Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/12c13e-f675-4882-bbe6-48d3ca161bb0/1/J-U9mKPSN2Ri452rU2LgIhBRDBI.roa
File: J-U9mKPSN2Ri452rU2LgIhBRDBI.roa (raw, json)
Hash identifier: 4MfE9aNTWRRa9GB1ewnD90Kp4EcUTRv+5JM76Ccawoo=
Subject key identifier: 27:E5:3D:98:A3:D2:37:64:62:E3:9D:AB:53:62:E0:22:10:51:0C:12
Certificate issuer: /CN=65121c3f9207a37345e38702c89d179bf444aa08
Certificate serial: 0B631DE9
Authority key identifier: 65:12:1C:3F:92:07:A3:73:45:E3:87:02:C8:9D:17:9B:F4:44:AA:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRIcP5IHo3NF44cCyJ0Xm_REqgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/12c13e-f675-4882-bbe6-48d3ca161bb0/1/J-U9mKPSN2Ri452rU2LgIhBRDBI.roa
Signing time: Sat 01 Jan 2022 12:00:53 +0000
ROA not before: Sat 01 Jan 2022 12:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17621
IP address blocks: 194.138.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191045097 (0xb631de9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65121c3f9207a37345e38702c89d179bf444aa08
Validity
Not Before: Jan 1 12:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27e53d98a3d2376462e39dab5362e02210510c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3e:68:78:b3:17:f9:0e:b8:a9:60:03:55:4d:
cb:12:07:fd:a6:06:2e:79:86:89:a6:6f:b0:57:0b:
9d:f1:41:9e:25:e5:a3:32:7c:ef:b7:89:63:69:29:
7d:27:eb:c8:eb:b4:fd:40:48:66:15:b2:5b:f7:ae:
6c:ab:91:7b:24:8b:56:5f:dd:d6:2a:0b:5b:4e:f0:
09:56:83:3e:36:50:eb:e9:0b:7b:08:90:8a:d6:85:
e6:38:c7:85:37:55:88:37:88:41:c7:d2:41:36:4a:
c8:50:1f:2c:6a:72:2d:e0:a0:76:4d:80:f8:e3:79:
fe:ca:93:52:2a:67:43:1d:9d:83:43:a3:ff:f3:a6:
b0:f1:af:12:93:4c:e8:c7:67:dc:38:aa:48:be:07:
61:12:20:0c:8d:56:2d:64:24:7f:dd:89:c4:ae:12:
de:56:e4:18:65:10:77:f8:10:44:50:a5:4a:5d:63:
a9:f6:05:2f:d5:35:eb:34:2b:7e:2b:a5:3a:d8:4c:
b1:cc:1c:41:90:d6:1f:39:ba:dd:70:53:dd:6c:82:
33:0b:a2:06:bd:54:d5:b1:3f:87:55:04:12:87:1d:
e9:a1:af:23:2b:cb:66:a1:b9:fa:63:8b:5a:74:f6:
ab:26:4c:72:57:02:23:95:da:18:7e:54:d5:b3:ad:
c8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E5:3D:98:A3:D2:37:64:62:E3:9D:AB:53:62:E0:22:10:51:0C:12
X509v3 Authority Key Identifier:
keyid:65:12:1C:3F:92:07:A3:73:45:E3:87:02:C8:9D:17:9B:F4:44:AA:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRIcP5IHo3NF44cCyJ0Xm_REqgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/12c13e-f675-4882-bbe6-48d3ca161bb0/1/J-U9mKPSN2Ri452rU2LgIhBRDBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/12c13e-f675-4882-bbe6-48d3ca161bb0/1/ZRIcP5IHo3NF44cCyJ0Xm_REqgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.138.203.0/24
Signature Algorithm: sha256WithRSAEncryption
39:42:37:7a:3e:01:61:40:2a:ef:dc:2c:e6:da:3a:5f:f0:0b:
74:32:d2:9c:f2:bb:c5:13:5b:fa:2b:f5:ac:ae:66:9e:c2:de:
32:50:9b:37:94:99:69:10:95:d5:90:3d:29:fd:e2:1a:cc:2e:
08:96:88:8e:36:e3:55:1b:80:d8:86:ad:5a:5d:9b:5d:34:ac:
00:52:c3:08:e8:6f:0d:43:60:cd:66:35:4b:05:6e:12:f4:b0:
86:cc:0f:c6:f7:57:6b:c7:5b:a7:e3:6a:c0:56:a4:9e:d7:21:
d2:33:5b:6e:d2:90:36:50:1a:ef:fa:50:b1:81:d1:c7:14:ab:
50:89:1d:2d:f3:95:e9:87:83:47:7c:a6:a8:10:a5:92:a1:2f:
ec:90:51:bc:6c:68:12:47:67:c7:3e:60:cb:76:c8:f3:31:2e:
4d:15:e9:74:b9:42:7e:4f:1c:a9:3f:60:78:58:54:f3:3b:dd:
d6:f3:6d:0c:24:10:15:62:42:32:ff:86:ff:5e:ef:03:d3:0d:
51:9c:23:5f:54:c8:ee:bf:91:29:f3:a3:f5:b6:f5:26:d3:35:
0d:3c:d8:e3:bd:5e:43:76:c3:e0:5b:11:b8:84:ee:17:c4:1b:
db:c8:81:8a:70:59:89:8a:ba:ed:cf:0d:fe:4a:e6:da:60:71:
0e:78:2e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:51 2023 by rpki-client on console-fra.rpki-client.org