Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/JZ5YykdvbQ1Th37Da4qgqGAYAw4.roa
File: JZ5YykdvbQ1Th37Da4qgqGAYAw4.roa (raw, json)
Hash identifier: Vq937fTWxFVcw02kj5ijERibvkc3a/o6+u7hQlLN2VI=
Subject key identifier: 25:9E:58:CA:47:6F:6D:0D:53:87:7E:C3:6B:8A:A0:A8:60:18:03:0E
Certificate issuer: /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Certificate serial: 0183EB820AEA9BC2EA7713C1BE70D1014469
Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/JZ5YykdvbQ1Th37Da4qgqGAYAw4.roa
Signing time: Tue 18 Oct 2022 14:31:51 +0000
ROA not before: Tue 18 Oct 2022 14:31:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43702
IP address blocks: 194.165.15.0/24 maxlen: 24
194.165.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:82:0a:ea:9b:c2:ea:77:13:c1:be:70:d1:01:44:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Validity
Not Before: Oct 18 14:31:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=259e58ca476f6d0d53877ec36b8aa0a86018030e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:90:54:59:96:4e:cc:7c:6d:d2:84:bd:77:70:
28:f7:64:a3:ba:05:09:bf:b7:25:ea:2c:b7:56:ed:
1f:40:bc:61:8a:b9:d8:5f:e4:b5:65:55:93:de:0d:
b0:79:ce:4f:63:34:e9:ce:91:19:8d:61:3c:1e:67:
b2:e5:2d:6f:fc:1e:10:85:41:5a:46:75:7e:1f:e1:
91:df:55:2a:e8:11:a7:a5:e5:19:d0:66:6e:67:cc:
8f:7f:80:40:8a:71:ef:5e:8d:80:ae:f6:ea:9d:2f:
97:c6:11:f2:31:58:c7:72:75:a2:01:ce:4b:76:9e:
17:3a:f3:1d:ea:9c:de:8d:30:89:34:3e:ae:db:e9:
e6:fe:6d:c8:64:17:fc:ac:34:5a:99:74:21:7a:8e:
1a:0d:d0:c7:85:b7:a3:7d:8a:4a:a3:16:b7:47:b7:
e0:eb:9f:44:6c:f3:29:0d:d3:5b:51:e8:ce:5d:b4:
0d:29:2e:e0:91:81:b4:a7:82:60:12:06:95:f3:be:
98:70:54:42:32:e2:37:0f:2a:70:c7:9a:da:8e:69:
6a:87:f8:87:68:a9:9f:f3:cd:bf:15:2b:f2:35:6c:
98:b1:34:8f:33:94:14:da:52:e1:63:7f:70:3a:8c:
33:2b:d5:b5:68:3c:f5:96:69:33:01:8f:41:7b:4f:
21:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:9E:58:CA:47:6F:6D:0D:53:87:7E:C3:6B:8A:A0:A8:60:18:03:0E
X509v3 Authority Key Identifier:
keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/JZ5YykdvbQ1Th37Da4qgqGAYAw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.14.0/23
Signature Algorithm: sha256WithRSAEncryption
79:13:04:50:4f:46:c1:d5:48:36:21:92:2b:06:4e:6e:a4:b8:
91:67:93:36:af:45:37:98:55:2e:d6:51:34:d5:f6:1c:a8:4a:
23:75:ac:3c:b0:24:ea:d4:d8:da:46:d4:74:39:f3:51:93:3d:
fe:98:89:a1:8c:a9:67:6b:08:30:04:1a:23:b3:67:71:26:2d:
01:b7:e5:50:de:e8:a7:7a:5d:df:70:80:22:1f:32:3b:e6:c3:
26:24:1e:7b:92:89:36:a1:70:d9:f0:aa:4b:97:f3:ef:3d:a1:
b7:66:0d:dd:d8:cc:86:12:0a:cc:14:89:17:58:3a:8b:75:09:
15:9b:eb:ab:42:7e:7a:10:b2:7b:49:a9:6f:c7:98:c3:a1:65:
83:9e:87:e6:7f:88:3d:d3:40:b8:b3:76:89:22:12:7a:0e:e1:
51:fe:30:9e:52:0b:fd:28:a6:88:e8:9d:8c:0d:f2:dc:c1:66:
36:00:b2:6f:e7:73:e1:82:d6:6e:19:89:f2:0b:4f:50:17:a3:
7a:b5:51:cd:bc:53:95:cf:cc:4f:87:ef:59:6a:71:66:da:8e:
0e:7f:ea:77:8a:ac:c9:a6:23:22:01:6a:26:40:a8:32:c9:e9:
d7:52:e6:82:36:b7:8f:9b:09:b1:be:cf:9e:8c:97:d6:d9:9b:
be:99:9b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:18 2024 by rpki-client on console-fra.rpki-client.org