Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/JGUTHzX5vUZNP4_niNFsy67D5c4.roa
File: JGUTHzX5vUZNP4_niNFsy67D5c4.roa (raw, json)
Hash identifier: RKWifyMYbohMezwg03zn2CkesET5ESQrdIPcYErhS4o=
Subject key identifier: 24:65:13:1F:35:F9:BD:46:4D:3F:8F:E7:88:D1:6C:CB:AE:C3:E5:CE
Certificate issuer: /CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Certificate serial: CEEE55
Authority key identifier: 9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/JGUTHzX5vUZNP4_niNFsy67D5c4.roa
Signing time: Sat 01 Jan 2022 12:05:31 +0000
ROA not before: Sat 01 Jan 2022 12:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47984
IP address blocks: 91.207.26.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13561429 (0xceee55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Validity
Not Before: Jan 1 12:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2465131f35f9bd464d3f8fe788d16ccbaec3e5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:10:dc:04:d9:a5:08:e2:05:05:06:bb:de:0a:
a6:fa:15:95:fa:24:4c:c6:53:45:7d:a5:f4:2a:d3:
fa:79:5f:25:fb:44:af:5d:f0:83:cd:ed:05:de:25:
40:38:7c:11:c6:97:e0:04:51:5d:e0:db:54:00:22:
e9:35:d0:5c:04:e9:70:fe:d0:0f:66:91:83:e7:85:
f2:76:09:02:c9:bc:d2:66:ee:fe:5b:ef:4f:48:38:
ab:5e:57:d1:8e:11:1e:b4:7c:4a:5d:ed:db:bc:22:
18:89:26:a6:33:55:74:68:2d:38:9f:54:08:08:22:
8e:37:b5:49:59:71:0d:1d:c5:83:d5:d5:11:45:5f:
aa:17:65:2c:02:ee:44:a2:66:f3:85:0b:6f:9b:2c:
ae:7d:7e:ea:2d:69:40:16:10:e6:45:c2:0d:2d:2f:
a9:f1:f2:88:0f:0c:83:43:6d:15:b3:08:d0:48:c2:
a1:66:0e:63:33:95:98:f4:c7:5c:27:68:77:3a:58:
44:7f:11:7d:42:e7:e2:67:e6:e9:e0:16:47:b5:7c:
98:25:e7:aa:0f:dd:b6:e1:2c:35:67:75:fe:c3:77:
b3:6b:11:c5:19:48:59:cb:0b:a2:d6:5d:e7:ed:1f:
33:05:37:a7:cb:c3:c1:0a:06:5d:54:cc:86:d1:bc:
18:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:65:13:1F:35:F9:BD:46:4D:3F:8F:E7:88:D1:6C:CB:AE:C3:E5:CE
X509v3 Authority Key Identifier:
keyid:9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/JGUTHzX5vUZNP4_niNFsy67D5c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/nozX1qQQV1C_iXWn0LlnlMHv5iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.26.0/23
Signature Algorithm: sha256WithRSAEncryption
98:c7:93:eb:64:a0:3d:4a:7f:01:a7:c6:46:7a:a0:7b:f2:cc:
62:03:b2:de:7e:48:04:a7:aa:4a:bc:ad:16:5b:d5:2c:54:9d:
82:f4:63:42:5a:0a:61:bb:8f:95:01:17:d2:59:83:ae:60:d9:
40:f2:0d:1f:ac:20:42:33:bb:74:5d:b6:e2:f6:63:f7:e8:aa:
41:e3:50:46:67:54:3b:4f:7a:9c:35:e9:fc:01:f2:49:6e:d0:
ed:7e:c3:b5:3c:5e:ba:c8:cb:11:c1:90:bd:e7:5e:90:1f:be:
71:04:54:b0:29:0d:1f:b8:7f:63:f4:4c:ae:34:cb:21:6b:81:
e3:1d:d3:a4:f6:6b:65:f5:44:5c:f6:a3:07:ad:24:7c:49:5b:
3e:bd:f1:2a:9a:68:3b:cc:5e:2c:d4:8f:13:de:fd:3f:14:d1:
4e:6b:6a:bf:a3:d6:05:9c:84:c6:4f:a0:d0:56:ed:b8:43:fc:
3c:78:d6:c3:dc:47:66:94:19:0c:02:49:bd:06:db:a1:95:a1:
8a:64:70:00:75:97:be:7f:bd:fa:79:0b:53:14:2c:3e:68:2b:
c2:94:6a:ff:2d:41:0d:fd:44:91:9f:8d:e8:07:eb:c4:59:8d:
4b:20:01:a0:d4:0e:a1:55:c9:94:c5:1a:89:16:6e:4c:38:63:
f0:36:04:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:17 2023 by rpki-client on console-ams.rpki-client.org