Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cc843e-60c7-47ac-823b-f8d6bd30cc19/1/jsHr4IzhirgMjBUK6vtxQrA5W5s.roa
File: jsHr4IzhirgMjBUK6vtxQrA5W5s.roa (raw, json)
Hash identifier: 2b8osG5R+O7QOlaFFbmIUdHJcp/YqkG9JwnCEf2TYAc=
Subject key identifier: 8E:C1:EB:E0:8C:E1:8A:B8:0C:8C:15:0A:EA:FB:71:42:B0:39:5B:9B
Certificate issuer: /CN=0adcf62c6b5411139a5d1309dd9ed926f4314320
Certificate serial: 0386CE20
Authority key identifier: 0A:DC:F6:2C:6B:54:11:13:9A:5D:13:09:DD:9E:D9:26:F4:31:43:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ctz2LGtUEROaXRMJ3Z7ZJvQxQyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cc843e-60c7-47ac-823b-f8d6bd30cc19/1/jsHr4IzhirgMjBUK6vtxQrA5W5s.roa
Signing time: Sat 01 Jan 2022 07:01:52 +0000
ROA not before: Sat 01 Jan 2022 07:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208693
IP address blocks: 91.132.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59166240 (0x386ce20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0adcf62c6b5411139a5d1309dd9ed926f4314320
Validity
Not Before: Jan 1 07:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ec1ebe08ce18ab80c8c150aeafb7142b0395b9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:28:a4:82:02:ee:c5:84:86:fb:12:16:50:a9:
4c:ce:29:fc:d6:15:6b:90:f7:de:dc:91:a7:15:8c:
ab:39:d0:6f:d1:bb:8e:56:6d:87:48:63:7f:2f:ac:
05:6e:c5:60:b7:33:61:b8:46:f0:ae:f3:13:77:be:
b5:3b:db:49:0b:7d:cc:3a:fb:53:43:26:dd:22:7b:
cb:ee:ad:c4:be:be:c8:0a:0d:73:6e:5c:51:ad:11:
62:77:55:e7:ea:e3:59:91:de:7b:8d:b7:39:34:9b:
98:83:d8:f7:85:1c:19:eb:31:33:68:6b:75:0c:d7:
91:37:55:95:83:5d:85:1a:13:f9:09:4e:cc:f8:d8:
21:22:46:52:fd:77:1b:31:58:70:62:3c:0e:bd:af:
c8:34:5c:eb:1c:e4:02:60:cd:36:94:49:ac:40:64:
06:48:c4:83:6d:48:f9:8a:47:18:97:36:cc:72:a5:
b8:9d:c1:bf:62:1d:3c:db:8f:0f:52:8c:14:00:37:
15:a5:00:a0:95:b2:fb:7e:4b:fd:84:e7:64:1b:f9:
a7:d8:a9:eb:18:d3:9e:5d:aa:81:e5:59:e5:6d:c4:
b9:e6:a5:f4:f3:a6:f8:bb:56:b6:ad:2b:f5:69:16:
1c:a0:53:69:e0:fe:01:84:f4:19:a1:96:f4:6f:d2:
f8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C1:EB:E0:8C:E1:8A:B8:0C:8C:15:0A:EA:FB:71:42:B0:39:5B:9B
X509v3 Authority Key Identifier:
keyid:0A:DC:F6:2C:6B:54:11:13:9A:5D:13:09:DD:9E:D9:26:F4:31:43:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ctz2LGtUEROaXRMJ3Z7ZJvQxQyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cc843e-60c7-47ac-823b-f8d6bd30cc19/1/jsHr4IzhirgMjBUK6vtxQrA5W5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cc843e-60c7-47ac-823b-f8d6bd30cc19/1/Ctz2LGtUEROaXRMJ3Z7ZJvQxQyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.243.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:6a:39:81:6e:92:e1:bd:d5:7b:40:5b:a7:46:97:f2:a7:f5:
8f:02:af:03:d9:85:b2:a5:74:a8:f5:95:b2:37:56:33:be:c0:
f0:e7:66:2c:4e:51:7e:32:b6:14:85:57:cb:d1:b3:d9:81:71:
93:fe:b3:56:bc:ea:e1:7e:9f:c9:bf:f3:ca:da:12:65:fb:4c:
55:77:7f:4e:05:fb:a6:1f:d1:7d:6e:dc:19:24:f8:69:98:df:
50:90:78:2b:5a:43:98:8b:5b:3e:a7:ed:dd:38:6c:a2:da:7e:
d5:83:82:1e:54:e9:cb:8e:13:4d:24:e0:80:a5:b4:16:54:94:
a2:35:36:c7:79:23:cc:29:0d:a9:5e:e5:05:96:43:39:e4:35:
10:b9:9f:e9:7a:1d:a6:7d:5b:60:96:8b:3b:78:5c:71:1a:17:
c7:44:4e:0e:70:cf:fb:9b:00:dd:64:83:3b:49:2c:d2:74:35:
0f:5c:31:a6:8f:70:3f:4e:d3:cc:1a:cc:97:d3:1f:23:89:cf:
b0:e0:1b:28:3b:1a:99:85:bb:1c:d3:9e:d1:50:e8:d7:0b:2e:
4a:06:70:6b:7b:0a:2b:7d:b3:a4:cf:cb:05:a0:7b:32:47:c5:
79:62:de:10:65:64:ed:8c:53:5b:9b:68:49:4d:7f:30:15:ee:
2c:41:3c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:15 2023 by rpki-client on console-fra.rpki-client.org