Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/jJaGwh2_5VLrM7ttbqcBG1b3pbY.roa
File: jJaGwh2_5VLrM7ttbqcBG1b3pbY.roa (raw, json)
Hash identifier: OQjK3PuaRKuvMFWJAZTLIa3hdE/ZcqRbpor42OjvRWE=
Subject key identifier: 8C:96:86:C2:1D:BF:E5:52:EB:33:BB:6D:6E:A7:01:1B:56:F7:A5:B6
Certificate issuer: /CN=5271438e23ce925e66c259981221b5b683a2f08f
Certificate serial: 01830C9B86700151A23C22C87F3223889BE8
Authority key identifier: 52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/jJaGwh2_5VLrM7ttbqcBG1b3pbY.roa
Signing time: Mon 05 Sep 2022 07:44:22 +0000
ROA not before: Mon 05 Sep 2022 07:44:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41940
IP address blocks: 194.60.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:9b:86:70:01:51:a2:3c:22:c8:7f:32:23:88:9b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5271438e23ce925e66c259981221b5b683a2f08f
Validity
Not Before: Sep 5 07:44:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c9686c21dbfe552eb33bb6d6ea7011b56f7a5b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c3:52:8e:47:d5:d5:59:9c:7e:9a:83:c7:dd:
cf:2a:44:a5:db:d5:03:05:c6:cf:79:4f:bf:aa:65:
d3:50:a5:70:77:e4:21:48:58:6c:09:06:f8:0c:0b:
af:94:36:2e:c2:48:e4:37:4f:e5:19:26:c3:7f:7e:
81:04:3d:4c:8a:58:cd:b4:b7:45:31:3b:c0:2b:d9:
de:36:75:6e:25:96:c9:4f:f3:c0:4c:d5:d6:e9:ec:
78:5c:a8:ce:97:1d:bf:b5:2a:5f:64:19:23:d6:a9:
a7:fb:11:d5:bd:3b:ef:71:3a:27:6a:a8:14:13:ba:
bd:c5:fc:ef:9f:da:9f:23:6e:ea:e7:7a:1c:ea:9e:
b1:87:b4:52:50:b7:97:9b:e5:69:11:17:0f:1f:e3:
ac:f7:ad:e6:78:5b:49:7c:15:9c:ea:93:b6:e8:9f:
65:24:a5:40:c0:b7:74:6c:47:e1:b4:28:2f:8b:d8:
86:c5:d1:cb:e6:d4:c0:ef:f7:6e:0f:4a:2b:67:4c:
b3:5c:94:4d:48:30:e1:07:4f:06:22:29:d1:a4:dc:
e1:97:27:9c:70:ab:e4:0f:ad:1f:49:5b:7d:11:e4:
bd:ea:66:fe:68:6e:4d:85:77:2f:8e:9e:81:95:83:
c2:e3:e4:10:e0:8c:c5:1d:af:20:6c:ca:f6:cd:4d:
a3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:96:86:C2:1D:BF:E5:52:EB:33:BB:6D:6E:A7:01:1B:56:F7:A5:B6
X509v3 Authority Key Identifier:
keyid:52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/jJaGwh2_5VLrM7ttbqcBG1b3pbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.77.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:34:f8:72:66:54:6d:a3:fc:b7:6f:56:35:53:85:46:8c:29:
35:59:8e:07:fd:d3:4a:b4:66:c7:2f:56:30:9d:d5:0c:28:91:
26:b9:c9:03:fa:bb:f2:0e:e8:45:54:f0:66:62:b5:4d:6b:3a:
87:8b:ed:d5:d1:cc:33:4e:56:24:66:86:9e:e2:57:f3:5b:30:
77:b3:1d:7b:3b:c8:4f:19:df:d5:b6:2d:a2:76:c9:81:3b:18:
7c:d3:3b:6f:73:83:30:3e:7d:a8:79:0a:f8:f9:97:f5:1f:74:
ed:28:92:3e:c9:fc:e4:77:6d:5f:02:57:f9:0d:1d:02:cb:83:
2e:ce:8c:91:34:63:6e:ed:e1:b9:3d:81:a1:14:c6:f7:d4:ed:
23:d9:ea:d7:dc:29:88:0d:f9:c4:1f:4c:5e:23:cf:07:9c:1b:
69:e9:3d:05:b3:1c:52:09:07:14:2f:b0:f6:9f:a6:d3:8a:41:
ab:a8:2b:68:23:b9:c6:fb:7d:bc:49:de:5e:98:30:2a:ab:f4:
cd:f8:92:79:a3:d7:8f:df:73:e2:8b:5e:b7:9c:90:db:24:eb:
5f:83:c4:5e:f9:d8:78:15:e7:8a:91:1f:e5:5b:ae:ea:78:e6:
b8:91:6f:bf:ce:1f:63:b1:4a:cd:54:ea:ca:11:27:c6:0a:0f:
02:88:78:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:30 2024 by rpki-client on console-ams.rpki-client.org