Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f8dff9-6dac-4313-9980-ab4ba332fe15/1/jsLUxqPnU7_ffeVIQUw-6NazSGA.roa
File: jsLUxqPnU7_ffeVIQUw-6NazSGA.roa (raw, json)
Hash identifier: dK58PF5o/PIpU4w67Q89i82GJbpgzyZBtPOaguqxz3Y=
Subject key identifier: 8E:C2:D4:C6:A3:E7:53:BF:DF:7D:E5:48:41:4C:3E:E8:D6:B3:48:60
Certificate issuer: /CN=f1359ff10c1564421e974573ace1ba62333b82a7
Certificate serial: 03635C35
Authority key identifier: F1:35:9F:F1:0C:15:64:42:1E:97:45:73:AC:E1:BA:62:33:3B:82:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TWf8QwVZEIel0VzrOG6YjM7gqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f8dff9-6dac-4313-9980-ab4ba332fe15/1/jsLUxqPnU7_ffeVIQUw-6NazSGA.roa
Signing time: Sat 01 Jan 2022 10:58:31 +0000
ROA not before: Sat 01 Jan 2022 10:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 194.15.16.0/24 maxlen: 24
194.15.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56843317 (0x3635c35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1359ff10c1564421e974573ace1ba62333b82a7
Validity
Not Before: Jan 1 10:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ec2d4c6a3e753bfdf7de548414c3ee8d6b34860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:80:bb:c8:6b:42:25:0f:b8:cf:07:10:65:4a:
42:83:0c:cb:cd:1d:02:93:dd:f8:a0:4b:8e:bc:7b:
e8:0b:00:2b:c1:40:0e:c8:cd:72:ce:98:a6:4d:10:
3e:4e:5a:0a:63:83:df:d3:c4:0d:ff:d0:0f:12:75:
5a:4c:8e:78:70:dc:90:1a:d1:9f:d8:1f:d7:14:70:
37:3a:9d:28:24:ff:24:91:73:06:8d:db:85:8c:9c:
1f:73:57:c0:04:e0:62:b1:9a:36:99:d8:bb:9c:2e:
56:34:1f:09:86:69:54:19:bd:11:a5:ea:36:42:04:
f2:9f:6a:58:25:c9:ee:cc:ff:06:05:0d:9b:12:4c:
60:8d:a6:a8:57:a5:63:13:8e:c0:b3:9d:d7:e9:79:
38:e9:64:45:e3:74:44:3c:83:48:cc:55:1a:09:56:
3b:09:a7:7b:5b:03:71:77:ae:af:98:9c:c1:6a:6b:
30:ba:00:42:52:17:83:18:b8:0a:32:5c:56:f5:f6:
61:f9:17:11:e2:42:86:4b:5b:5a:38:d6:24:56:af:
5f:e6:81:41:fb:62:cb:4f:7c:81:76:a8:ee:38:31:
05:6b:66:14:1c:71:1f:01:97:50:54:58:ca:3a:37:
43:ba:3d:64:f4:08:66:24:a2:e7:da:b6:74:09:3c:
15:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C2:D4:C6:A3:E7:53:BF:DF:7D:E5:48:41:4C:3E:E8:D6:B3:48:60
X509v3 Authority Key Identifier:
keyid:F1:35:9F:F1:0C:15:64:42:1E:97:45:73:AC:E1:BA:62:33:3B:82:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TWf8QwVZEIel0VzrOG6YjM7gqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f8dff9-6dac-4313-9980-ab4ba332fe15/1/jsLUxqPnU7_ffeVIQUw-6NazSGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f8dff9-6dac-4313-9980-ab4ba332fe15/1/8TWf8QwVZEIel0VzrOG6YjM7gqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.16.0/24
194.15.18.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:f8:89:8d:9a:a3:fd:24:47:c9:71:7e:87:7c:dc:9b:09:0b:
b4:5b:f1:40:ec:b0:99:a4:85:3d:21:15:87:7b:ef:58:b7:fe:
bb:47:00:bc:bb:41:3f:b3:a4:ba:94:bb:2b:b4:61:83:df:78:
61:77:70:25:37:0b:b9:60:aa:9b:f5:d1:e7:42:93:d8:e9:3b:
eb:a0:cf:c2:4f:cb:a1:61:e5:2b:6a:b3:20:12:7c:61:57:d2:
47:9f:47:10:85:06:6b:79:10:21:f4:1b:93:c4:e0:9d:39:95:
3b:73:73:4e:6b:f1:29:10:73:a5:f3:10:a7:0f:63:c2:58:0e:
31:5d:f1:eb:4a:b5:eb:0e:1b:58:6a:26:96:89:2f:fb:86:db:
dc:74:2a:5e:3c:53:7e:7c:25:a9:9b:16:96:63:0d:8e:0d:d0:
66:73:21:8b:24:12:4a:93:0c:56:00:00:ca:da:e6:01:30:2b:
25:1b:37:d5:b2:41:d1:69:b1:ad:ec:bd:1e:5b:13:8e:a7:8f:
76:e4:52:ce:8b:ad:58:6c:39:a7:35:16:8a:13:d4:12:c4:5b:
e0:22:2c:43:5f:b6:8e:e4:e1:a6:17:b7:b2:e1:f9:d4:1c:21:
46:49:66:b5:cd:ed:1c:44:c5:5d:b8:3c:6c:93:24:fc:72:ef:
3c:c0:66:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:57 2023 by rpki-client on console-fra.rpki-client.org