Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/J47NDP2DgLaJwwYzSAQU8A_gvFw.roa
File: J47NDP2DgLaJwwYzSAQU8A_gvFw.roa (raw, json)
Hash identifier: 93lxZonq0uCj7qGwreGZD3TRaGcUfMkpw6iOgDGGKLk=
Subject key identifier: 27:8E:CD:0C:FD:83:80:B6:89:C3:06:33:48:04:14:F0:0F:E0:BC:5C
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 01837EB7A8022C6C7B4C1F98ADB35EEDCFB4
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/J47NDP2DgLaJwwYzSAQU8A_gvFw.roa
Signing time: Tue 27 Sep 2022 11:31:48 +0000
ROA not before: Tue 27 Sep 2022 11:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 104.222.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7e:b7:a8:02:2c:6c:7b:4c:1f:98:ad:b3:5e:ed:cf:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Sep 27 11:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=278ecd0cfd8380b689c30633480414f00fe0bc5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5e:43:c2:18:2c:b0:37:5c:53:43:44:87:71:
7b:4d:dc:b6:0d:c5:fc:e2:0c:54:61:d0:76:92:c0:
f9:89:13:d8:4e:9b:99:57:ac:29:05:e7:1e:61:e0:
4c:9b:7e:e2:c5:8f:94:de:ed:ce:c7:b0:cc:3c:b4:
9d:68:ca:bf:e0:8a:84:db:df:0a:7d:05:50:62:9a:
7b:9b:49:a4:55:9f:b1:f1:e1:17:f4:1a:47:89:be:
ba:4c:ca:98:13:19:0e:a6:13:f1:33:9e:7d:e0:bb:
96:2b:cc:cb:98:79:41:75:29:4d:35:e5:bd:14:ca:
d3:b5:e2:21:4b:76:36:39:52:01:15:d1:bf:8b:67:
97:47:b0:fb:da:5a:d3:1e:15:c2:96:fc:4f:71:d1:
9c:04:9f:02:db:94:66:2c:8e:d7:c1:3e:b9:00:65:
48:62:c6:db:56:58:a9:81:b4:fc:df:83:5f:3d:a4:
66:38:a4:63:81:1d:5d:df:08:76:61:77:07:27:13:
15:6d:76:f6:e9:cb:ba:6b:da:fe:c0:3e:9f:c8:55:
6b:e7:f1:6b:98:37:39:08:ad:da:06:28:2f:6f:e0:
e0:a9:32:7c:df:d2:81:06:c8:cd:a1:75:57:3a:78:
27:5e:21:ad:fc:3d:ba:2c:2c:12:bc:b3:aa:fa:a8:
e0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8E:CD:0C:FD:83:80:B6:89:C3:06:33:48:04:14:F0:0F:E0:BC:5C
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/J47NDP2DgLaJwwYzSAQU8A_gvFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.222.188.0/24
Signature Algorithm: sha256WithRSAEncryption
04:8a:6b:41:6e:d4:b5:23:9d:69:58:56:6d:da:ee:4f:00:66:
a3:33:c2:22:39:3c:f9:24:3f:7d:51:77:0b:fc:3e:bf:30:0d:
3a:45:6e:03:37:a6:de:4d:0c:9f:5a:32:38:ab:5f:49:92:84:
7d:63:c7:da:86:14:f8:44:98:bb:9d:b9:70:ec:c2:48:6c:0a:
54:5d:a5:9e:65:18:d7:e3:67:2d:f8:da:ae:ee:b7:4a:d6:4f:
9e:42:c6:b5:c7:55:c9:32:43:d0:fa:a1:d4:6a:f2:15:b0:e4:
83:2e:85:38:78:dc:73:4e:9d:dc:79:f2:ab:c7:6b:bd:bb:3b:
65:60:91:59:20:1d:02:f2:2b:f7:61:9c:e6:a5:6b:44:ec:17:
42:0e:83:84:ce:74:53:08:be:55:e4:b2:13:6a:f5:c0:bb:2a:
0d:bb:c7:5e:0f:85:ba:8c:8d:99:a9:b4:a5:e6:0e:cf:31:0f:
1e:fa:79:21:cc:2c:ed:8b:fb:7a:f1:68:af:47:78:3d:ad:ff:
eb:30:02:da:3a:d6:96:d7:88:d2:fb:fd:96:4f:c0:97:d3:f0:
fc:70:5f:ac:8d:4e:f9:b2:61:ad:c0:76:df:88:99:33:d9:61:
7e:cf:ad:0f:c1:04:aa:70:ab:a3:9d:f2:6c:55:04:0e:cb:8a:
37:2b:a7:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:56 2023 by rpki-client on console-fra.rpki-client.org