Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/JMc32nwVY-FP6FndQ0NBqND-sfs.roa
File: JMc32nwVY-FP6FndQ0NBqND-sfs.roa (raw, json)
Hash identifier: zGsJF91rEe9aKXgAVXOxJ8vRmHhcBK7ESJYOpAAwkZA=
Subject key identifier: 24:C7:37:DA:7C:15:63:E1:4F:E8:59:DD:43:43:41:A8:D0:FE:B1:FB
Certificate issuer: /CN=22c5a0c2ac3b1679499a96be31e43be85cf09953
Certificate serial: 010DFA
Authority key identifier: 22:C5:A0:C2:AC:3B:16:79:49:9A:96:BE:31:E4:3B:E8:5C:F0:99:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsWgwqw7FnlJmpa-MeQ76FzwmVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/JMc32nwVY-FP6FndQ0NBqND-sfs.roa
Signing time: Tue 15 Feb 2022 13:23:00 +0000
ROA not before: Tue 15 Feb 2022 13:23:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15550
IP address blocks: 193.25.224.0/20 maxlen: 24
2001:678:9fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69114 (0x10dfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c5a0c2ac3b1679499a96be31e43be85cf09953
Validity
Not Before: Feb 15 13:23:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24c737da7c1563e14fe859dd434341a8d0feb1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d5:ee:3a:5e:21:52:7f:18:20:ff:0f:5d:a9:
cd:27:18:6c:90:45:70:e1:96:70:c3:1e:eb:89:fb:
b2:8b:7a:06:63:dc:44:9f:eb:62:5a:e9:a5:d1:a8:
28:03:74:67:17:a2:30:46:37:3b:c9:a1:67:9c:73:
90:f7:af:c7:03:74:1a:9e:e9:b4:f8:49:2d:22:ef:
70:7b:5b:75:a7:4b:13:93:83:ac:22:95:9f:15:56:
2e:25:c8:e3:6e:84:28:82:e2:fe:0a:d0:4f:4f:43:
d4:ef:af:7a:db:d5:fe:80:f3:47:36:d3:2e:7a:52:
6b:b9:43:da:2f:5e:20:84:a9:19:2a:12:4f:bb:24:
33:8d:d3:b5:fc:00:30:8d:ff:12:6d:35:3f:30:e4:
da:9c:1f:f5:0c:de:f8:db:b4:b2:0e:39:b6:dd:b0:
9f:a3:8a:64:88:ed:f3:18:3a:55:64:34:81:b8:d4:
12:c7:49:14:2e:4f:d6:13:a2:3b:b3:54:21:13:95:
ef:e6:5e:1e:47:38:44:b2:17:5c:18:2e:81:c5:10:
3f:87:5a:c9:1b:07:b7:0d:08:c5:5d:85:73:bb:42:
b8:8b:6e:ed:a4:dc:75:f2:d8:a5:fd:26:73:7e:60:
d0:ab:50:9c:3b:e6:f2:b7:b9:8e:a9:a4:ed:51:83:
05:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C7:37:DA:7C:15:63:E1:4F:E8:59:DD:43:43:41:A8:D0:FE:B1:FB
X509v3 Authority Key Identifier:
keyid:22:C5:A0:C2:AC:3B:16:79:49:9A:96:BE:31:E4:3B:E8:5C:F0:99:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsWgwqw7FnlJmpa-MeQ76FzwmVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/JMc32nwVY-FP6FndQ0NBqND-sfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/IsWgwqw7FnlJmpa-MeQ76FzwmVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.224.0/20
IPv6:
2001:678:9fc::/48
Signature Algorithm: sha256WithRSAEncryption
55:1c:90:e0:81:38:ad:02:e4:ea:9b:eb:ae:55:ca:cc:34:13:
36:e6:38:0d:65:38:b4:75:dc:a8:8e:b0:54:a7:3f:31:6b:d5:
88:36:5e:da:ee:a7:82:40:28:1c:7e:e3:8b:d4:a0:79:49:6f:
0d:8a:32:9c:21:15:16:d5:31:7a:3d:03:e3:59:3c:2e:0f:d5:
4f:eb:d9:96:c3:45:1e:b4:b1:32:61:9a:c3:60:7d:f3:d8:4b:
15:a5:89:3d:ba:e6:0b:ae:19:b6:3c:95:8b:6a:50:7f:2b:af:
56:3f:ba:7c:c4:8c:83:5f:a5:11:eb:53:9a:bd:5e:8e:80:0b:
ba:4d:8f:11:0f:8f:cb:87:9c:3b:06:38:d6:bb:9a:e4:dd:0e:
80:ed:0a:c2:00:df:3b:3a:76:5c:66:df:10:5b:e0:06:67:88:
96:42:ea:62:ce:c8:6c:61:5e:03:db:16:1a:be:6a:7f:c0:d4:
9d:bf:95:a2:9b:33:d2:3c:f1:4b:8c:f3:91:c8:ce:c8:db:45:
a7:06:e3:8c:f9:60:b6:3e:21:60:15:c9:54:39:30:a8:8d:d0:
8e:f3:95:59:d9:54:2d:12:31:bf:4b:2d:01:b2:f3:4e:76:30:
72:2b:e4:67:e0:ea:c8:91:2f:87:33:e3:2e:fe:eb:67:c6:41:
f0:cf:be:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org