Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jBn8gk0Wm_T1ydSIhv87Sz0oOIk.roa
File: jBn8gk0Wm_T1ydSIhv87Sz0oOIk.roa (raw, json)
Hash identifier: EKP+r03kwk1+TqLU92sV4FI9HhCtLuFf46W495gEgzA=
Subject key identifier: 8C:19:FC:82:4D:16:9B:F4:F5:C9:D4:88:86:FF:3B:4B:3D:28:38:89
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C867CAC
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jBn8gk0Wm_T1ydSIhv87Sz0oOIk.roa
Signing time: Sat 01 Jan 2022 01:02:48 +0000
ROA not before: Sat 01 Jan 2022 01:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201200
IP address blocks: 87.120.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 478575788 (0x1c867cac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c19fc824d169bf4f5c9d48886ff3b4b3d283889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:82:93:73:8d:68:6f:bb:9c:6b:56:cc:85:0a:
d3:d2:d8:36:cc:96:12:2f:55:e6:76:bb:78:f2:73:
d9:15:85:e5:57:8e:7b:8b:39:a3:f1:95:83:11:40:
ec:fa:3a:07:70:8e:1e:d6:0e:90:4c:68:bb:81:ce:
16:e7:a2:ff:eb:c0:0d:ce:55:41:18:e9:90:e4:99:
37:0f:f7:04:ec:23:c7:4c:58:b6:fb:e9:e2:95:a6:
c4:c5:7e:c5:8a:ed:fa:38:ad:ea:24:e1:89:2a:b9:
3b:df:48:8a:84:0e:ac:39:54:c7:38:ef:13:26:28:
46:7a:4a:20:45:79:92:1e:09:67:d9:9f:3a:ff:24:
23:dd:0b:6d:37:b8:94:3a:1c:6c:49:e5:57:0f:78:
7f:39:a6:15:b3:34:bb:0a:79:28:39:4e:30:68:2d:
db:2b:f5:ff:6e:f9:e6:7c:2b:f4:0b:cd:ef:37:d4:
c1:cf:79:f7:9b:9e:bd:94:22:06:1c:c0:ca:6d:6e:
2e:33:6c:9e:7e:89:13:fa:4f:24:5a:6d:2d:54:0b:
c0:e6:1c:48:44:f6:13:2c:57:82:30:9f:6b:92:72:
6f:58:51:96:57:4e:07:9a:4f:3a:62:60:2c:e6:88:
87:be:bd:a7:aa:cb:de:e3:21:d8:38:08:67:8c:83:
3b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:19:FC:82:4D:16:9B:F4:F5:C9:D4:88:86:FF:3B:4B:3D:28:38:89
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jBn8gk0Wm_T1ydSIhv87Sz0oOIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.40.0/24
Signature Algorithm: sha256WithRSAEncryption
42:b0:fc:19:82:99:3a:10:5c:fc:68:31:3c:09:3f:5e:f8:7f:
4b:fc:80:c7:a8:64:2c:f4:3d:e0:dc:05:ac:8f:99:83:41:56:
81:15:03:71:ad:0a:4e:c1:e3:7f:41:fe:ba:6c:77:5d:e6:1f:
ea:a9:20:60:52:84:1d:35:d6:56:9e:9c:47:6c:ed:9e:60:6f:
47:c7:91:b9:8c:34:a0:bd:11:36:be:20:b4:98:2a:d3:04:54:
cd:2a:66:5d:56:51:42:a0:02:50:d9:b9:a1:e1:30:a6:e3:aa:
f4:fc:04:f7:10:a1:c7:8d:eb:51:48:54:19:1c:5c:f7:3a:7c:
1d:72:e4:04:ff:8a:60:6a:71:6c:19:47:c6:a1:52:e8:b2:7b:
64:00:a4:46:fc:27:2e:80:a8:fc:3b:df:b8:b5:07:97:18:82:
1e:cf:a4:1d:58:9a:d6:6c:34:0c:3b:b3:8a:4d:5f:c2:8c:7e:
18:07:2f:44:9a:7b:96:b8:77:c0:3e:ec:06:bd:6c:af:f8:2d:
55:08:6f:f5:bd:06:55:58:f7:84:d2:2d:26:ae:fd:3f:21:f8:
c4:e0:7e:e4:a9:5f:b0:b0:46:39:e9:8a:fa:68:f7:72:03:a3:
1a:2d:0a:ac:83:4f:bc:bd:e7:c0:18:26:c6:21:7d:6e:ea:20:
e5:db:2b:86
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHIZ8rDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MmM0YWMzZTNjNDNkNzBkMDUzNDljODE1YmFhZGQzOGFkNzc1ZTlkMB4XDTIyMDEw
MTAxMDI0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGMxOWZjODI0ZDE2
OWJmNGY1YzlkNDg4ODZmZjNiNGIzZDI4Mzg4OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALuCk3ONaG+7nGtWzIUK09LYNsyWEi9V5na7ePJz2RWF5VeO
e4s5o/GVgxFA7Po6B3COHtYOkExou4HOFuei/+vADc5VQRjpkOSZNw/3BOwjx0xY
tvvp4pWmxMV+xYrt+jit6iThiSq5O99IioQOrDlUxzjvEyYoRnpKIEV5kh4JZ9mf
Ov8kI90LbTe4lDocbEnlVw94fzmmFbM0uwp5KDlOMGgt2yv1/2755nwr9AvN7zfU
wc9595uevZQiBhzAym1uLjNsnn6JE/pPJFptLVQLwOYcSET2EyxXgjCfa5Jyb1hR
lldOB5pPOmJgLOaIh769p6rL3uMh2DgIZ4yDO6MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSMGfyCTRab9PXJ1IiG/ztLPSg4iTAfBgNVHSMEGDAWgBQixKw+PEPXDQU0
nIFbqt04rXdenTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8x
L2pCbjhnazBXbV9UMXlkU0lodjg3U3owb09Jay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
OTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcxMi8xL0lzU3NQanhEMXcw
Rk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFd4KDANBgkqhkiG9w0BAQsFAAOC
AQEAQrD8GYKZOhBc/GgxPAk/Xvh/S/yAx6hkLPQ94NwFrI+Zg0FWgRUDca0KTsHj
f0H+umx3XeYf6qkgYFKEHTXWVp6cR2ztnmBvR8eRuYw0oL0RNr4gtJgq0wRUzSpm
XVZRQqACUNm5oeEwpuOq9PwE9xChx43rUUhUGRxc9zp8HXLkBP+KYGpxbBlHxqFS
6LJ7ZACkRvwnLoCo/DvfuLUHlxiCHs+kHVia1mw0DDuzik1fwox+GAcvRJp7lrh3
wD7sBr1sr/gtVQhv9b0GVVj3hNItJq79PyH4xOB+5KlfsLBGOemK+mj3cgOjGi0K
rINPvL3nwBgmxiF9buog5dsrhg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:41 2023 by rpki-client on console-ams.rpki-client.org