Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/jp-jBXiCo1av2TH6Xqk6guJro-U.roa
File: jp-jBXiCo1av2TH6Xqk6guJro-U.roa (raw, json)
Hash identifier: WJ8A6COTkuoIUd11IwjD1LqD6ggve+fIO1dGyqzJ1Eo=
Subject key identifier: 8E:9F:A3:05:78:82:A3:56:AF:D9:31:FA:5E:A9:3A:82:E2:6B:A3:E5
Certificate issuer: /CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Certificate serial: 039371DF
Authority key identifier: 59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/jp-jBXiCo1av2TH6Xqk6guJro-U.roa
Signing time: Sat 01 Jan 2022 01:51:04 +0000
ROA not before: Sat 01 Jan 2022 01:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25090
IP address blocks: 193.8.222.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59994591 (0x39371df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Validity
Not Before: Jan 1 01:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e9fa3057882a356afd931fa5ea93a82e26ba3e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:98:85:53:1f:97:96:49:47:fa:50:ff:9c:d8:
92:65:dd:70:01:6c:75:ee:32:e6:e3:31:4c:a2:e9:
c2:43:a5:72:b6:4d:9a:a6:a3:24:e0:26:e2:42:f5:
08:7e:b7:e8:e3:8a:d0:2f:44:62:f3:31:13:85:c1:
f9:63:db:77:c4:15:9c:b5:17:1a:c0:ee:f5:30:d3:
99:b8:4d:e9:0a:a3:98:bc:fa:75:b5:e6:18:af:ff:
af:01:ac:49:d2:34:25:f2:ee:b5:a1:9a:ef:03:54:
f8:99:99:d6:b9:10:a5:d7:87:bb:bd:0b:a1:e0:d7:
44:06:45:05:cc:fa:c3:53:77:7d:84:8a:56:95:7f:
93:9c:24:f8:71:93:14:ee:21:5f:a5:b9:1d:9c:0e:
d4:5a:00:2b:ab:9a:8f:05:b3:8a:34:8e:cb:61:c9:
f0:c6:83:cb:7e:4f:a6:13:8a:ed:c7:fc:d8:48:e5:
45:8d:fa:b8:ee:3f:ca:20:04:83:c4:06:a4:70:1a:
ce:87:59:fd:f3:30:50:45:6f:2b:1c:d3:1b:2a:d3:
8e:36:a6:30:72:04:d4:21:eb:ce:04:b5:fb:01:e2:
4d:a4:73:f9:e5:f0:73:ef:aa:c6:a2:e9:cc:9d:ca:
b4:d1:d4:c9:2f:2b:89:13:89:9e:6e:46:bf:52:dc:
7f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:9F:A3:05:78:82:A3:56:AF:D9:31:FA:5E:A9:3A:82:E2:6B:A3:E5
X509v3 Authority Key Identifier:
keyid:59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/jp-jBXiCo1av2TH6Xqk6guJro-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.222.0/23
Signature Algorithm: sha256WithRSAEncryption
21:70:26:c2:25:34:92:b9:2a:c4:59:14:bd:73:35:61:54:e0:
f0:58:1c:25:cf:05:f1:b6:9a:fe:29:cb:af:d5:a6:61:d5:32:
b2:c3:e2:fd:46:78:be:8c:f1:9e:a0:c7:bc:6f:0e:b8:9f:cd:
61:3b:0b:57:c9:1a:3d:57:2f:c4:83:7e:3e:90:2a:f8:d4:39:
90:0f:1f:4e:93:33:d7:91:f2:7b:f5:b6:c9:61:b3:21:2b:39:
a8:72:2d:38:2d:d9:b2:b5:cb:5a:21:09:e3:64:d2:ea:dc:48:
9e:5c:a7:00:f2:af:4d:0d:02:10:5a:e2:bb:d3:ac:89:3b:91:
f7:ed:93:43:d5:13:8e:c9:51:3d:a5:04:ac:98:0f:fc:36:86:
a5:b6:0a:d8:ed:a8:f1:be:4f:d3:04:7a:a0:5a:0b:bb:c6:97:
47:66:f5:9f:01:91:83:09:d5:c6:6e:03:d1:2b:1e:bc:86:bd:
f2:42:40:e2:a1:e3:c4:10:1c:22:1f:81:55:1d:2c:95:7f:01:
7a:13:8a:01:03:74:f3:63:74:29:92:53:46:8f:41:84:e7:7d:
ac:0a:bc:2e:78:59:d4:80:a2:30:45:89:f4:e3:b5:ca:39:a5:
c1:af:8a:6c:03:7f:fa:4b:f7:ec:b0:e5:f4:c2:12:6a:3f:96:
f0:59:55:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:14 2024 by rpki-client on console-fra.rpki-client.org