Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jFZTGrqujdXZFapX5Hxa_i5yzEg.roa
File: jFZTGrqujdXZFapX5Hxa_i5yzEg.roa (raw, json)
Hash identifier: BzWdfvii/MdgGiMGgZDRR6tgth/VYJ9QJERdaJQZpmc=
Subject key identifier: 8C:56:53:1A:BA:AE:8D:D5:D9:15:AA:57:E4:7C:5A:FE:2E:72:CC:48
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1DB550CF
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jFZTGrqujdXZFapX5Hxa_i5yzEg.roa
Signing time: Mon 04 Apr 2022 11:18:59 +0000
ROA not before: Mon 04 Apr 2022 11:18:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 194.59.30.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 498421967 (0x1db550cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 4 11:18:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c56531abaae8dd5d915aa57e47c5afe2e72cc48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2f:cf:71:3f:f0:a9:5e:b4:0a:ce:a4:15:63:
f6:4d:a8:5b:d0:7b:bf:4b:1f:eb:ba:31:a1:7b:48:
b7:92:e4:97:77:39:0d:3f:8a:e7:e5:87:96:f6:95:
13:e8:d1:4c:bb:27:50:4b:93:2b:1f:3a:d2:65:34:
3b:c9:a3:40:e0:81:90:02:20:a3:4f:94:2c:4c:5f:
ed:71:cb:90:44:7b:71:72:2e:d7:30:3e:7b:34:bd:
c4:b1:92:06:78:ab:c4:8a:5f:f2:a3:f5:a6:05:f1:
dd:e6:ce:db:28:1c:b6:3a:54:9a:22:2b:5a:fc:1a:
ae:70:f4:88:93:7d:ba:5d:5a:67:b0:99:4b:10:97:
09:25:c3:69:da:78:a4:93:24:f2:a4:92:60:28:f0:
91:b0:4a:38:3f:2b:ee:85:2e:2a:34:56:9d:59:e7:
dc:3a:db:34:9a:57:69:80:11:24:a8:80:b6:85:4c:
ef:83:93:e4:87:d1:b6:25:f8:6f:ea:5f:68:8f:1a:
6e:e0:45:3b:e8:31:95:23:c1:1c:a7:cf:9c:d8:56:
4f:60:98:77:a4:02:f9:f5:10:56:6a:cb:70:3f:55:
23:8d:0a:9b:7d:8d:88:ba:e6:c1:17:a8:a5:2f:51:
b3:c1:c7:35:7d:20:55:5d:67:25:f7:5c:89:fd:60:
cd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:56:53:1A:BA:AE:8D:D5:D9:15:AA:57:E4:7C:5A:FE:2E:72:CC:48
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jFZTGrqujdXZFapX5Hxa_i5yzEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.30.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:75:5f:44:05:26:75:18:c1:59:a2:ff:d5:eb:b5:fc:52:7c:
b7:89:62:5d:ce:3b:cb:6e:65:56:af:75:71:56:4c:71:61:75:
6c:f3:81:49:46:d2:74:58:eb:a5:e6:d4:ef:3a:12:ac:17:da:
eb:46:fc:b6:a9:96:5f:56:58:01:d2:d8:57:bd:f9:36:51:82:
b1:46:df:94:a8:f9:42:b5:f2:28:6a:df:c0:5e:d9:3d:8a:d6:
16:a3:ac:ce:4c:11:ef:5e:f3:a9:38:47:11:2b:28:bc:51:de:
d2:2a:69:ce:19:13:f5:34:20:12:dc:47:56:0c:3b:ca:fb:98:
17:de:89:e2:f9:c1:ff:35:27:fb:fd:33:52:59:89:24:e3:fb:
85:a0:4a:5b:9b:ef:8e:95:f3:97:c1:4a:72:34:ab:75:e9:77:
f7:d9:c4:5a:38:ad:ab:25:0f:68:f3:5a:93:ba:a2:bd:e0:5b:
31:4d:61:4e:b7:e7:93:60:d5:1f:37:d8:72:8b:9d:48:fa:a5:
fc:48:f2:e0:73:82:53:8b:c4:36:a5:10:3f:83:bd:79:df:5e:
43:eb:f1:14:7a:b9:09:75:c9:ea:d8:47:36:b8:07:0b:76:93:
3a:bc:7e:a7:63:3d:ed:b8:17:4f:e2:e0:05:ab:f5:95:be:e5:
b1:70:89:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:41 2023 by rpki-client on console-ams.rpki-client.org