Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/JzTREfdpGU9qKw2bZ11RYHeh-lo.roa
File: JzTREfdpGU9qKw2bZ11RYHeh-lo.roa (raw, json)
Hash identifier: 3biVkUMU7kewenu4ukhmVqrGutN9CK3Uvo4VXkS9sv4=
Subject key identifier: 27:34:D1:11:F7:69:19:4F:6A:2B:0D:9B:67:5D:51:60:77:A1:FA:5A
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0AA8BD2B
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/JzTREfdpGU9qKw2bZ11RYHeh-lo.roa
Signing time: Sat 01 Jan 2022 12:00:05 +0000
ROA not before: Sat 01 Jan 2022 12:00:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43391
IP address blocks: 92.45.72.0/24 maxlen: 24
92.45.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178830635 (0xaa8bd2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 12:00:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2734d111f769194f6a2b0d9b675d516077a1fa5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3e:3b:be:b3:78:b3:db:d5:ac:c2:0e:cf:b2:
44:24:51:7c:a5:16:0f:50:c3:b0:87:59:cb:a2:6e:
4f:e3:6e:f3:72:76:a3:cb:df:1e:ef:a9:6e:e9:05:
18:fe:2e:86:ba:1a:64:74:22:5f:ef:3b:99:23:a1:
cd:88:3a:97:f9:00:38:56:7e:3a:d0:96:20:d7:77:
f7:87:e6:16:aa:8d:cd:0d:9e:c6:de:1d:11:df:cd:
5e:75:91:b9:07:ca:14:4e:fb:d8:45:26:da:d3:c7:
1e:17:07:ee:63:88:18:ba:91:af:7f:c3:96:b1:d0:
cc:dc:b9:26:73:dc:ae:2a:a3:20:80:75:a5:2f:1e:
22:65:99:0a:10:33:cd:cb:36:45:3d:58:04:99:56:
ff:df:da:67:79:e4:02:bc:79:5b:c9:a5:cb:3e:03:
fb:51:47:1e:19:1a:e2:2e:45:6f:da:ff:3c:d7:2d:
e9:df:63:76:23:ba:d0:f3:74:c5:a1:67:11:6f:bd:
b9:a4:d4:15:4b:ab:b7:a7:71:bc:5e:56:f2:68:19:
4e:f7:be:60:13:f2:38:f5:72:a3:f2:96:df:21:25:
29:bc:23:ae:c5:38:75:1e:0d:d3:cc:ba:db:fc:31:
33:70:1f:a6:6c:f9:06:44:64:64:e7:3c:30:67:ae:
61:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:34:D1:11:F7:69:19:4F:6A:2B:0D:9B:67:5D:51:60:77:A1:FA:5A
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/JzTREfdpGU9qKw2bZ11RYHeh-lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.45.58.0/24
92.45.72.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:b5:39:97:a6:44:63:5d:20:83:e1:ab:1b:c0:6e:1a:87:6a:
f9:ae:8f:80:00:32:dd:2e:77:82:c8:16:01:f2:ee:a5:bb:96:
20:bf:a1:01:40:03:f2:3c:35:07:fe:1c:44:93:0a:d1:10:b9:
c7:63:22:ec:26:20:53:89:b8:2a:5f:e4:9a:9e:dd:a8:17:38:
9f:5e:c0:f8:b5:3d:cc:f0:bf:fb:bb:cd:f5:97:d5:55:7d:6a:
be:b5:86:eb:f5:8c:43:16:66:9f:89:ba:82:de:b6:2c:7b:b8:
34:4d:b9:0e:fa:c6:53:b3:1c:63:94:bf:af:3d:f2:1d:16:3d:
91:a7:03:a5:fb:5a:90:b7:9b:d3:ee:6f:1f:6b:9b:83:f6:28:
19:a5:2d:ea:6a:9e:9e:ae:db:d2:2b:5c:e5:a7:6a:ad:80:93:
ad:26:ba:3e:a8:24:2a:5a:b9:26:67:ca:d6:0c:a7:04:30:a4:
89:bf:0f:d1:ba:d8:02:d5:68:b7:46:e5:24:35:76:bc:42:3d:
66:eb:1e:a7:73:ab:35:41:17:53:ac:ef:8c:9c:83:2e:17:a0:
49:3c:08:ff:3e:c0:f9:43:3f:63:fc:e9:22:ea:ad:7f:c2:ce:
18:8a:2a:ef:59:38:5e:ee:11:a6:2e:89:b5:6f:27:27:81:4b:
f4:d7:7c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:30 2023 by rpki-client on console-fra.rpki-client.org