Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/jAiGJvJI1fcNNAhijwF1WA1paMc.roa
File: jAiGJvJI1fcNNAhijwF1WA1paMc.roa (raw, json)
Hash identifier: lvpamIhltN+N9PXcCE+SNA+WDZOo4voEixd1dQT+nYU=
Subject key identifier: 8C:08:86:26:F2:48:D5:F7:0D:34:08:62:8F:01:75:58:0D:69:68:C7
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018240157098B8A6C9A46B2523A76F8F9CF8
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/jAiGJvJI1fcNNAhijwF1WA1paMc.roa
Signing time: Wed 27 Jul 2022 14:35:23 +0000
ROA not before: Wed 27 Jul 2022 14:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44422
IP address blocks: 5.182.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:15:70:98:b8:a6:c9:a4:6b:25:23:a7:6f:8f:9c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jul 27 14:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c088626f248d5f70d3408628f0175580d6968c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:24:33:fd:6d:4d:1a:ce:c4:0e:a2:6f:37:11:
ff:38:37:58:c6:c9:6c:64:c7:66:2a:83:4b:b7:4a:
f1:f6:a9:d6:a5:a9:6c:60:68:14:43:ce:33:52:f6:
e8:64:0c:d5:8f:17:47:0c:b9:ec:25:2a:69:3a:8a:
06:03:0e:87:bd:cd:19:2e:bd:59:29:ca:0f:44:d4:
d9:94:d5:aa:9e:40:cd:b2:5d:68:d7:72:a8:7d:46:
80:75:9f:0b:8a:70:5b:4a:6b:f8:51:b4:b4:92:98:
48:3b:fc:bb:1a:b9:bb:c1:e7:1b:06:3b:b8:c9:18:
8c:b9:fc:89:a6:1c:a1:cc:f1:ad:8f:75:8c:e2:d0:
71:7f:6a:a2:51:61:95:23:a2:29:19:40:09:b3:02:
f3:2f:2f:fb:45:bf:5a:29:ef:e6:75:02:7f:26:ad:
f5:de:54:93:d7:41:10:a8:a8:5c:09:39:e8:58:fc:
46:8e:2c:72:04:51:78:86:c1:99:7a:27:be:55:fb:
21:86:b2:0c:12:e0:af:c8:01:d1:b8:96:0c:6b:cd:
ef:44:e5:b9:f6:14:3f:08:e0:80:bb:7b:4e:96:dc:
e0:e8:cb:0a:c6:01:bc:29:d3:ff:ce:f4:50:45:67:
38:e1:eb:8f:c2:3d:f7:e7:58:29:cd:1c:28:bc:32:
cc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:08:86:26:F2:48:D5:F7:0D:34:08:62:8F:01:75:58:0D:69:68:C7
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/jAiGJvJI1fcNNAhijwF1WA1paMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.39.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:54:31:38:56:cf:80:0f:fa:89:a3:5e:9a:60:d4:29:3d:be:
2b:57:d5:bc:02:57:02:78:9f:b3:74:39:2b:ce:7f:20:f7:86:
d4:5c:d3:d7:9c:9e:fe:ef:44:72:2e:eb:2b:3e:84:19:82:df:
bd:97:77:2d:83:58:aa:1a:f6:b0:e9:ad:6f:14:3f:0c:98:55:
22:31:e4:b4:28:c0:f1:83:86:ee:66:75:58:bd:d9:4e:ff:cb:
98:de:8f:78:88:6b:18:ec:d2:9d:83:e7:88:8b:de:52:82:02:
88:72:94:4c:66:f9:a7:45:51:d8:d5:88:7d:25:40:d9:ac:93:
77:5c:93:7a:c7:e5:ed:e5:31:5c:2c:e3:26:72:57:02:5b:f5:
7d:12:6d:61:00:50:c1:98:82:bb:39:7a:22:71:be:86:94:5d:
fa:dc:5f:07:ad:8b:4f:45:6c:3e:a8:58:93:69:1f:03:b1:19:
e8:f1:67:81:10:9e:c3:d3:62:84:16:3e:22:7b:14:f0:f7:e2:
89:cd:14:54:9e:0f:41:d1:23:d9:76:a2:6f:c6:b3:b2:a7:fb:
39:06:76:a8:c3:19:10:49:f6:10:8d:54:9a:9d:7e:49:d3:bf:
01:5f:e6:7a:fb:d0:65:e5:6d:7a:3c:fb:bf:c9:6c:a8:48:d4:
e7:11:67:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org