Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/jmSc2ccj8R4zDA9oNDt7OucjeEU.roa
File: jmSc2ccj8R4zDA9oNDt7OucjeEU.roa (raw, json)
Hash identifier: vbZtebhXLQnyPa2LOyMC3d8+Ny+vL9SO6aYaj9F5CTw=
Subject key identifier: 8E:64:9C:D9:C7:23:F1:1E:33:0C:0F:68:34:3B:7B:3A:E7:23:78:45
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 01826FB0F18023E73CF449AF2A1365C8E309
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/jmSc2ccj8R4zDA9oNDt7OucjeEU.roa
Signing time: Fri 05 Aug 2022 20:27:23 +0000
ROA not before: Fri 05 Aug 2022 20:27:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 45.138.15.0/24 maxlen: 24
45.138.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6f:b0:f1:80:23:e7:3c:f4:49:af:2a:13:65:c8:e3:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Aug 5 20:27:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e649cd9c723f11e330c0f68343b7b3ae7237845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:33:25:52:a2:5b:b4:a3:1f:6c:de:fc:4e:95:
46:d9:d8:7a:aa:dd:30:14:4d:d1:f8:f6:2a:05:58:
84:f3:4f:20:b2:d1:82:9e:d2:ae:ce:c3:34:49:f1:
4e:e0:3f:f8:8d:51:a1:fb:6b:4b:42:f6:fb:2c:be:
18:93:02:18:e1:56:70:c1:17:ec:c0:30:eb:82:fb:
c8:c8:d9:99:36:0c:09:00:ea:0e:39:9c:55:45:f8:
3c:a3:0d:2c:09:c6:f4:6e:f9:33:98:82:7c:32:61:
bd:49:7d:7c:d0:52:8c:7b:0f:08:04:4e:d6:3a:2f:
b6:c8:b2:15:8c:73:7e:ec:af:76:da:46:43:72:68:
28:01:75:b6:0e:ce:20:e5:83:b1:09:78:cc:b5:78:
34:91:35:17:d9:ce:8d:a5:19:dd:02:c5:6e:17:42:
e6:55:7a:6c:4c:e2:41:f6:87:ca:b0:1b:67:e0:93:
0f:50:cc:a1:c7:cb:c6:1a:55:6c:0f:d7:51:de:e3:
33:e4:f5:e6:42:6d:39:f3:8e:b5:d9:84:20:10:34:
68:1a:7e:1d:03:2e:f0:5a:ef:61:ab:b3:4b:e7:80:
f4:f3:41:dc:ee:01:0d:68:3b:1d:c5:63:46:f9:e5:
5e:36:09:f4:bd:e8:69:7d:0b:b0:aa:88:04:a9:1a:
1f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:64:9C:D9:C7:23:F1:1E:33:0C:0F:68:34:3B:7B:3A:E7:23:78:45
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/jmSc2ccj8R4zDA9oNDt7OucjeEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.14.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:e8:b8:b8:63:c7:b4:c0:64:c9:04:66:73:33:f2:54:23:bb:
cb:45:34:1f:e3:dc:ba:50:30:c3:d2:5c:0e:4e:f0:71:78:7b:
ea:cb:4d:08:46:a6:49:04:37:7a:d4:d5:39:d1:f3:76:83:4c:
09:fb:76:6e:4c:e2:00:60:99:6b:de:1d:1c:c8:23:08:19:50:
a3:1f:57:da:93:f4:fc:ce:87:55:07:ac:f0:ef:a9:ac:40:d8:
32:ff:8f:31:b1:5f:d4:20:12:7a:75:4c:48:2e:4b:24:41:b7:
c0:67:24:e7:62:7a:c5:98:8c:d9:f6:33:21:2f:af:59:2f:db:
3e:d3:b4:2b:92:46:09:51:24:9e:aa:60:d4:dc:21:bd:3b:ae:
f1:41:5f:74:fe:e4:d7:6a:94:2f:5d:64:be:ad:b9:ba:ab:d7:
44:79:96:12:fc:4c:29:df:5f:d4:66:e0:59:28:29:c1:e7:40:
25:7b:b0:ad:89:38:9c:41:64:14:29:c8:99:e6:f0:82:3b:2f:
42:50:92:87:82:05:73:47:78:bb:a2:5d:fb:ee:a1:ac:ad:17:
ba:c4:4b:06:95:b8:eb:ae:ca:a1:57:cd:f3:0b:96:c1:ba:6d:
64:3c:f5:cd:a8:26:b3:7e:93:56:db:a8:54:0a:ae:45:da:95:
ec:03:9a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:33:29 2025 by rpki-client