Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/jV9f_ThMrrzJJW2hDfV5WTF2i8Y.roa
File: jV9f_ThMrrzJJW2hDfV5WTF2i8Y.roa (raw, json)
Hash identifier: syYounN1+6IiLK1+sLc4OUQPoTbRawPFiiwWwO80mzM=
Subject key identifier: 8D:5F:5F:FD:38:4C:AE:BC:C9:25:6D:A1:0D:F5:79:59:31:76:8B:C6
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 01828BFA23CAA56371347C5CD3D28A91E4C7
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/jV9f_ThMrrzJJW2hDfV5WTF2i8Y.roa
Signing time: Thu 11 Aug 2022 08:16:42 +0000
ROA not before: Thu 11 Aug 2022 08:16:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 166.108.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:fa:23:ca:a5:63:71:34:7c:5c:d3:d2:8a:91:e4:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Aug 11 08:16:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d5f5ffd384caebcc9256da10df5795931768bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:a5:ab:90:0a:55:5c:cb:ce:64:41:14:af:
85:2f:1f:bd:ad:fa:ee:54:fe:bc:35:5d:f8:2a:2b:
ac:cd:4f:a4:29:ce:ef:a9:fb:90:07:9a:0b:e0:8f:
22:ab:15:05:7e:8b:d4:43:16:dc:81:11:11:98:fc:
27:9a:ef:d2:8e:18:f2:55:80:a6:b5:1e:92:6d:3d:
86:6d:2c:36:6e:be:2d:1b:92:b1:0c:b7:25:20:74:
61:92:23:b3:c8:04:b1:62:e4:b5:42:96:2a:ae:bd:
fc:de:b9:e0:5b:8c:a1:57:a3:82:e2:e5:ae:8b:0f:
4b:42:4c:ed:13:40:a2:6d:da:35:5a:66:a1:5f:01:
21:97:b9:7d:c4:cc:b5:90:2e:38:3d:f3:8a:a1:e6:
83:27:d7:d3:c6:a1:89:91:22:1b:6f:32:52:32:c0:
1d:12:42:d9:28:2a:e7:c5:43:ae:be:89:d4:4b:03:
a3:2c:49:4c:9a:fb:dc:f0:f1:17:2f:d0:81:63:74:
4b:04:a8:ff:9b:fd:9e:4d:18:fc:a8:6a:1a:a3:18:
24:9c:e1:62:c8:84:8b:8d:41:d4:45:fe:16:76:8b:
ab:ce:b8:b7:31:45:ba:30:9b:c0:c7:e2:28:d6:a3:
1e:ce:98:2b:ab:55:50:7e:8b:36:24:a5:9e:d8:5d:
3b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:5F:5F:FD:38:4C:AE:BC:C9:25:6D:A1:0D:F5:79:59:31:76:8B:C6
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/jV9f_ThMrrzJJW2hDfV5WTF2i8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.188.0/22
Signature Algorithm: sha256WithRSAEncryption
96:0a:62:3a:14:3a:39:5f:a5:c1:78:28:15:e4:7c:10:a9:3c:
30:8d:25:f8:b3:0b:c9:1b:87:f1:e1:3c:b9:bd:0b:15:6a:d4:
be:b5:b1:49:5b:19:c2:1f:84:e8:a0:56:57:3f:d4:2c:80:df:
a0:36:4a:6b:a4:be:cc:c2:a9:8d:77:44:15:c6:7b:9b:08:f1:
47:d6:32:42:cc:a9:5f:f9:17:33:cd:3d:9d:ed:06:b1:db:d8:
ea:cc:5f:a4:46:f4:5e:93:de:fc:92:cf:49:9d:a1:31:cd:b2:
9a:2f:d3:47:93:aa:81:da:86:bc:95:99:5c:5c:b9:cf:2d:8a:
e1:ab:83:13:57:fb:de:48:b5:68:43:0c:84:f4:80:52:da:31:
75:37:15:f1:eb:63:77:b4:45:f0:8d:c4:b5:12:43:94:d2:97:
06:93:25:11:51:dc:a3:c9:a9:37:80:ad:a4:13:e5:e0:61:51:
e6:61:34:68:ff:9e:f6:55:4e:f2:79:d4:f6:71:4e:38:8c:a5:
ab:0e:02:88:8e:d3:35:47:1f:ca:6d:5c:16:a4:5e:c2:6e:33:
05:cb:8c:5a:0d:34:13:7f:01:4c:56:54:3f:09:a1:64:89:eb:
49:75:ed:03:2d:0c:38:3c:ab:f0:d0:8b:0a:81:a4:63:55:71:
36:54:af:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-fra.rpki-client.org