Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/jDpHxyR7gcgmQllC-TN01FkSRu0.roa
File: jDpHxyR7gcgmQllC-TN01FkSRu0.roa (raw, json)
Hash identifier: w/xn/0QKkKPFn+iNqev6TaV+K7IWvoHDsMC8hKPo88I=
Subject key identifier: 8C:3A:47:C7:24:7B:81:C8:26:42:59:42:F9:33:74:D4:59:12:46:ED
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 01AD9473
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/jDpHxyR7gcgmQllC-TN01FkSRu0.roa
Signing time: Thu 05 May 2022 16:28:46 +0000
ROA not before: Thu 05 May 2022 16:28:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204057
IP address blocks: 185.255.96.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28152947 (0x1ad9473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: May 5 16:28:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c3a47c7247b81c826425942f93374d4591246ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:aa:3a:38:64:06:42:ce:2d:40:19:c2:c7:c2:
77:c6:94:86:fd:64:97:ec:25:41:72:fa:0f:c0:b4:
af:49:c4:54:21:d8:e8:da:2c:cf:b2:72:ec:26:35:
11:db:0a:fd:6f:dd:23:c6:88:49:90:3d:e9:51:26:
3b:50:d7:39:39:40:1a:4c:81:32:9b:96:c0:20:87:
ff:fb:f6:8e:64:63:54:fc:1a:e6:89:93:0c:10:25:
d3:53:b6:61:0b:47:8d:e9:4d:f9:7d:c3:19:17:5f:
66:50:83:e6:56:3d:22:00:88:a6:0d:96:54:8b:6c:
37:d1:4b:00:6a:3e:7c:cd:40:a0:dc:a2:04:74:ae:
a9:ff:d2:b7:67:50:28:bc:2e:f0:1c:50:1f:3f:ea:
92:f4:83:e7:bb:b1:7a:95:37:11:70:48:83:32:ab:
cf:a5:10:3a:18:88:6a:c8:1f:58:d5:41:0e:01:44:
b8:6f:c6:68:58:38:2f:e8:23:33:be:2b:24:d7:46:
7b:bf:fa:00:59:ac:33:9c:c2:48:79:ed:38:92:d3:
d7:27:c9:6d:cd:a9:4b:86:62:b7:9b:e9:36:c5:fb:
a2:e1:3d:1f:06:c9:7c:dc:6b:55:7f:7d:f1:d2:b4:
d0:1b:ef:f2:c0:cf:a2:f6:89:32:95:a5:26:d5:44:
d6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3A:47:C7:24:7B:81:C8:26:42:59:42:F9:33:74:D4:59:12:46:ED
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/jDpHxyR7gcgmQllC-TN01FkSRu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.96.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:b6:ca:9e:34:09:0a:a3:9f:1a:40:64:ef:87:11:4c:6b:80:
f1:63:d6:ba:03:57:6c:90:b2:00:cc:31:6b:2d:9c:55:13:5a:
7f:5d:21:1f:dc:8e:8b:d8:47:9c:89:0b:3b:5b:1c:6a:88:c1:
1a:22:1a:70:c8:a4:e4:82:a9:ad:e3:e6:f6:4c:48:6f:1d:9a:
83:8a:02:22:ff:2d:57:7d:8d:e2:ac:7c:08:68:28:ff:c4:be:
45:a8:13:25:ab:59:ca:c8:d2:77:4a:82:75:3b:79:3c:6c:4d:
52:cc:d2:6e:a7:22:6c:fd:5a:a4:34:4a:5c:f8:f9:7d:cd:6b:
64:49:88:e9:ff:f3:54:c3:84:b1:37:95:7f:b2:72:58:b9:f1:
fc:4e:c5:2a:c4:c0:c1:8b:ff:9c:d5:20:9c:e1:d1:1f:75:c1:
28:27:61:e1:e2:d4:61:e7:57:08:c1:9d:0f:c1:98:82:95:b6:
e9:96:01:62:95:73:3e:9c:35:ea:8c:45:64:2a:16:b5:e3:68:
bf:af:ab:c9:48:42:c9:f0:64:75:b0:98:ed:78:5c:f5:ad:1e:
60:74:a5:4a:2b:a2:fa:3e:d5:53:84:2b:3d:ea:ff:b9:88:61:
d2:23:23:12:90:11:ee:38:14:7c:1b:60:02:65:7a:32:74:b8:
78:fa:36:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:01 2024 by rpki-client on console-ams.rpki-client.org