Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/j8S-pzu3kQkKnoRCDfoo4oTiHss.roa
File: j8S-pzu3kQkKnoRCDfoo4oTiHss.roa (raw, json)
Hash identifier: PVgpoeKjFQssgdRJ2S4T2TxdoJyX12ECjImxUeST0WM=
Subject key identifier: 8F:C4:BE:A7:3B:B7:91:09:0A:9E:84:42:0D:FA:28:E2:84:E2:1E:CB
Certificate issuer: /CN=61aaf97d7a8eafb78152c4d575a2f96b04e3d9d0
Certificate serial: 112A107B
Authority key identifier: 61:AA:F9:7D:7A:8E:AF:B7:81:52:C4:D5:75:A2:F9:6B:04:E3:D9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yar5fXqOr7eBUsTVdaL5awTj2dA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/j8S-pzu3kQkKnoRCDfoo4oTiHss.roa
Signing time: Sat 01 Jan 2022 02:00:42 +0000
ROA not before: Sat 01 Jan 2022 02:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 134.59.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287969403 (0x112a107b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61aaf97d7a8eafb78152c4d575a2f96b04e3d9d0
Validity
Not Before: Jan 1 02:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fc4bea73bb791090a9e84420dfa28e284e21ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:59:f4:ed:3b:2a:49:7b:65:fb:46:4e:f4:55:
e8:90:8b:ed:40:90:6f:ce:21:1f:71:0e:af:97:61:
ae:ed:3c:2f:03:0a:02:52:48:eb:5e:c0:d7:3b:fa:
33:1a:1a:3f:5a:97:e2:d8:39:93:c7:ad:5e:77:2b:
d8:48:c0:ee:04:d5:37:c8:a5:09:f6:c3:fa:d1:24:
74:76:47:ba:80:3c:e7:30:c7:08:e8:10:34:fb:91:
4b:2c:c4:b8:6a:6b:38:15:6c:46:30:8c:eb:43:55:
7b:59:fa:6f:79:f8:72:41:bb:9d:b3:6c:39:c5:a0:
c3:1e:2f:77:d2:e0:8a:29:ae:d0:6e:f4:7b:db:80:
33:19:a8:3a:dd:c3:08:ec:76:29:2d:d8:75:35:c3:
79:ac:c4:78:2e:6b:0e:83:05:08:be:62:8c:1f:91:
10:e2:6c:fd:e5:94:66:a8:6e:70:9a:69:91:36:68:
d0:33:f4:10:ed:ac:51:c0:4e:f3:98:5e:c5:16:26:
47:79:a9:d0:6e:55:ff:37:4c:ed:76:39:83:13:f7:
3b:f7:06:85:ac:2d:23:4f:63:02:92:3b:b3:5b:d6:
17:72:56:50:04:c0:8d:ae:0a:6b:a1:ae:c7:1c:59:
d8:e3:e1:cb:e2:0f:6c:93:eb:b8:9a:74:3e:ba:d2:
bb:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C4:BE:A7:3B:B7:91:09:0A:9E:84:42:0D:FA:28:E2:84:E2:1E:CB
X509v3 Authority Key Identifier:
keyid:61:AA:F9:7D:7A:8E:AF:B7:81:52:C4:D5:75:A2:F9:6B:04:E3:D9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yar5fXqOr7eBUsTVdaL5awTj2dA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/j8S-pzu3kQkKnoRCDfoo4oTiHss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/Yar5fXqOr7eBUsTVdaL5awTj2dA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7f:49:ab:a3:2e:d8:b5:91:1a:0b:e7:c3:52:c7:6b:de:f8:1d:
6f:98:87:a0:7c:14:2f:33:be:3d:ff:76:4f:c3:03:4e:75:4b:
ea:f5:be:8d:bf:30:9d:0f:eb:c6:1a:23:f6:70:80:c4:5f:b1:
6a:7e:68:70:fd:7c:03:d0:6c:d2:06:46:d4:b7:60:24:ab:bc:
f6:01:bd:71:00:0b:9c:20:44:c1:4b:ae:7a:93:34:84:4e:b4:
eb:c6:e9:5e:1d:24:ba:d7:06:2d:b2:d0:0d:cb:4a:d0:a9:f5:
8d:91:50:ca:07:a4:07:d1:75:f6:81:2e:ef:06:77:43:de:09:
0c:f3:b9:63:28:e1:b1:b3:2d:3c:86:37:41:33:93:c9:71:38:
b9:a7:f7:74:e7:83:37:fc:ab:92:11:c1:df:cf:39:bb:20:2b:
64:96:00:47:d7:d4:88:13:80:84:ae:89:b6:61:f3:1a:db:96:
dc:4a:a1:69:29:95:fe:1c:19:41:0e:4c:f3:46:23:7b:08:b5:
c5:93:18:3d:c2:33:2c:ff:f0:92:a7:e4:14:46:4f:73:c0:7f:
d1:6c:49:af:f0:89:e4:d5:6d:79:d7:57:69:6a:5e:49:2c:e1:
5a:a1:ed:34:d2:15:d6:89:a8:52:6a:e3:04:ae:93:74:87:65:
6e:12:c3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:19 2023 by rpki-client on console-fra.rpki-client.org