Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/jzecN1fhoPa7Lb9MNNZirPrxP0g.roa
File: jzecN1fhoPa7Lb9MNNZirPrxP0g.roa (raw, json)
Hash identifier: yPe9dWfEUsxv0v7LgjZ2CocnyD0Pa8Fr2ftwS9kH0/Y=
Subject key identifier: 8F:37:9C:37:57:E1:A0:F6:BB:2D:BF:4C:34:D6:62:AC:FA:F1:3F:48
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 09FBBF6B
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/jzecN1fhoPa7Lb9MNNZirPrxP0g.roa
Signing time: Sat 01 Jan 2022 01:59:51 +0000
ROA not before: Sat 01 Jan 2022 01:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6805
IP address blocks: 194.15.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167493483 (0x9fbbf6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Jan 1 01:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f379c3757e1a0f6bb2dbf4c34d662acfaf13f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:59:21:84:b9:1e:4b:4a:db:42:c5:3a:62:9d:
7b:13:03:32:3c:43:72:b2:95:e6:24:ed:4f:62:b6:
7f:2a:a2:b3:5a:68:39:fa:34:1a:83:4b:f8:e5:37:
0a:f1:f4:6d:66:65:18:bd:12:9c:4a:5f:9b:55:95:
50:7e:fb:09:41:1b:6d:6e:2f:61:dc:55:94:34:74:
0d:cd:a3:d7:d8:c4:f8:70:fd:1e:27:f6:14:98:7c:
46:05:66:60:7e:aa:55:08:29:bf:f5:1e:1c:b8:33:
62:fd:c8:a2:93:4e:96:16:0c:c1:e8:e2:e2:2a:bd:
8b:57:33:40:06:ec:52:2c:dc:9f:24:91:24:b2:a6:
a6:c0:3e:b9:7e:3c:cb:7d:9e:cf:7c:da:49:68:d2:
6f:25:c5:b4:5f:86:32:24:1a:a1:1c:eb:c2:4a:06:
00:96:a9:17:95:82:e0:e0:18:16:fe:e8:7a:73:36:
7c:47:83:ec:12:03:ea:8c:ee:bc:71:92:96:71:40:
92:81:59:e0:ac:97:48:0a:df:f6:aa:61:92:28:42:
21:f5:ba:7d:45:33:ba:c2:c0:e5:3d:3a:05:28:2a:
89:de:79:87:07:e4:1f:67:c1:25:2a:4c:8a:c2:f7:
ca:f5:70:9d:21:32:92:ac:b6:c1:5b:10:3a:33:a5:
28:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:37:9C:37:57:E1:A0:F6:BB:2D:BF:4C:34:D6:62:AC:FA:F1:3F:48
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/jzecN1fhoPa7Lb9MNNZirPrxP0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.237.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a9:0f:b6:e9:99:63:1f:d4:45:0d:18:16:53:de:ce:d4:a8:
a5:ee:08:8d:bb:5c:fb:fa:1a:97:6e:29:ef:e1:7d:d0:d5:8d:
28:8f:17:27:04:e0:41:a9:17:e6:60:53:f3:1a:17:30:66:56:
93:18:03:17:f4:1f:0b:41:82:f7:69:af:fb:72:b5:e8:35:42:
d8:6b:c0:ab:48:d1:b9:6e:93:2a:71:a4:76:58:26:5d:fd:57:
68:25:14:6b:a5:52:fe:e7:69:11:15:b8:96:53:0f:6d:fd:15:
6d:e5:58:7c:1d:92:25:81:16:f5:51:5f:c8:1c:bd:34:7c:2e:
69:af:35:30:0e:83:d5:a3:23:f2:c3:71:53:a3:ea:05:36:36:
16:2f:b1:86:6a:c8:5f:ff:f8:99:fe:ed:fb:99:c7:58:ed:bb:
86:e8:0f:95:ba:f4:ba:8e:95:d7:9d:77:e1:61:22:0a:ce:62:
37:0c:1a:5b:0f:f6:99:46:9f:48:5b:f3:aa:9e:40:ad:7a:2b:
96:4b:67:50:db:fb:c9:14:ed:58:f9:a6:17:9a:f0:90:8a:00:
75:fd:4c:3e:51:45:56:fa:4f:e8:16:49:cf:64:21:b2:fa:58:
83:8a:22:e4:5e:96:91:36:64:31:f6:69:20:ba:9f:ab:53:04:
ff:12:fd:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:03 2023 by rpki-client on console-ams.rpki-client.org