a5:73:
86:bd:21:81:8f:f7:b0:8e:9c:f2:d6:11:ff:b7:7d:a7:e3:5a:
22:02:1a:78:51:c4:3a:94:99:68:0e:32:38:6e:ce:d9:3a:46:
53:3b:50:5c:d0:60:b7:09:b7:5b:26:94:df:f3:be:2b:3c:74:
90:b8:e7:2b:50:a2:0c:1d:86:dd:68:c7:1e:ab:c0:93:85:85:
7e:ba:3b:0b:67:fd:7b:88:f6:a8:a8:57:66:04:27:86:7c:03:
0a:60:a2:9f:0b:d9:5b:c2:69:1f:19:88:3f:7e:67:13:8b:44:
66:b9:4b:99:50:b6:b6:95:0e:93:68:9a:4d:b7:20:7a:55:ae:
d2:ab:12:c6:91:06:c2:9f:69:7a:35:4a:27:e2:2d:78:9c:eb:
8f:92:07:73:21:63:96:3c:75:c4:ed:55:a3:ab:fe:37:cb:2b:
a3:3e:52:d8:b6:67:20:96:da:a4:d4:14:d4:35:42:1a:25:5d:
8e:7c:4c:44:70:fd:fd:64:94:26:d8:94:ef:0b:21:c0:be:bc:
21:25:3e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:15:13 2025 by rpki-client