Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/JZFMr-bSkJ4TiZVl5yXETThAFbw.roa
File: JZFMr-bSkJ4TiZVl5yXETThAFbw.roa (raw, json)
Hash identifier: oUZ38BrZ1JGCJKftQRHnJu3ZXBLH384U3iXh4RsfZaY=
Subject key identifier: 25:91:4C:AF:E6:D2:90:9E:13:89:95:65:E7:25:C4:4D:38:40:15:BC
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 087A5A6A
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/JZFMr-bSkJ4TiZVl5yXETThAFbw.roa
Signing time: Tue 07 Jun 2022 17:09:04 +0000
ROA not before: Tue 07 Jun 2022 17:09:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211238
IP address blocks: 91.227.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142236266 (0x87a5a6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: Jun 7 17:09:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25914cafe6d2909e13899565e725c44d384015bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:a9:17:93:ec:aa:30:59:a8:ff:8b:be:e7:
ef:01:dc:92:66:2d:f4:2b:9e:70:b5:2e:8a:15:d0:
74:cf:40:45:50:dd:c8:6d:12:ed:5c:49:1f:8e:94:
24:d9:00:c9:5f:61:be:dc:4c:ff:c2:89:72:0c:c8:
ac:fd:01:d7:13:6f:9a:06:17:08:90:5c:d2:c3:92:
22:80:ff:3f:8f:fb:2f:2b:0c:1f:a9:1a:66:b3:0c:
51:91:9a:fc:06:5c:e6:8f:b6:64:2f:fa:33:ce:dc:
87:84:30:fd:44:9d:9b:d9:a8:43:cd:25:11:b7:66:
97:58:8c:68:2d:7b:bc:1c:f2:00:e8:27:80:a4:68:
a0:77:cd:c9:a0:c4:00:76:e3:9d:11:45:90:1f:d6:
36:23:0e:59:9b:c3:d2:0f:a0:74:78:6c:21:2c:48:
92:71:af:11:78:0e:32:f6:8e:10:75:9c:05:e9:cc:
58:4d:24:67:0c:c4:61:4e:b5:18:15:54:3a:58:b5:
07:2f:f6:da:d3:54:ea:3f:d0:69:e3:98:ea:38:6e:
66:04:94:1b:7d:3a:2d:7c:f2:69:b3:ab:6c:11:e5:
b9:74:0d:a5:87:c7:4d:55:d2:72:51:5b:10:98:e2:
21:19:05:05:a0:a8:22:d8:c1:f6:05:9b:5a:3d:c9:
a1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:91:4C:AF:E6:D2:90:9E:13:89:95:65:E7:25:C4:4D:38:40:15:BC
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/JZFMr-bSkJ4TiZVl5yXETThAFbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.168.0/24
Signature Algorithm: sha256WithRSAEncryption
59:0c:c7:fc:f5:4d:2d:b1:73:4e:fb:96:c6:92:34:e9:c0:d7:
cc:96:7b:97:2c:b9:b0:90:26:70:31:b1:f5:58:50:cb:df:9a:
a5:53:5f:5a:c9:a1:7c:e5:db:45:d1:82:37:63:5e:09:f0:18:
9c:cc:06:f3:c4:0c:d7:f3:eb:94:c8:11:89:31:14:16:44:c0:
1d:ce:06:57:a4:4e:0f:bd:b3:fa:fe:30:7f:a8:99:2c:8d:8d:
b6:1f:ad:8b:3e:5a:87:63:5e:53:88:9a:98:dc:f9:0a:16:0f:
b9:79:b9:f2:a0:ec:78:9d:a4:4f:d0:5b:9b:04:c6:f1:94:9d:
20:c7:07:c9:a0:68:d5:4f:e3:e4:27:b2:b7:08:a7:99:6a:a0:
75:0c:f0:35:77:b4:b1:0d:cf:0b:ad:ad:ad:a1:e5:12:30:95:
f5:f1:a4:68:f8:f7:7a:74:3e:e4:e3:24:91:f3:2d:fc:75:a2:
d5:7f:87:5a:fe:9b:05:ad:37:27:1a:ea:40:c4:30:fd:95:0f:
3d:d4:fc:fa:88:2f:ab:1e:87:95:46:fc:6a:00:a9:72:43:f2:
02:81:c4:c0:e8:88:2c:7c:13:81:08:4f:9c:33:96:df:51:45:
2f:39:19:4d:f7:63:c0:e8:fc:df:b5:3d:c7:1a:0b:f3:d6:f3:
9b:b1:f8:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:46 2023 by rpki-client on console-ams.rpki-client.org