Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/J8HQxGwslMC_uFHgpTr9V7n760s.roa
File: J8HQxGwslMC_uFHgpTr9V7n760s.roa (raw, json)
Hash identifier: RPGeS+D+XG+rqJPzH6K+Hqa6TPySjd8mZk8TMgM0P+M=
Subject key identifier: 27:C1:D0:C4:6C:2C:94:C0:BF:B8:51:E0:A5:3A:FD:57:B9:FB:EB:4B
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 06413B37
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/J8HQxGwslMC_uFHgpTr9V7n760s.roa
Signing time: Sat 01 Jan 2022 11:01:04 +0000
ROA not before: Sat 01 Jan 2022 11:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2281
IP address blocks: 57.79.248.0/21 maxlen: 24
57.100.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104938295 (0x6413b37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27c1d0c46c2c94c0bfb851e0a53afd57b9fbeb4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3c:82:42:3e:ed:74:30:78:30:a8:9a:5d:51:
8e:10:3d:f5:d2:28:fd:ec:ac:10:f5:bb:83:23:bf:
cf:4c:10:be:c9:5d:d0:63:f2:e1:8d:55:92:78:5d:
b5:de:bf:ad:60:bb:81:9e:a7:e4:55:d6:c4:9b:24:
da:41:5f:a8:6b:6d:4c:14:e0:8b:de:d2:0e:9f:97:
0b:84:01:1a:b7:a3:b6:7b:a0:de:54:30:b2:ca:45:
64:66:e1:90:b1:4b:59:cf:7a:24:6e:5d:6b:87:13:
0d:d9:b1:af:d2:50:3e:8a:99:aa:84:c8:d6:34:b4:
a1:48:25:86:f2:46:70:56:5a:3d:b3:ff:e6:7d:bf:
f0:a2:40:08:0d:94:c1:5a:0b:bf:10:b7:92:81:02:
9c:72:31:64:d8:f1:22:7b:0f:91:95:6f:03:63:5f:
35:3f:59:7c:69:90:cd:60:23:8c:08:46:a5:41:fe:
e1:a3:4c:7b:a7:e7:53:1b:6c:3b:7e:30:de:0c:90:
be:23:8b:a3:ef:65:5e:6d:88:58:47:0b:61:3c:c7:
6e:75:04:a0:ea:ae:5e:d1:6b:08:84:f2:45:cb:15:
f9:ed:97:92:86:33:41:d8:9e:ec:69:d6:c9:40:c7:
4e:d2:7f:d5:a4:9e:0e:4e:af:91:c0:f3:00:e0:58:
5c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C1:D0:C4:6C:2C:94:C0:BF:B8:51:E0:A5:3A:FD:57:B9:FB:EB:4B
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/J8HQxGwslMC_uFHgpTr9V7n760s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.79.248.0/21
57.100.96.0/21
Signature Algorithm: sha256WithRSAEncryption
c7:c8:7e:35:24:ff:86:c3:9d:23:82:c3:3c:0e:95:39:f6:fb:
b2:7b:02:90:8c:b4:9a:84:2c:88:c0:a5:11:63:08:cb:60:6d:
fd:c3:88:cd:52:60:c0:b4:d0:f7:7e:c7:d1:4f:f9:ed:44:c8:
17:f4:a2:8b:3c:79:f7:c5:7a:29:39:0a:02:68:0d:12:b3:e5:
4a:28:22:cf:82:5f:b1:be:0b:a9:bd:8c:8f:8c:c7:c6:4e:ac:
2d:a7:a2:e9:0a:4d:8a:01:ae:31:18:95:ac:8a:71:2e:5a:e8:
32:23:2a:23:54:f8:57:3d:94:8c:79:ed:1a:44:be:a3:fa:37:
75:67:72:a5:dc:a5:05:d8:20:18:28:81:09:0a:18:5d:53:6e:
5f:43:fe:5a:15:74:2c:17:5f:8a:55:ef:e1:5e:a6:b7:ed:7a:
f9:de:44:6f:73:57:d2:d5:68:c8:ff:2e:81:71:b9:3a:7d:32:
5c:b8:3c:0d:32:78:5d:dd:84:c8:35:48:d0:74:75:22:6e:47:
30:bd:a6:7f:4d:44:ef:26:a3:88:cd:73:55:12:35:6e:32:cb:
96:67:53:b9:62:00:74:a5:f4:77:25:99:b5:da:1e:21:99:2f:
8b:34:26:1d:40:78:ae:02:fd:6f:61:d7:ac:d1:ff:bf:12:d6:
df:02:5e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org