Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/jdG2fTLGxaQ9EGBhHmNPghrWHYw.roa
File: jdG2fTLGxaQ9EGBhHmNPghrWHYw.roa (raw, json)
Hash identifier: eYxdffc9bOFeHHiy2MbRXLyADbnNNkLowo3ukJu5UKQ=
Subject key identifier: 8D:D1:B6:7D:32:C6:C5:A4:3D:10:60:61:1E:63:4F:82:1A:D6:1D:8C
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: C42EAF
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/jdG2fTLGxaQ9EGBhHmNPghrWHYw.roa
Signing time: Tue 19 Apr 2022 19:12:07 +0000
ROA not before: Tue 19 Apr 2022 19:12:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.143.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12857007 (0xc42eaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Apr 19 19:12:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dd1b67d32c6c5a43d1060611e634f821ad61d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:af:81:7a:bb:0e:68:cf:6e:c8:60:1d:01:
0f:9c:f5:ee:90:14:20:78:5f:7b:35:b5:78:1e:8a:
cf:99:89:8b:1e:56:36:ca:21:ab:1b:fb:a1:49:d3:
85:30:ab:7d:15:77:fe:c4:11:ee:e8:de:bb:4f:6e:
80:8d:ee:80:47:32:30:9c:5f:5a:82:11:65:c6:b2:
da:b8:9c:b9:1f:17:f7:68:43:e1:03:b9:ac:57:69:
d6:89:1d:c1:86:e0:6c:da:02:e6:6e:e1:22:44:df:
ee:8e:88:77:43:f0:36:9d:4f:b8:2d:51:5f:ae:12:
db:40:28:3d:db:5c:c0:95:78:b3:9a:0f:f3:9b:df:
cf:32:a6:0c:5b:99:5e:6f:ee:e7:7c:48:7a:0d:7a:
32:c7:19:3b:f2:01:86:1b:bc:cf:8b:46:7f:95:60:
4c:9f:1a:c5:a7:57:a3:a7:ed:28:07:24:1c:fa:09:
fb:4c:3b:1d:ec:1d:47:1d:ad:14:72:c8:64:ab:6b:
40:9e:39:c9:5c:ba:e8:50:86:54:1e:8f:27:2f:c5:
44:5d:c9:70:d9:47:d9:eb:93:ea:dc:75:31:47:af:
61:ae:4e:27:d0:32:b7:76:28:81:2b:fe:e1:0c:22:
87:91:9d:dc:df:67:a7:98:3e:59:36:77:ac:e1:8c:
14:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D1:B6:7D:32:C6:C5:A4:3D:10:60:61:1E:63:4F:82:1A:D6:1D:8C
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/jdG2fTLGxaQ9EGBhHmNPghrWHYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.225.0/24
Signature Algorithm: sha256WithRSAEncryption
21:b7:7b:25:c7:80:b1:5d:db:ac:8e:b3:eb:f5:dc:27:ae:c1:
79:00:20:2a:d6:21:11:38:34:30:a9:de:b9:f8:4d:e7:10:0d:
f1:20:06:4f:ff:c9:66:bb:c5:a3:25:8e:c1:2b:d6:d2:f1:e3:
37:c8:98:e4:2e:c4:0a:86:9a:87:5e:31:33:cf:e3:16:a3:1b:
5c:a7:ca:d2:e1:39:83:37:e8:d1:09:cb:cc:7e:26:93:e8:88:
f2:fa:b4:0a:e7:28:56:2d:fc:08:04:15:97:15:a2:65:11:99:
a6:42:45:f9:ed:c4:3e:b0:82:bb:59:6f:00:00:b7:62:da:25:
7c:e2:4c:1e:15:1e:b4:b9:a7:de:50:e8:83:70:d3:bc:da:15:
f4:5c:41:7c:e9:b0:77:66:93:dc:bc:8d:10:f5:8c:56:6b:d7:
c2:ac:64:8d:12:fe:b8:aa:98:cb:80:b4:67:81:6c:06:6f:1a:
fa:83:22:2f:cb:a0:59:d2:df:9b:d2:23:a1:d6:7e:20:9c:10:
ad:da:9f:43:4f:33:83:01:11:ac:50:3d:ec:77:d0:30:8f:94:
d6:78:07:d1:7f:af:d5:22:14:66:be:5e:b9:17:e7:8f:d2:04:
91:a4:33:3f:f1:ff:ff:d9:19:f2:92:a4:1a:5c:06:46:6a:09:
c2:df:df:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org