Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/jd-ZoHCfES2j6qo2pOEgyq-e9qc.roa
File: jd-ZoHCfES2j6qo2pOEgyq-e9qc.roa (raw, json)
Hash identifier: +0FowvSbZNwvF2VNuXXOYEpcY9zCChgk+IZL/mXgbso=
Subject key identifier: 8D:DF:99:A0:70:9F:11:2D:A3:EA:AA:36:A4:E1:20:CA:AF:9E:F6:A7
Certificate issuer: /CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Certificate serial: 46CF02
Authority key identifier: 61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/jd-ZoHCfES2j6qo2pOEgyq-e9qc.roa
Signing time: Thu 24 Mar 2022 03:44:32 +0000
ROA not before: Thu 24 Mar 2022 03:44:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 159.60.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4640514 (0x46cf02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Validity
Not Before: Mar 24 03:44:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ddf99a0709f112da3eaaa36a4e120caaf9ef6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3e:e8:15:99:4a:54:7d:56:20:1e:48:61:36:
fb:a8:c5:ba:4d:5a:b0:5c:48:a8:a1:b7:f7:39:d3:
94:9b:26:02:55:d0:be:8d:56:b8:c3:e6:73:b2:10:
a0:a4:15:a7:f3:1a:e4:f7:94:fb:c3:33:4b:e7:0b:
b4:8a:97:fe:f7:eb:05:24:70:e2:9b:41:4b:d2:90:
c3:3b:c4:56:d9:01:19:18:ef:4f:bb:26:f3:02:66:
af:c4:5b:4d:63:a0:3e:6a:66:d9:12:c4:f6:1d:e9:
9d:3d:b8:a5:cb:34:4c:d6:7c:4a:3c:f4:74:b5:ee:
86:ad:95:e6:da:f9:25:3b:25:0c:09:65:be:ec:98:
7f:fd:5d:29:d4:f1:0c:df:6c:19:8e:bb:96:e5:e5:
8b:d1:af:72:3e:49:75:08:69:78:c2:7a:ee:b7:c3:
00:56:6e:96:f1:47:eb:14:09:c1:21:63:ba:53:19:
19:ba:a6:51:3e:75:76:0c:17:b0:21:b7:82:fb:db:
b8:07:07:ed:c3:c5:9c:35:7f:0d:37:ab:89:c7:2f:
df:4e:1a:51:fb:ae:bb:13:b4:6a:d0:a6:8d:44:d7:
4e:a9:f7:bb:68:ac:8a:a1:4b:9f:66:13:e2:a4:91:
5a:a8:34:74:93:58:12:41:9f:a3:98:f4:82:b0:b0:
2b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DF:99:A0:70:9F:11:2D:A3:EA:AA:36:A4:E1:20:CA:AF:9E:F6:A7
X509v3 Authority Key Identifier:
keyid:61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/jd-ZoHCfES2j6qo2pOEgyq-e9qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.60.192.0/18
Signature Algorithm: sha256WithRSAEncryption
9c:e5:f1:b1:18:04:d8:a0:83:5e:31:01:ba:bd:1e:fc:33:68:
29:45:ce:7b:c6:4a:95:29:32:9a:6c:bb:da:da:9f:ae:3e:f9:
f3:62:4e:1f:ba:e9:ca:31:89:b2:d3:d7:a8:1c:d0:91:4f:0a:
6f:13:3b:93:97:14:57:99:5a:d2:32:ae:ce:cd:33:ed:9f:b5:
e9:54:17:56:5a:08:36:ec:bb:55:88:78:79:72:ab:1e:e5:1b:
91:02:46:6f:4d:42:26:d2:31:93:a3:06:69:b7:cf:20:cb:53:
8f:86:b2:5b:28:8e:c1:73:2a:9d:96:c7:30:f0:c9:f0:d8:e4:
a2:b8:62:19:8e:83:d3:e7:f9:7a:f2:66:cd:8d:95:0d:c0:ed:
4c:6a:ea:33:59:ff:fa:5a:94:44:c6:3e:bd:a1:85:14:16:3a:
e9:03:bb:4b:ca:94:cf:72:a7:d3:21:e7:d5:87:f1:04:3a:a8:
44:d7:36:16:7f:55:6a:65:bf:25:3c:bb:6f:26:40:a7:0e:9d:
b1:6d:0f:c0:f0:03:34:2c:c0:76:09:63:37:a0:25:f1:ca:fe:
a9:fb:49:5d:63:76:86:5b:59:c1:f5:7a:54:5b:32:16:df:cf:
2b:38:39:af:ad:53:3e:66:64:25:95:79:8e:d8:33:66:52:6a:
d7:5d:16:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:23 2023 by rpki-client on console-ams.rpki-client.org