Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/jxvnVeW5qD36Ss5Wdma4ErrTWIE.roa
File: jxvnVeW5qD36Ss5Wdma4ErrTWIE.roa (raw, json)
Hash identifier: rGa7ZRRgNMPsjThUYJLH26m4ZfIjmRF9Admjf/sAn3c=
Subject key identifier: 8F:1B:E7:55:E5:B9:A8:3D:FA:4A:CE:56:76:66:B8:12:BA:D3:58:81
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 0241D4
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/jxvnVeW5qD36Ss5Wdma4ErrTWIE.roa
Signing time: Mon 25 Apr 2022 16:08:03 +0000
ROA not before: Mon 25 Apr 2022 16:08:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50616
IP address blocks: 185.156.12.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147924 (0x241d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Apr 25 16:08:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f1be755e5b9a83dfa4ace567666b812bad35881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0c:ba:af:08:69:75:94:44:f8:1e:3d:19:e9:
4a:f7:42:ea:1e:90:df:5f:17:16:e1:d5:bb:18:ad:
df:55:c2:e4:3a:ed:88:2f:b4:12:b9:68:dc:93:e8:
ad:14:fa:2b:4f:ac:f6:41:51:91:a7:62:ad:63:d4:
dc:aa:d0:f7:54:5a:12:2b:b3:40:6b:b6:81:01:c7:
18:a9:9b:ef:8a:81:0c:e4:af:bc:fd:1e:0a:24:f8:
52:d3:fa:62:a8:55:3a:31:1a:b7:50:ab:e2:59:5c:
9d:31:d2:69:3a:ff:c0:77:b3:37:7f:f4:d1:b4:38:
17:0a:e1:08:d0:7f:8e:00:43:ed:37:18:6e:27:65:
7e:78:49:14:0f:1b:77:ca:1e:86:24:86:49:1b:13:
24:d3:4a:ac:41:b9:6b:11:b8:ea:46:43:16:2a:ef:
a1:16:17:36:3f:8e:03:e8:d2:4d:48:b2:90:0d:ae:
d8:b4:35:83:44:64:1a:09:c7:05:0c:d7:c1:e3:c8:
69:63:aa:e2:06:2d:a9:4f:b2:bc:04:ba:98:17:9a:
6b:a2:e9:6f:64:05:2b:7c:23:01:a4:38:9b:4f:25:
e0:73:0b:13:a0:51:4d:3b:45:3d:35:0f:27:3f:ba:
3b:06:ec:74:d7:85:53:93:be:41:ce:fc:4a:d6:bb:
b6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:1B:E7:55:E5:B9:A8:3D:FA:4A:CE:56:76:66:B8:12:BA:D3:58:81
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/jxvnVeW5qD36Ss5Wdma4ErrTWIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.12.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:48:3d:40:b4:d6:41:4f:bf:ce:4d:8f:b4:9a:e1:1d:b3:0a:
c1:ef:8a:0b:39:a8:98:57:e6:93:93:ab:1b:62:ac:18:82:61:
96:e4:e7:cb:a2:88:8f:6f:c1:b4:f7:e7:a1:3f:b0:a8:e6:fe:
04:19:22:43:0d:9e:22:54:16:62:89:62:c4:f4:68:e5:a7:94:
8a:29:df:35:8c:4c:e7:48:45:dc:2f:15:c5:4f:ea:90:89:81:
bd:90:49:eb:88:32:4c:d6:99:a4:bc:1f:59:67:80:11:9c:ff:
4e:07:b1:e8:01:b0:5c:8b:51:7c:47:74:c2:2e:0a:fe:e1:67:
54:c7:ec:2f:c8:aa:ca:ce:45:0c:36:67:7a:70:54:ae:31:7f:
38:30:6f:ff:68:0e:49:59:b3:50:09:c8:c2:1a:6c:2e:03:c1:
13:96:39:f4:a7:67:60:af:77:9f:c4:df:54:c4:ac:eb:5f:5d:
f8:d3:df:f7:de:24:2c:3d:f1:7e:60:75:ae:c1:50:50:c0:11:
20:5f:19:8c:18:dd:6f:33:53:49:68:ae:85:0f:45:bc:6a:56:
4e:eb:42:49:89:fd:93:15:f5:e5:88:8c:a0:3d:67:57:ab:8a:
d4:fa:fb:1f:8e:1e:f7:5c:ed:2a:75:76:c4:97:cd:e5:02:e6:
f4:d4:07:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org