Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/jZDJmB1EOi9o-RcmGf-iTEAtJRg.roa
File: jZDJmB1EOi9o-RcmGf-iTEAtJRg.roa (raw, json)
Hash identifier: XMotAyC8LbN+0FdZQTvRY7hS1N1vNKc0FXMhy3ovp5w=
Subject key identifier: 8D:90:C9:98:1D:44:3A:2F:68:F9:17:26:19:FF:A2:4C:40:2D:25:18
Certificate issuer: /CN=78fd0b69777bd05dcdfc98942eedefbb0681282f
Certificate serial: 01ED1B
Authority key identifier: 78:FD:0B:69:77:7B:D0:5D:CD:FC:98:94:2E:ED:EF:BB:06:81:28:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eP0LaXd70F3N_JiULu3vuwaBKC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/jZDJmB1EOi9o-RcmGf-iTEAtJRg.roa
Signing time: Tue 01 Mar 2022 14:20:42 +0000
ROA not before: Tue 01 Mar 2022 14:20:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51614
IP address blocks: 83.143.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126235 (0x1ed1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78fd0b69777bd05dcdfc98942eedefbb0681282f
Validity
Not Before: Mar 1 14:20:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d90c9981d443a2f68f9172619ffa24c402d2518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:29:b4:81:72:40:05:45:09:e9:b9:57:52:06:
5c:b8:50:50:f0:3b:4f:c5:16:b9:ab:f7:90:0d:92:
95:01:e5:30:81:31:89:66:c5:47:ed:27:0c:fb:e5:
da:10:f2:e2:14:ec:81:2c:b9:f3:c3:6f:70:fe:c4:
42:f3:8e:bc:0c:c1:6f:6d:4c:1a:13:e6:56:25:97:
c9:8a:6d:a7:89:d7:a8:ea:87:b8:64:af:4d:b4:63:
52:5a:0f:b1:2e:e1:2c:b7:07:dc:5f:dd:fb:18:9b:
9c:e8:76:84:e8:65:de:41:fd:14:ef:cb:21:2c:15:
f3:81:51:de:84:41:a9:8f:04:14:c6:52:c1:29:58:
ef:57:11:d0:20:19:47:b9:cb:03:9c:17:2b:a8:a2:
61:35:41:a2:87:63:ad:99:cd:22:f2:21:84:a2:3b:
37:5d:54:25:71:f9:dd:9c:85:5e:a0:8e:83:87:1d:
6d:3b:fd:19:c8:4f:97:e7:e0:cc:3b:57:a6:ef:2f:
ae:ae:89:33:b2:11:a8:0d:5e:53:2a:e6:cb:32:96:
26:9c:ee:ca:fa:0f:58:fe:81:8c:22:3c:be:d5:f2:
4b:36:e6:8a:67:f4:d1:de:ad:ed:bb:54:5a:79:dc:
55:7e:84:db:b9:7c:dd:a1:4f:a6:31:1c:2f:51:56:
38:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:90:C9:98:1D:44:3A:2F:68:F9:17:26:19:FF:A2:4C:40:2D:25:18
X509v3 Authority Key Identifier:
keyid:78:FD:0B:69:77:7B:D0:5D:CD:FC:98:94:2E:ED:EF:BB:06:81:28:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eP0LaXd70F3N_JiULu3vuwaBKC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/jZDJmB1EOi9o-RcmGf-iTEAtJRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3d3e70-3f88-4698-ba41-95e8728a2577/1/eP0LaXd70F3N_JiULu3vuwaBKC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.143.176.0/21
Signature Algorithm: sha256WithRSAEncryption
99:22:53:95:6a:b4:c1:a7:10:c2:65:76:6c:68:23:9c:55:f3:
d8:1c:7d:ed:af:5b:35:61:19:ce:4d:9a:12:ac:f9:14:6f:96:
9e:94:bd:d5:f0:ce:43:ed:06:57:a4:6c:30:74:4d:1d:8e:4c:
09:a7:c8:26:2b:7c:1e:47:ba:86:7d:00:dd:6e:3a:33:3b:78:
13:43:e9:e3:b9:80:55:df:5b:bf:1f:24:5f:b1:8a:44:8a:02:
0e:55:27:50:02:24:b0:68:b2:df:a2:8f:59:a1:bd:66:74:fd:
d1:a0:7c:7d:42:24:1a:e9:36:22:b7:02:94:97:1f:e1:d8:24:
26:f9:b7:31:85:68:7a:4b:e9:6b:d1:06:b3:39:40:86:b5:21:
1d:77:87:c7:e2:8c:cf:41:1d:06:24:04:63:fb:55:91:86:f4:
3b:06:11:9d:0b:25:d0:c0:ec:55:db:82:2d:a9:0c:5c:fa:65:
5f:93:0f:f0:43:2e:b2:1b:e5:c3:cc:54:ce:d3:21:76:d9:cf:
07:51:a9:ac:01:63:61:fd:2b:9b:05:7a:af:3e:81:14:80:c0:
65:19:23:be:ca:6e:cf:aa:0b:6a:72:b6:cb:7b:2b:ed:b9:d9:
a9:48:72:ec:8b:75:a3:8a:11:02:7d:92:30:23:60:4e:55:dc:
3f:cd:7e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:18 2023 by rpki-client on console-ams.rpki-client.org