Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/jA8-5RmQXogtcHzD0Ppr3-Q2A58.roa
File: jA8-5RmQXogtcHzD0Ppr3-Q2A58.roa (raw, json)
Hash identifier: +LnQEP8WCNArBR0ItJznC2KFK/WJCqJlJ0PcSP3aYMA=
Subject key identifier: 8C:0F:3E:E5:19:90:5E:88:2D:70:7C:C3:D0:FA:6B:DF:E4:36:03:9F
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 154FD491
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/jA8-5RmQXogtcHzD0Ppr3-Q2A58.roa
Signing time: Sat 01 Jan 2022 13:56:58 +0000
ROA not before: Sat 01 Jan 2022 13:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51822
IP address blocks: 89.226.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357553297 (0x154fd491)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 1 13:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c0f3ee519905e882d707cc3d0fa6bdfe436039f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:72:5b:02:e3:37:3d:84:77:64:cf:c2:c6:b7:
aa:c9:fa:9d:af:75:b2:d7:ac:7b:7c:b0:96:a7:11:
73:8e:47:f6:9a:4d:86:1e:4a:ae:83:01:04:fb:91:
18:36:4d:8f:15:4c:54:d2:be:c3:cd:de:aa:6c:8e:
c7:ba:6a:d1:76:da:bc:60:18:19:e3:54:a6:fd:be:
8a:41:49:f7:18:f7:a6:7f:22:83:f2:a4:bb:39:2f:
c7:eb:a3:63:51:5d:93:e8:47:dc:04:57:b7:80:f4:
02:8f:7a:91:d0:9b:bd:8a:cb:99:b3:7e:3b:55:62:
80:57:c1:a3:b5:f9:51:7e:3b:db:7e:b3:62:b1:00:
cf:39:c4:92:1f:29:1e:d7:ba:16:e1:a5:de:d7:b7:
a4:47:97:77:89:c8:36:e7:06:4b:48:67:5a:51:9c:
d8:74:be:2c:20:a3:e6:5d:ee:40:dc:83:b5:ce:11:
31:48:bb:5a:34:c7:a5:51:89:d3:6e:d5:a3:82:42:
0c:bd:45:04:ee:d4:b3:0a:25:cb:3d:e7:b1:5f:9a:
be:e6:93:10:9f:c1:38:20:06:c1:6f:2f:93:52:93:
30:fa:2e:7c:78:ac:89:b0:3d:74:ef:63:fd:35:42:
8b:e7:31:e0:41:e3:37:00:b9:ea:f5:28:d7:02:1b:
e7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0F:3E:E5:19:90:5E:88:2D:70:7C:C3:D0:FA:6B:DF:E4:36:03:9F
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/jA8-5RmQXogtcHzD0Ppr3-Q2A58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.226.253.0/24
Signature Algorithm: sha256WithRSAEncryption
08:8b:03:a3:46:b0:96:38:d1:00:b1:23:5f:b8:c0:ed:e3:15:
75:7d:d4:1e:e0:24:8a:71:9c:e2:4e:3a:fb:5f:c6:61:ee:c1:
4b:16:34:96:10:6c:cf:32:60:44:bc:fc:ec:07:9b:e9:70:88:
36:e8:7c:97:95:77:49:ea:1e:15:3f:bd:5a:b4:d9:80:60:86:
7e:53:3a:89:7a:27:73:3b:06:1d:b5:b7:d8:f6:4f:e6:98:a4:
9a:70:62:0b:b7:24:f9:38:30:01:03:f5:ac:9f:36:64:a0:c9:
5c:86:9d:8c:1a:b1:44:47:5e:f5:19:3f:c5:43:80:e6:25:71:
4b:b8:eb:68:41:18:58:7f:02:0c:dc:4a:4d:2e:ae:12:d8:fd:
b4:f7:b8:e0:58:e7:46:43:33:31:34:f5:bf:7d:e3:3f:6f:11:
06:0a:7c:48:4a:b8:be:cf:23:2c:5f:6d:27:67:2a:91:09:46:
66:b2:8e:3b:b4:36:9c:11:2c:ce:34:c8:bf:7e:23:05:83:22:
65:14:89:72:3c:40:92:59:4b:cf:f5:1d:a0:97:ed:33:80:8d:
85:27:16:04:d3:e0:ed:81:ad:c2:0a:8a:b9:4c:34:3f:63:b8:
28:ab:b7:6c:85:ea:83:cd:c1:be:39:04:df:11:43:f6:72:bf:
81:62:08:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:06:09 2025 by rpki-client