Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/JE9DG2Igj27SNd5sJFx4LBPJJG0.roa
File: JE9DG2Igj27SNd5sJFx4LBPJJG0.roa (raw, json)
Hash identifier: KIdccIPd6HSy4UnpRlc57e2PntX+2qOriGJguQidv5I=
Subject key identifier: 24:4F:43:1B:62:20:8F:6E:D2:35:DE:6C:24:5C:78:2C:13:C9:24:6D
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 0149A640
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/JE9DG2Igj27SNd5sJFx4LBPJJG0.roa
Signing time: Sat 01 Jan 2022 09:00:14 +0000
ROA not before: Sat 01 Jan 2022 09:00:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.108.56.0/22 maxlen: 24
193.107.21.0/24 maxlen: 24
193.108.102.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21603904 (0x149a640)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Jan 1 09:00:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=244f431b62208f6ed235de6c245c782c13c9246d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fe:60:0b:1c:4b:4b:28:90:e8:7a:53:ed:dc:
de:48:3b:79:7d:ba:c9:d4:5e:ba:82:95:60:fd:22:
2d:64:eb:61:23:ca:34:8c:21:84:70:43:19:51:4a:
82:76:c1:b0:c9:11:3c:d7:38:23:04:10:c6:06:e4:
8e:d4:bb:37:b2:67:74:a0:a9:c6:a7:82:2a:56:c7:
16:08:d3:26:7c:df:b4:5d:06:bd:78:54:b8:08:63:
45:c7:bb:cd:a4:59:01:a2:0d:7b:02:1e:ad:00:ee:
87:1e:26:2d:ac:e9:1a:bd:a4:62:ab:c9:9e:53:5d:
9e:ff:87:d6:59:17:9d:ad:05:95:d3:82:af:4c:29:
76:c7:82:1b:37:36:c2:ea:b9:ca:9e:a7:28:1b:b4:
c4:fd:1c:43:3a:c8:2c:0e:8d:d0:2b:dc:71:fc:4c:
6b:d3:4b:93:97:05:49:70:25:4c:c2:83:07:65:ea:
80:69:b3:b2:1a:53:95:5e:a5:07:78:97:23:f0:ed:
28:33:ea:4a:77:ed:a7:13:6a:64:2f:97:d7:29:7e:
94:8a:e0:9d:43:68:d6:d8:3d:03:60:5d:b6:34:22:
b0:fe:ca:29:85:cb:13:33:f4:f6:66:35:3e:0d:7a:
cc:63:8c:0a:fc:8e:5a:7b:c3:a2:71:03:5c:b2:22:
73:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:4F:43:1B:62:20:8F:6E:D2:35:DE:6C:24:5C:78:2C:13:C9:24:6D
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/JE9DG2Igj27SNd5sJFx4LBPJJG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.21.0/24
193.108.56.0/22
193.108.102.0/23
Signature Algorithm: sha256WithRSAEncryption
af:87:a0:83:44:44:84:fa:db:24:da:b1:b9:d9:07:93:b9:3d:
c4:6d:17:9f:d0:12:7b:7a:94:8f:e0:89:2a:54:2b:13:ba:54:
51:98:ed:7d:ba:9e:85:25:e5:c5:ea:33:2e:b2:b0:2a:c9:14:
df:f6:8d:23:dc:ce:f5:ed:8f:55:02:85:1b:c5:ab:f4:cd:cd:
e8:a2:73:95:e7:8b:e1:6d:8b:b0:c8:36:8c:a7:fc:52:32:f7:
e8:50:47:1d:41:fb:81:41:12:ee:47:de:b9:fe:c0:0e:4b:c2:
06:20:52:ae:3d:27:47:6d:34:8d:45:c7:79:4e:86:43:52:41:
6c:03:d1:5f:33:3b:73:d9:4f:1d:a1:96:71:c7:53:ce:5a:7f:
c3:f2:92:26:b7:3a:c7:aa:d5:d5:2e:2c:e3:88:c8:ce:5e:0e:
8c:60:6c:48:08:76:a0:fb:ab:d5:dc:25:33:62:28:58:12:a1:
49:c1:5f:ee:bf:47:db:3c:0e:dc:91:ac:e8:18:c4:56:18:21:
99:a6:10:f8:8b:d3:f6:1a:2b:07:b7:52:59:01:3c:3d:b8:60:
8a:76:69:ac:72:38:3e:d8:dd:eb:a6:e8:7a:a9:12:98:8b:0e:
f0:7a:40:ca:ce:0d:1b:16:71:d6:7e:22:6c:c7:49:45:e6:cc:
7f:02:3e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:13 2023 by rpki-client on console-ams.rpki-client.org