Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/JET53n5I7scQRVpLXQEMj8dX-F8.roa
File: JET53n5I7scQRVpLXQEMj8dX-F8.roa (raw, json)
Hash identifier: wlBUPMTyzzS7ksPnlEKUg83twab6IJAMGknYxM+3pH8=
Subject key identifier: 24:44:F9:DE:7E:48:EE:C7:10:45:5A:4B:5D:01:0C:8F:C7:57:F8:5F
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0896A310
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/JET53n5I7scQRVpLXQEMj8dX-F8.roa
Signing time: Mon 21 Feb 2022 13:10:03 +0000
ROA not before: Mon 21 Feb 2022 13:10:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30456
IP address blocks: 193.109.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144089872 (0x896a310)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Feb 21 13:10:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2444f9de7e48eec710455a4b5d010c8fc757f85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:04:1d:80:78:6d:af:19:4b:9f:c4:93:cd:e6:
57:12:b7:17:ae:73:2b:d2:1c:77:6e:59:40:14:30:
be:a5:82:2b:9b:f2:da:3b:f1:9f:29:73:61:b3:78:
92:ca:01:12:d8:db:09:f9:ca:04:27:a2:a2:d9:90:
47:6d:9b:99:f2:23:3b:d1:73:31:fa:7a:ba:cb:42:
be:69:c5:55:00:6b:3a:72:96:ec:ff:7d:11:7e:e8:
06:35:0e:14:5d:7c:49:e8:77:48:1b:34:9e:59:59:
5f:ce:38:0c:50:82:56:75:3f:bc:50:48:b3:62:c5:
3f:bb:0c:7c:ca:81:79:cb:fe:c4:ae:78:fd:b5:d7:
c8:77:7f:c4:c2:7c:ad:eb:14:2e:1b:ec:53:b1:8c:
ef:71:e2:65:16:06:57:8d:26:e2:a8:21:2f:48:3b:
77:9d:39:c1:4b:0d:10:9f:50:62:53:66:c8:b0:29:
40:98:ae:15:ce:bb:91:b5:48:1b:9e:d8:0a:46:48:
ff:e4:a6:a6:d9:2b:cf:ce:bd:14:d8:3f:cb:28:94:
6f:53:dc:59:63:23:38:17:f0:89:97:10:5d:1f:f1:
ca:e8:2d:a0:cf:b7:c9:ab:18:7d:17:e9:43:d5:47:
f5:b5:9b:e1:c1:8f:eb:25:72:45:e4:40:18:06:9b:
42:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:44:F9:DE:7E:48:EE:C7:10:45:5A:4B:5D:01:0C:8F:C7:57:F8:5F
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/JET53n5I7scQRVpLXQEMj8dX-F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.137.0/24
Signature Algorithm: sha256WithRSAEncryption
45:03:06:a7:15:29:8c:45:ea:b3:ab:64:49:fb:0c:42:2b:de:
64:11:2e:65:84:06:b6:4a:91:24:c2:76:bf:29:d4:e0:f2:4b:
ad:36:a7:10:97:26:34:db:42:dd:d9:45:37:2e:81:38:cb:87:
f2:08:b8:a8:c3:58:7b:19:ae:8b:7f:28:bb:6d:7c:b3:22:94:
9e:9e:b8:5a:bd:2f:7a:59:6e:f8:f0:3d:50:c8:7e:fb:44:f0:
80:e8:e7:2f:d3:7b:ef:4f:8e:44:5a:5b:f6:95:13:19:25:28:
ff:c3:fc:81:96:98:9f:c2:c8:32:d5:e0:b5:ae:a3:4f:e0:00:
b8:4c:95:84:60:1e:77:8c:ee:d2:bc:61:c4:eb:59:9c:92:fa:
c0:e7:58:d4:a0:6b:af:30:34:4f:12:0e:12:f6:6e:e6:ba:54:
a7:95:89:98:bd:c3:f3:a7:fa:87:06:0b:6d:7b:17:be:f1:2e:
c8:bd:91:eb:9b:cd:45:ce:97:b1:d0:f8:ca:62:2a:64:05:fb:
28:1c:3e:6b:e3:a8:b5:ff:cc:ca:6d:9e:f6:1e:bd:fc:b8:8f:
a4:78:cf:e6:a6:21:66:79:67:28:ae:92:43:99:cd:48:ec:be:
13:c8:47:c0:57:1b:3f:1e:43:17:e1:1d:f7:a9:db:e8:5b:cb:
d6:cc:6e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org