Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/JD7BOWIl58FhBVpzkuw-F7THE7A.roa
File: JD7BOWIl58FhBVpzkuw-F7THE7A.roa (raw, json)
Hash identifier: yas2ulWji5MaAf8ZXxmGkIFWeuxIjWMdqfJVHL6eOhk=
Subject key identifier: 24:3E:C1:39:62:25:E7:C1:61:05:5A:73:92:EC:3E:17:B4:C7:13:B0
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0182BB107C853F63C72120A90795DA2B8FE9
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/JD7BOWIl58FhBVpzkuw-F7THE7A.roa
Signing time: Sat 20 Aug 2022 11:43:15 +0000
ROA not before: Sat 20 Aug 2022 11:43:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43847
IP address blocks: 5.226.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:bb:10:7c:85:3f:63:c7:21:20:a9:07:95:da:2b:8f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Aug 20 11:43:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=243ec1396225e7c161055a7392ec3e17b4c713b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bd:b2:79:cb:0d:3a:bc:16:97:bc:b3:03:cc:
ca:a7:95:39:5b:9f:cd:65:f4:11:91:82:82:c4:88:
b8:4f:1d:b1:03:ba:13:9b:d4:3e:69:f4:c8:c8:df:
f7:06:3a:80:17:12:05:4d:5e:8f:93:5f:e6:ac:90:
10:16:26:bf:c6:5f:60:fc:32:c5:0a:6e:96:7b:7c:
94:e0:2a:9c:b4:5f:3b:98:f5:23:2e:57:66:78:a8:
e6:68:63:9d:fc:c5:47:92:d1:23:5b:ac:91:11:e6:
a8:7e:47:57:1c:69:f7:40:b9:ed:68:8c:74:53:07:
b1:aa:58:25:6f:a6:92:96:b1:81:27:74:ff:34:01:
c8:3e:00:37:dc:6c:6b:de:2a:4d:25:58:8f:e2:42:
bc:86:7e:60:23:0b:0d:49:fe:b5:a1:b1:28:9c:4f:
73:f7:a3:f3:28:0f:5c:c7:33:a9:f5:7f:1f:dc:f2:
48:2f:46:2f:fc:f4:b4:bc:05:71:75:9a:5b:13:61:
98:79:3c:aa:0f:5e:e1:52:12:b8:bb:d5:9e:1f:50:
b4:41:4f:cc:7f:e5:c5:60:ae:e5:50:b3:20:15:b3:
a6:1e:7a:7b:fe:80:97:08:f0:03:3c:76:e3:f3:92:
34:c8:4a:c8:f7:1a:c7:0b:c8:29:4f:cf:ce:3c:ac:
72:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3E:C1:39:62:25:E7:C1:61:05:5A:73:92:EC:3E:17:B4:C7:13:B0
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/JD7BOWIl58FhBVpzkuw-F7THE7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.48.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:a6:b8:2f:ed:bb:1e:f1:ce:f6:3c:57:f5:61:4a:fb:11:ab:
8a:62:df:78:37:02:a6:e7:62:e3:2f:93:76:19:62:3b:09:95:
72:3e:7c:43:26:0c:76:ec:47:4e:86:70:67:85:f9:b2:cb:32:
5c:28:79:da:45:05:4f:d6:89:d5:39:62:5d:a2:d8:c8:b4:10:
69:8d:3c:bf:00:af:0b:9b:a5:82:85:7c:41:c7:06:9e:36:00:
d7:2c:c8:3f:45:72:66:5e:8c:b1:54:0d:16:ed:27:23:d8:2f:
9c:44:66:d7:57:90:9c:20:37:54:e3:ad:41:d8:4b:bf:e7:a9:
32:09:22:2b:f6:5a:02:36:5f:e5:a2:11:28:e6:de:5a:2f:13:
a7:4b:32:b8:10:51:83:91:37:7b:d9:18:01:2e:bf:2a:59:23:
1e:a5:3d:5e:27:24:47:ad:c6:51:d0:b0:6d:26:01:de:b2:4b:
d3:09:19:5b:3c:ae:04:c1:df:c0:4f:00:e8:41:b8:fa:82:02:
11:ea:0a:0c:83:6c:8b:a9:0d:81:e4:50:77:12:9f:5e:3b:e6:
ac:00:f8:03:94:db:f4:46:fd:93:86:dd:87:dd:50:dd:d7:88:
ba:af:26:5b:04:47:3c:a8:0d:28:aa:2e:b4:03:7a:5e:b2:4b:
88:06:89:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYK7EHyFP2PHISCpB5XaK4/pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjIwODIwMTE0MzE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDNlYzEzOTYyMjVlN2MxNjEwNTVhNzM5MmVjM2UxN2I0YzcxM2IwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx72yecsNOrwWl7yzA8zKp5U5W5/N
ZfQRkYKCxIi4Tx2xA7oTm9Q+afTIyN/3BjqAFxIFTV6Pk1/mrJAQFia/xl9g/DLF
Cm6We3yU4CqctF87mPUjLldmeKjmaGOd/MVHktEjW6yREeaofkdXHGn3QLntaIx0
Uwexqlglb6aSlrGBJ3T/NAHIPgA33Gxr3ipNJViP4kK8hn5gIwsNSf61obEonE9z
96PzKA9cxzOp9X8f3PJIL0Yv/PS0vAVxdZpbE2GYeTyqD17hUhK4u9WeH1C0QU/M
f+XFYK7lULMgFbOmHnp7/oCXCPADPHbj85I0yErI9xrHC8gpT8/OPKxycQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCQ+wTliJefBYQVac5LsPhe0xxOwMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvSkQ3Qk9XSWw1OEZoQlZwemt1dy1GN1RIRTdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDBeIwMA0G
CSqGSIb3DQEBCwUAA4IBAQCcprgv7bse8c72PFf1YUr7EauKYt94NwKm52LjL5N2
GWI7CZVyPnxDJgx27EdOhnBnhfmyyzJcKHnaRQVP1onVOWJdotjItBBpjTy/AK8L
m6WChXxBxwaeNgDXLMg/RXJmXoyxVA0W7Scj2C+cRGbXV5CcIDdU461B2Eu/56ky
CSIr9loCNl/lohEo5t5aLxOnSzK4EFGDkTd72RgBLr8qWSMepT1eJyRHrcZR0LBt
JgHeskvTCRlbPK4Ewd/ATwDoQbj6ggIR6goMg2yLqQ2B5FB3Ep9eO+asAPgDlNv0
Rv2Tht2H3VDd14i6ryZbBEc8qA0oqi60A3peskuIBolF
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org