Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/J1CjKD1J66_yK48rL_PFPrhXFl0.roa
File: J1CjKD1J66_yK48rL_PFPrhXFl0.roa (raw, json)
Hash identifier: 1ehMZ73iy75US6MiXmHevxKYEm1ZYTwBLiuVOPf95eI=
Subject key identifier: 27:50:A3:28:3D:49:EB:AF:F2:2B:8F:2B:2F:F3:C5:3E:B8:57:16:5D
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 0844570E
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/J1CjKD1J66_yK48rL_PFPrhXFl0.roa
Signing time: Mon 14 Feb 2022 10:08:54 +0000
ROA not before: Mon 14 Feb 2022 10:08:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 82.115.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138696462 (0x844570e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Feb 14 10:08:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2750a3283d49ebaff22b8f2b2ff3c53eb857165d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:55:1b:fc:73:9a:a8:47:3a:fe:39:76:19:86:
8e:ed:48:5c:b5:fd:69:c9:16:52:57:9c:01:25:31:
23:ba:cf:43:7d:e3:cf:eb:8f:f5:e5:22:93:0c:c7:
49:28:e9:9e:37:2e:d3:c3:63:87:09:c5:8c:d3:50:
a1:7f:9e:2a:38:9d:7b:46:17:c5:41:7d:8a:49:33:
50:fa:e5:3d:a7:38:74:94:01:fa:6a:d7:37:26:b8:
84:0f:b2:a5:42:72:3d:89:00:2e:c0:54:e4:43:9c:
76:9b:49:fd:3b:58:3f:eb:0d:e8:c1:d5:c9:03:1b:
81:fa:b6:ce:08:6f:05:ac:31:52:6f:de:56:e0:08:
f0:14:4a:84:b2:38:68:b3:5e:db:bb:e9:72:13:62:
96:55:17:2b:e4:fe:ec:cd:4f:0d:36:47:66:c2:14:
83:f5:2d:be:c8:d1:36:32:08:85:09:31:d2:bb:77:
d2:95:0f:10:89:ae:50:77:21:1c:77:d2:32:b9:49:
ba:86:ee:5b:11:00:e6:fe:3e:e1:b2:30:d8:21:2f:
3f:99:4f:52:11:77:08:0e:04:4c:b7:2b:91:c3:31:
b5:ec:b4:69:34:68:ec:29:3a:0d:32:2c:d6:f6:4b:
0e:67:57:a8:2b:8f:8c:26:b3:47:f4:a4:db:b3:0a:
a8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:50:A3:28:3D:49:EB:AF:F2:2B:8F:2B:2F:F3:C5:3E:B8:57:16:5D
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/J1CjKD1J66_yK48rL_PFPrhXFl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.219.0/24
Signature Algorithm: sha256WithRSAEncryption
80:54:4f:10:cc:0b:44:9f:82:84:41:92:17:dd:43:47:9e:96:
af:17:a1:05:95:da:0d:dc:c0:46:c4:10:de:c6:32:e9:52:8e:
a0:31:d8:8f:11:58:d7:7a:b5:ad:f4:d4:1a:f3:c4:3b:d9:89:
f5:1b:f2:1b:e4:0c:18:db:fa:e1:d7:34:30:58:6f:11:cf:d4:
ee:16:7a:42:94:21:ce:cc:27:d7:77:ab:4e:01:87:8d:90:c7:
ff:21:4a:31:3f:23:79:78:09:83:a3:bc:ce:39:b3:67:86:e6:
17:d2:76:e8:e5:17:b4:11:39:59:49:c0:c4:1c:5c:fe:ac:ae:
d0:4a:fe:52:80:00:b8:ca:79:d4:ca:26:bd:4a:43:74:6a:c7:
29:ae:8a:9e:5f:3a:05:34:70:51:4d:90:0e:df:02:7b:3b:a1:
fd:cd:fa:e1:28:47:a5:f8:7d:b1:12:e1:90:20:2d:52:cd:0b:
dd:fd:37:17:67:ef:68:ce:0d:8c:bb:8f:61:95:87:41:9a:1b:
e1:93:5f:ed:51:68:a0:e3:1e:63:c4:03:46:33:cf:88:71:00:
05:10:f8:f1:cb:da:b9:2f:e6:07:64:64:ab:00:d5:79:3d:a1:
24:a9:b1:da:54:36:b8:5a:17:74:7f:a9:dc:c8:a1:7b:bd:4f:
59:d0:fb:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:34 2023 by rpki-client on console-ams.rpki-client.org