Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/JRnc-izY4YzA5BQY7XwbxHGlQAE.roa
File: JRnc-izY4YzA5BQY7XwbxHGlQAE.roa (raw, json)
Hash identifier: DTu6XkA4lcjw1K1u2sTPTGg/PA1aZN24F0jyCpItgVs=
Subject key identifier: 25:19:DC:FA:2C:D8:E1:8C:C0:E4:14:18:ED:7C:1B:C4:71:A5:40:01
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018375FA19369340F28ACA4E1A6F94355583
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/JRnc-izY4YzA5BQY7XwbxHGlQAE.roa
Signing time: Sun 25 Sep 2022 18:47:48 +0000
ROA not before: Sun 25 Sep 2022 18:47:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61290
IP address blocks: 2a0f:8900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:75:fa:19:36:93:40:f2:8a:ca:4e:1a:6f:94:35:55:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Sep 25 18:47:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2519dcfa2cd8e18cc0e41418ed7c1bc471a54001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7d:cb:57:95:a1:c4:c3:0e:36:a9:6d:a6:68:
35:c4:e2:ee:6c:02:5f:00:54:c2:ec:63:cb:be:16:
0d:28:df:50:55:1f:a6:37:37:f0:18:2a:51:34:af:
ec:07:b1:9b:6c:7b:bf:f4:9e:66:1c:c3:47:82:44:
b8:e0:46:50:00:2d:ad:ca:eb:77:3b:5e:f4:67:57:
01:f3:88:fe:80:4b:7d:44:57:4a:07:b4:77:6a:9b:
8a:d7:e2:f2:dc:5d:20:93:26:59:f6:f9:7b:57:fb:
5c:c9:b8:8a:6e:a9:92:43:5a:02:a5:ae:41:e8:11:
7e:44:fb:ce:bf:03:89:04:35:03:7d:de:fc:3f:0e:
d7:5a:14:e8:df:eb:c7:84:c8:68:67:95:69:78:69:
24:94:de:9e:cd:8e:fe:5e:82:a8:b1:33:69:9e:6a:
6d:25:a7:32:79:f9:3e:a0:b3:ec:09:3a:9a:fe:cf:
54:46:21:2d:4b:2e:d5:1a:ab:37:58:18:08:ed:24:
a7:fd:f0:7b:bf:3a:46:af:a3:ed:35:21:ab:d6:13:
e4:6f:8a:6e:c8:78:ce:f4:1d:86:63:8a:0b:79:56:
d7:f5:17:30:ef:b3:0b:e2:81:e5:03:4f:e2:dc:a0:
b8:86:e4:d7:4d:c8:09:a5:f2:1f:13:da:a7:aa:d0:
75:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:19:DC:FA:2C:D8:E1:8C:C0:E4:14:18:ED:7C:1B:C4:71:A5:40:01
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/JRnc-izY4YzA5BQY7XwbxHGlQAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:8900::/29
Signature Algorithm: sha256WithRSAEncryption
6a:58:b1:de:eb:03:22:1d:72:c9:aa:27:7e:e2:8d:f6:68:1b:
da:61:26:08:46:f1:a5:b2:5b:c4:f8:88:6e:70:82:31:8d:c2:
af:88:0d:53:41:05:6d:33:36:c3:89:3e:91:6e:d7:4d:58:bc:
ac:73:cc:c7:03:58:8d:12:d6:b5:2e:31:af:6d:e6:3d:57:a2:
26:b3:aa:da:74:f0:56:b1:7b:a9:31:72:98:d2:18:ff:fc:38:
60:39:58:df:65:07:66:5b:eb:ed:56:b0:ac:d9:49:02:ef:b9:
f9:af:56:32:70:31:f7:7d:34:92:68:12:14:a9:a0:3b:28:32:
db:b4:2b:7f:5d:1d:96:7b:67:af:f6:d5:1a:64:f2:8c:4a:a3:
d8:de:69:44:1f:a9:77:f1:10:93:5e:43:eb:e4:3b:33:93:ea:
0b:29:9e:c6:df:ae:b9:0a:36:49:c1:56:b0:08:dc:02:60:bd:
f2:dd:2c:d4:ed:61:06:87:31:b7:85:22:83:c7:6b:41:2e:fe:
01:2d:27:62:28:d8:02:2a:d5:e1:99:09:b0:2d:22:4f:7f:1d:
fc:d7:2f:4d:26:ee:1e:0d:3c:a0:f9:90:bb:c2:bd:32:d9:00:
4c:a3:e4:65:a7:7c:a2:54:fe:b1:21:fb:3c:20:6e:7c:b4:c8:
09:38:0a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org