Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/jHFgqyaUtM4xapLqnEzZQwBhDhY.roa
File: jHFgqyaUtM4xapLqnEzZQwBhDhY.roa (raw, json)
Hash identifier: zAlwGc5NOwMLTsueP7kXGFvIIPP1L3Z4pl5oJOmqWJ0=
Subject key identifier: 8C:71:60:AB:26:94:B4:CE:31:6A:92:EA:9C:4C:D9:43:00:61:0E:16
Certificate issuer: /CN=da60f646bc7f488caf5ebdca8072c09d63f61a21
Certificate serial: 148201B6
Authority key identifier: DA:60:F6:46:BC:7F:48:8C:AF:5E:BD:CA:80:72:C0:9D:63:F6:1A:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/jHFgqyaUtM4xapLqnEzZQwBhDhY.roa
Signing time: Sat 01 Jan 2022 08:59:55 +0000
ROA not before: Sat 01 Jan 2022 08:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204146
IP address blocks: 194.31.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344064438 (0x148201b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da60f646bc7f488caf5ebdca8072c09d63f61a21
Validity
Not Before: Jan 1 08:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c7160ab2694b4ce316a92ea9c4cd94300610e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bf:cc:49:d6:df:d0:29:4c:12:e3:21:92:6d:
4d:21:c0:d3:bf:c7:c8:e1:5c:55:c1:b4:46:0a:8a:
c5:7f:6a:65:5a:53:cf:7e:aa:c1:02:ad:e6:20:e7:
98:6f:9f:72:dc:a9:e7:34:30:f3:0d:17:33:66:4c:
51:54:ed:47:af:a5:ba:19:7a:54:68:8d:fc:c7:d2:
e8:d3:20:f1:29:38:4a:7d:18:b6:a7:fa:3e:44:c5:
af:3d:ef:79:b6:5d:30:3f:f0:0a:b1:59:18:de:0f:
a9:3d:26:64:f2:20:69:6a:69:8c:5b:10:45:f1:22:
5c:93:e2:f2:22:90:96:9d:9c:13:e4:dd:6c:77:a1:
e1:d6:4a:55:0f:0c:af:7b:ae:e5:e7:c0:95:3b:d1:
f1:9c:79:ca:49:cd:29:ff:7d:e4:bf:3d:1e:fe:26:
f4:90:50:c5:f0:54:61:75:b6:9c:63:04:1e:c3:09:
c8:7e:11:93:b4:fd:90:94:3f:bc:06:57:7b:bf:05:
e6:01:04:5c:88:09:69:50:e6:31:70:d8:b6:db:0a:
bd:67:fa:5d:45:89:31:f7:e5:28:5b:ef:93:b2:f6:
30:7d:fd:9b:71:ad:30:67:4c:24:50:95:a7:38:4b:
24:5d:47:bf:f8:be:80:a7:66:9d:c5:5e:81:29:53:
49:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:71:60:AB:26:94:B4:CE:31:6A:92:EA:9C:4C:D9:43:00:61:0E:16
X509v3 Authority Key Identifier:
keyid:DA:60:F6:46:BC:7F:48:8C:AF:5E:BD:CA:80:72:C0:9D:63:F6:1A:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/jHFgqyaUtM4xapLqnEzZQwBhDhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.112.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:74:4c:40:cb:31:90:11:ec:46:a2:60:99:85:91:f9:88:d7:
b0:0d:4e:07:4e:0c:c7:47:12:47:3c:b5:f8:10:26:2d:29:a8:
d9:71:0d:ca:cd:5a:44:31:b5:5c:af:ac:59:a9:87:1a:ec:2c:
d2:c1:0f:96:0e:b0:45:89:d8:a9:1a:df:17:6f:8a:ff:58:bd:
b0:e7:c5:b9:1a:7c:29:26:00:9a:88:90:c8:3f:05:ef:d2:c3:
dc:8b:9a:5d:0f:d1:ad:33:e6:2f:e1:2e:a2:7c:ea:a4:ab:fb:
db:c7:f8:68:88:6d:2a:24:5c:e3:2a:d8:bc:d8:95:62:8d:f0:
19:0a:31:03:19:44:60:56:f1:f9:83:14:26:c9:d3:b4:82:99:
a2:de:03:ae:9f:56:f9:ca:fe:e2:37:ff:a3:b5:dd:3c:12:20:
c1:0b:93:3d:6a:44:41:b0:06:43:87:5d:4c:b0:a0:46:78:9a:
de:ae:35:01:69:f5:4c:70:75:78:fe:67:94:ac:c3:b0:20:16:
31:75:35:35:6c:ea:12:29:da:61:eb:25:46:d6:6f:b0:35:b9:
c2:15:0f:ef:fd:ac:09:41:89:20:2a:61:69:04:69:00:a6:ba:
17:03:6b:f1:88:ea:4c:79:97:f6:fe:b5:a9:e0:b2:73:6c:00:
08:3d:57:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org