Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/JCjNxXfxRCekz_q3Wu0iwqTBYoY.roa
File: JCjNxXfxRCekz_q3Wu0iwqTBYoY.roa (raw, json)
Hash identifier: 8XBrdSrVS21jBHqHXnwd2aWLmP7DbbTJAvm9CkllTnA=
Subject key identifier: 24:28:CD:C5:77:F1:44:27:A4:CF:FA:B7:5A:ED:22:C2:A4:C1:62:86
Certificate issuer: /CN=9ba94bc14937bb0b3632374355a446724104a981
Certificate serial: 05A85B4E
Authority key identifier: 9B:A9:4B:C1:49:37:BB:0B:36:32:37:43:55:A4:46:72:41:04:A9:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/JCjNxXfxRCekz_q3Wu0iwqTBYoY.roa
Signing time: Sat 01 Jan 2022 14:06:13 +0000
ROA not before: Sat 01 Jan 2022 14:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10010
IP address blocks: 193.151.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94919502 (0x5a85b4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ba94bc14937bb0b3632374355a446724104a981
Validity
Not Before: Jan 1 14:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2428cdc577f14427a4cffab75aed22c2a4c16286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:42:54:1d:f0:c7:0c:f7:db:51:6a:c8:52:85:
91:af:b6:8d:91:db:b1:26:56:b5:df:e5:62:de:5a:
8b:09:65:6c:b1:fe:ce:c4:d6:aa:8b:34:dd:38:67:
9b:72:27:1f:1d:60:9a:a6:b9:c9:1e:03:c2:d4:f3:
3c:7f:0a:d1:9f:9f:7a:8f:d0:77:d1:6b:f9:48:65:
44:7d:1c:3b:d7:38:0a:c8:52:40:3d:ca:dd:d2:08:
fc:5e:75:03:8e:2e:cf:03:a3:d5:01:14:50:b4:2c:
05:69:2c:ad:09:04:33:5a:96:47:74:9a:b5:e4:3e:
18:4d:3c:e9:f9:ee:a7:7c:a5:0d:d5:01:47:29:19:
db:31:4e:65:41:6d:42:cd:77:3d:04:23:f9:e5:8c:
61:54:9f:7e:6f:9b:5c:dd:3e:61:28:ef:b6:95:ff:
f8:37:1c:4c:97:86:38:da:b3:c3:65:f5:ac:2b:be:
b4:3e:d3:0e:49:27:ee:7e:2b:c7:be:40:59:2a:76:
90:59:c7:f9:d6:da:c3:cd:c7:11:61:1b:d1:3e:aa:
87:96:93:9a:0c:67:f2:df:f6:e4:28:5f:75:6d:de:
88:0a:d6:5e:54:b0:6b:b0:d8:c2:fd:26:39:8e:c1:
1b:85:bc:93:b7:cf:14:95:4d:91:3d:a7:62:04:30:
a3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:28:CD:C5:77:F1:44:27:A4:CF:FA:B7:5A:ED:22:C2:A4:C1:62:86
X509v3 Authority Key Identifier:
keyid:9B:A9:4B:C1:49:37:BB:0B:36:32:37:43:55:A4:46:72:41:04:A9:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m6lLwUk3uws2MjdDVaRGckEEqYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/JCjNxXfxRCekz_q3Wu0iwqTBYoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cc7843-d136-4ffb-8b99-836c312ac8c2/1/m6lLwUk3uws2MjdDVaRGckEEqYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.111.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:5a:03:83:47:f7:6a:53:78:fd:a6:9e:07:4b:c4:fc:f7:a9:
6e:6b:ce:a7:99:24:c4:41:dd:b0:c5:dd:f7:35:23:eb:df:c7:
de:f9:bf:5c:b4:ce:51:83:59:a4:e9:d7:14:fc:57:5e:e4:c5:
d9:32:1a:25:9f:4d:06:c4:91:9e:f1:ae:e7:cc:8f:da:83:6d:
e5:22:50:36:f3:b3:0d:06:f0:ef:33:3e:75:84:d8:27:7c:35:
5b:e9:4e:58:74:3e:13:75:de:9c:ca:82:3a:e5:2f:08:7c:0a:
97:0c:6b:da:a9:aa:80:7d:71:b2:8d:1f:0f:b6:c3:4b:a9:17:
27:31:6d:b5:9e:e4:e6:e9:42:37:f1:b3:7b:7e:bd:e2:98:ab:
b4:5d:89:76:c5:5e:f4:01:06:c3:3e:b7:b9:92:d9:1a:71:33:
12:a9:11:74:f3:86:1b:31:7a:a3:0f:15:12:15:78:b1:83:4d:
9e:b6:49:7f:02:bb:d8:0c:39:6c:e6:ee:da:06:73:d0:32:2e:
d8:a5:57:2b:df:d2:8c:f0:83:c7:5c:f9:5e:89:c3:d1:67:2c:
42:55:e1:fa:f0:1d:d8:e9:4d:1b:21:2d:4b:40:d0:bc:3e:37:
37:57:16:1e:79:f5:12:3f:d4:92:05:43:b0:55:c8:5c:c8:14:
4a:9c:06:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org