Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/jyAlGimQWqHV17Bje7FOHUp4VKE.roa
File: jyAlGimQWqHV17Bje7FOHUp4VKE.roa (raw, json)
Hash identifier: v7GzfCauTt+tzzmX6K+KD2lgVGZHZ88mMPX7kIrMCeI=
Subject key identifier: 8F:20:25:1A:29:90:5A:A1:D5:D7:B0:63:7B:B1:4E:1D:4A:78:54:A1
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 156F76AD
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/jyAlGimQWqHV17Bje7FOHUp4VKE.roa
Signing time: Sat 01 Jan 2022 14:03:37 +0000
ROA not before: Sat 01 Jan 2022 14:03:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8289
IP address blocks: 5.157.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359626413 (0x156f76ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jan 1 14:03:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f20251a29905aa1d5d7b0637bb14e1d4a7854a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cf:2d:48:aa:08:21:7d:28:7a:11:d7:7e:c4:
46:d5:d3:b4:22:86:22:42:36:73:bf:50:ab:67:68:
4c:de:5e:50:9f:06:b9:17:b7:8b:2d:51:61:26:62:
fb:3a:ce:24:89:a4:a6:33:58:75:99:c4:3b:af:2e:
28:3e:6d:7d:0e:48:7d:7b:01:78:43:34:0b:5a:e8:
6d:8a:11:fa:e5:de:a1:66:a6:b7:83:60:14:51:8a:
62:f0:80:85:86:6f:4b:94:26:b3:60:c3:a9:77:1a:
0e:5a:10:87:e7:2f:ad:cc:e2:e5:71:5a:56:d2:34:
b5:b3:e2:f8:5a:f8:7b:97:12:f9:a3:8b:7d:85:ad:
3f:0e:90:53:54:33:10:ee:7e:46:e1:ea:3e:d1:43:
33:e0:17:ab:d1:b3:06:db:e6:d7:dd:54:00:06:28:
e0:83:a1:90:2b:cd:3b:da:f6:23:ca:3f:44:0e:83:
9d:43:8b:73:53:af:d4:70:8c:7d:71:3e:0c:aa:a4:
b9:e6:d4:fb:04:36:d8:9a:12:2f:88:4b:1e:ca:27:
08:e7:ac:3f:20:43:ba:4f:5c:8f:29:f0:07:a0:d6:
a7:b8:f5:3d:25:42:8d:c8:b6:f6:34:14:12:ad:99:
70:19:a2:b0:02:70:f1:bb:79:4c:f1:da:b5:03:d8:
70:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:20:25:1A:29:90:5A:A1:D5:D7:B0:63:7B:B1:4E:1D:4A:78:54:A1
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/jyAlGimQWqHV17Bje7FOHUp4VKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.4.0/24
Signature Algorithm: sha256WithRSAEncryption
41:59:13:6c:e5:7e:7d:9e:f3:fc:bd:10:14:ea:4e:c7:67:94:
6c:4d:d8:7f:19:27:ac:c6:45:c6:bb:9e:84:d0:a9:5d:0d:86:
ff:de:a8:5e:28:d8:58:d9:3f:79:45:2b:4b:1b:92:e4:61:3b:
64:c2:73:26:d1:1c:18:11:57:d8:09:c9:c0:b1:74:a7:8a:a9:
18:14:69:5d:4a:8b:9d:7b:26:35:bc:ad:8f:51:a3:b3:46:64:
07:58:9d:17:f4:fd:47:07:36:68:1c:7f:00:33:41:7e:85:61:
86:a1:16:14:57:8f:ec:01:9d:a5:2e:2a:89:ce:ac:ac:f1:a9:
d0:48:c6:b0:25:92:ff:b2:f0:e0:16:5c:3f:14:17:ae:03:51:
0b:77:13:35:6d:fe:23:6c:f7:18:59:b8:e9:d8:86:eb:17:57:
6d:6b:37:5b:92:27:b1:11:d8:08:44:7d:e8:13:43:2d:b8:99:
3b:94:e7:6b:87:47:b1:bb:6c:40:7f:de:d7:34:8a:e5:45:50:
be:52:4e:e0:ec:3d:6e:02:17:a3:46:fc:70:1e:d7:87:23:71:
ba:b9:6e:77:9a:83:19:c1:a0:ca:a4:ff:5a:0b:31:cd:5f:80:
ee:aa:d2:2a:c5:e7:0f:37:c7:b1:a6:22:25:54:fd:de:14:41:
fd:81:20:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:25 2023 by rpki-client on console-ams.rpki-client.org