Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/a3ff72-37a7-47f8-950e-2d4bf9104099/1/JrBEnmy99rOeWadG8M_qPSTfrM0.roa
File: JrBEnmy99rOeWadG8M_qPSTfrM0.roa (raw, json)
Hash identifier: YuLukBBV+U8QZdtBkmwT+9GbKVFfZ8JIt2UDDtx9jn0=
Subject key identifier: 26:B0:44:9E:6C:BD:F6:B3:9E:59:A7:46:F0:CF:EA:3D:24:DF:AC:CD
Certificate issuer: /CN=b9247a6d39ec8c90f6727bea2dbc80f1410999ad
Certificate serial: 47C2D9
Authority key identifier: B9:24:7A:6D:39:EC:8C:90:F6:72:7B:EA:2D:BC:80:F1:41:09:99:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uSR6bTnsjJD2cnvqLbyA8UEJma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/a3ff72-37a7-47f8-950e-2d4bf9104099/1/JrBEnmy99rOeWadG8M_qPSTfrM0.roa
Signing time: Sat 12 Feb 2022 17:56:50 +0000
ROA not before: Sat 12 Feb 2022 17:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 146.255.188.0/24 maxlen: 24
2a11:c880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4702937 (0x47c2d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9247a6d39ec8c90f6727bea2dbc80f1410999ad
Validity
Not Before: Feb 12 17:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26b0449e6cbdf6b39e59a746f0cfea3d24dfaccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:ac:07:aa:71:c7:0e:b8:6d:6e:da:40:da:
92:31:db:d2:14:41:97:15:c4:52:20:0d:f5:cb:aa:
d2:8e:5e:ec:75:49:fa:9d:ad:47:42:3b:ba:95:a8:
0c:22:67:c8:6b:b2:33:54:47:e9:47:95:da:88:90:
85:ec:db:58:e9:31:2d:7a:9f:a4:92:bd:8b:30:e0:
2b:5e:48:5c:f4:8a:ad:bb:90:7d:c3:ff:5e:79:65:
51:e6:04:ed:c9:b7:fc:59:e3:ca:9f:ed:94:5c:24:
bf:cd:0a:6d:a0:2f:b1:28:8e:20:96:20:32:60:dc:
26:e7:43:a4:9f:21:3a:7f:e6:50:36:64:70:3c:e7:
e6:08:5a:ff:08:51:cf:a4:f1:a1:51:99:b1:4d:c5:
62:1f:0a:62:61:28:1d:ec:e0:d4:a2:fd:2e:89:a4:
44:8d:35:9e:91:25:04:31:ee:ce:33:a2:38:db:77:
0f:38:2e:f1:da:66:ef:da:f4:89:45:33:59:f0:1f:
ad:ff:3b:08:83:a4:b5:fa:1d:55:ae:f5:55:70:af:
63:45:01:08:5d:f6:0b:54:8e:b7:cc:06:ac:46:11:
d9:56:82:c3:a4:45:f3:10:90:01:39:9a:d3:37:fe:
71:25:38:98:6c:75:cf:c4:f6:4a:9e:7b:dd:cd:af:
ae:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B0:44:9E:6C:BD:F6:B3:9E:59:A7:46:F0:CF:EA:3D:24:DF:AC:CD
X509v3 Authority Key Identifier:
keyid:B9:24:7A:6D:39:EC:8C:90:F6:72:7B:EA:2D:BC:80:F1:41:09:99:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uSR6bTnsjJD2cnvqLbyA8UEJma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/a3ff72-37a7-47f8-950e-2d4bf9104099/1/JrBEnmy99rOeWadG8M_qPSTfrM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/a3ff72-37a7-47f8-950e-2d4bf9104099/1/uSR6bTnsjJD2cnvqLbyA8UEJma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.188.0/24
IPv6:
2a11:c880::/29
Signature Algorithm: sha256WithRSAEncryption
b3:91:13:97:56:9f:a7:ea:a9:01:36:1e:6d:8a:32:99:fe:04:
d9:c5:5c:f5:58:f0:e4:88:98:99:dc:b2:e4:9e:15:ea:47:8e:
40:e1:d9:7c:db:aa:45:36:d5:e2:e2:70:87:d3:11:69:ea:aa:
1f:82:d6:a4:8c:8f:11:d9:16:3b:a8:59:a2:24:8b:cc:c1:19:
7f:39:4f:c1:5b:9b:53:15:5f:08:b5:0e:30:51:c8:ce:fb:cc:
00:ab:d8:7e:51:e2:0e:6c:79:61:43:45:1f:0f:4a:01:a4:09:
91:1a:f4:38:35:1f:a1:fc:0b:93:d6:ed:f2:cc:3e:3b:42:0b:
74:fd:57:2d:55:6e:f4:9c:03:d8:63:39:58:ff:4c:92:6e:86:
a9:d1:a9:89:69:3e:d1:d1:c5:80:76:e7:08:3b:b8:92:7a:53:
c2:97:67:de:54:4f:4a:3c:43:ff:e4:c0:df:5c:bf:f2:36:7e:
79:47:65:96:25:be:4f:02:ba:02:be:99:96:50:e3:35:b4:e7:
73:71:ed:a2:3f:0f:62:22:fb:a8:db:10:f4:a9:05:20:ed:5d:
a9:f0:78:c9:0f:d0:d7:61:f6:27:fe:d2:2a:96:1f:af:15:27:
03:3a:d8:f1:e5:9b:7d:d0:97:18:e5:96:ae:2c:12:5f:59:4d:
1d:5c:c2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:13 2023 by rpki-client on console-ams.rpki-client.org