Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/7719c9-5d08-4b0e-afdf-1d0e6e981178/1/Jcf6rl4s6nTvaiF1Wmr7NDeNiSg.roa
File: Jcf6rl4s6nTvaiF1Wmr7NDeNiSg.roa (raw, json)
Hash identifier: CyXu0LmWz13sak9lEWtxB982WR/3KXncvuMlt2Lz7Fo=
Subject key identifier: 25:C7:FA:AE:5E:2C:EA:74:EF:6A:21:75:5A:6A:FB:34:37:8D:89:28
Certificate issuer: /CN=1582eec4b34738df718da9e0143a9d0e9241a85c
Certificate serial: 0AE667D2
Authority key identifier: 15:82:EE:C4:B3:47:38:DF:71:8D:A9:E0:14:3A:9D:0E:92:41:A8:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYLuxLNHON9xjangFDqdDpJBqFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/7719c9-5d08-4b0e-afdf-1d0e6e981178/1/Jcf6rl4s6nTvaiF1Wmr7NDeNiSg.roa
Signing time: Sat 01 Jan 2022 08:55:58 +0000
ROA not before: Sat 01 Jan 2022 08:55:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209578
IP address blocks: 160.20.96.0/22 maxlen: 22
2a07:cf40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182872018 (0xae667d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1582eec4b34738df718da9e0143a9d0e9241a85c
Validity
Not Before: Jan 1 08:55:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25c7faae5e2cea74ef6a21755a6afb34378d8928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5c:34:6d:f7:2a:2f:30:f8:88:79:09:ef:9b:
66:fa:58:52:97:27:21:93:7a:d1:49:38:28:ed:4a:
2d:3b:40:6b:f5:fb:a4:de:97:fb:bf:76:fa:89:2b:
9d:13:c5:7c:c7:94:0c:02:02:8b:cf:19:77:4f:ef:
91:44:2f:50:0d:f8:85:fa:55:d0:8c:e7:a1:f2:71:
c5:09:54:85:5d:93:13:71:f3:61:69:d7:45:29:ad:
dc:78:cd:23:58:d4:25:18:e5:a4:ea:9b:bb:11:fd:
24:ce:06:35:56:36:7b:31:5c:a0:a1:98:95:72:00:
7e:0b:4e:cb:f1:66:5e:01:12:33:3d:a4:0b:1f:f3:
95:95:a8:ca:65:15:a8:fd:1a:e7:fe:8d:4d:9c:50:
df:ed:e5:36:56:7d:99:55:0c:2d:c4:ce:fe:c9:1e:
e2:30:58:6d:1b:24:69:01:fe:cc:fa:36:a1:37:12:
f3:d2:d1:80:5c:c6:6a:21:49:8f:20:21:cc:56:21:
26:70:b3:9c:31:ab:88:69:dc:73:6a:f7:d0:3a:0a:
29:96:b3:7a:6e:33:8a:e6:39:11:59:f7:33:c2:ff:
80:43:b5:1a:ab:8c:f7:22:85:91:26:7b:7e:ad:07:
d2:a1:23:6b:a5:8c:c1:bb:1e:ce:10:d8:43:1b:70:
41:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C7:FA:AE:5E:2C:EA:74:EF:6A:21:75:5A:6A:FB:34:37:8D:89:28
X509v3 Authority Key Identifier:
keyid:15:82:EE:C4:B3:47:38:DF:71:8D:A9:E0:14:3A:9D:0E:92:41:A8:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYLuxLNHON9xjangFDqdDpJBqFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/7719c9-5d08-4b0e-afdf-1d0e6e981178/1/Jcf6rl4s6nTvaiF1Wmr7NDeNiSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/7719c9-5d08-4b0e-afdf-1d0e6e981178/1/FYLuxLNHON9xjangFDqdDpJBqFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.96.0/22
IPv6:
2a07:cf40::/32
Signature Algorithm: sha256WithRSAEncryption
db:88:b4:ad:c2:5a:22:30:56:9a:d1:7a:a4:3a:e0:d2:9c:6f:
5a:d0:f2:c9:dd:02:8e:73:dc:c3:22:a7:37:79:7e:a4:2e:5c:
1f:7e:e6:32:0b:ab:6b:1c:4f:c9:cf:8e:f5:df:91:23:4a:48:
6d:7e:fc:aa:94:eb:39:d0:c2:69:ec:4c:34:66:39:f0:09:48:
a7:74:2d:14:ae:1a:bd:aa:d8:be:22:e4:3f:81:d1:6c:59:9d:
6d:49:99:d2:b0:88:7d:fe:37:6d:6d:81:5b:f8:a0:5b:0a:35:
e4:39:94:3e:10:d2:c0:2c:f7:bc:2c:6d:d6:78:87:c8:ec:40:
d9:c1:4b:c7:c2:5c:61:2d:e5:d4:93:f7:c3:8b:2d:e3:81:37:
46:1d:83:16:1c:f3:cc:ba:a7:a8:22:3e:b9:48:42:6f:0c:ab:
21:64:37:91:3a:d2:bf:ff:a7:5b:95:67:ba:a2:9d:cf:2f:87:
3c:6f:96:dd:15:de:a1:ed:05:44:db:df:06:de:19:25:8d:c0:
09:44:73:6e:ac:a0:cb:44:89:f3:2a:9d:fa:f4:cd:9e:86:27:
95:93:46:50:71:cb:fd:c4:57:b8:c2:ab:6a:28:a2:38:e1:34:
8e:8b:18:02:09:69:39:2e:01:41:b2:60:67:99:c2:8b:63:31:
cf:ee:8d:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:04 2024 by rpki-client on console-fra.rpki-client.org