Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/9sqnIiZR7VfnXoILPuGSD2-jins.roa
File: 9sqnIiZR7VfnXoILPuGSD2-jins.roa (raw, json)
Hash identifier: iDlvngqkswJhvfdxNRJO0qfPPYa26jRVaqdxVyIkZ5Y=
Subject key identifier: F6:CA:A7:22:26:51:ED:57:E7:5E:82:0B:3E:E1:92:0F:6F:A3:8A:7B
Certificate issuer: /CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Certificate serial: 3FC15813
Authority key identifier: F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/9sqnIiZR7VfnXoILPuGSD2-jins.roa
Signing time: Sat 01 Jan 2022 08:55:07 +0000
ROA not before: Sat 01 Jan 2022 08:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203890
IP address blocks: 195.150.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1069635603 (0x3fc15813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Validity
Not Before: Jan 1 08:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6caa7222651ed57e75e820b3ee1920f6fa38a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:24:88:29:f8:a7:0b:53:c9:60:60:6f:57:
8d:ec:01:95:47:9f:58:1a:c1:57:86:71:6f:3d:95:
2d:b8:f8:7f:be:46:c5:5c:c4:4c:09:0a:99:e7:7d:
b7:57:c7:81:58:a6:c8:aa:dd:82:de:e9:66:3d:18:
f0:a6:bf:41:dc:10:ae:97:2e:c7:68:04:26:d3:a6:
55:fb:9c:42:f1:c5:60:68:c4:8c:8d:ab:20:5c:60:
c6:94:b3:94:f2:cc:1c:61:dd:79:f5:9c:f4:aa:14:
bd:5d:c4:82:3b:ed:7f:60:59:5f:d2:23:54:8f:f0:
66:55:d9:73:4e:d6:83:9c:c4:bb:fa:c6:9e:3d:fb:
79:cf:2a:13:8a:21:85:a1:63:f2:77:7f:82:28:6b:
1e:d7:9e:38:a6:7b:93:b6:f8:c3:64:c6:3d:30:ee:
a0:42:bb:02:8a:53:74:47:6a:0a:a9:a6:5e:eb:3f:
e5:e7:3a:c8:48:0b:72:33:69:9c:d4:55:41:cd:09:
97:7d:46:de:36:02:d0:02:21:fb:53:46:ad:5e:3f:
89:9c:03:0b:11:44:ee:51:ab:ce:e9:47:20:e7:c7:
61:56:f9:73:2f:c2:6a:67:99:a9:2b:35:de:6c:53:
41:76:cf:96:7a:fe:11:9b:82:d2:52:f1:a2:ee:94:
2d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CA:A7:22:26:51:ED:57:E7:5E:82:0B:3E:E1:92:0F:6F:A3:8A:7B
X509v3 Authority Key Identifier:
keyid:F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/9sqnIiZR7VfnXoILPuGSD2-jins.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.150.192.0/22
Signature Algorithm: sha256WithRSAEncryption
92:c0:5a:6d:04:48:ca:64:ac:79:97:fc:5c:35:5e:90:61:4f:
63:95:90:99:7e:2b:be:77:23:21:33:4f:d5:fe:bc:7a:ff:de:
2f:8f:60:a6:d6:07:f2:50:84:67:76:b9:06:b2:1d:ff:4a:c4:
7f:3c:92:7c:50:12:7d:95:a8:fe:8e:ef:fb:1c:dc:be:a7:a6:
49:50:09:db:ba:64:d0:39:8c:96:e5:ca:ed:e7:a9:10:da:4f:
3c:3f:c3:e3:d6:e3:05:89:44:5f:57:48:8e:cd:68:01:dd:43:
9f:f2:4d:ec:2e:9a:54:7e:1a:83:8b:9b:4e:95:86:c9:0d:99:
c1:c2:26:24:76:c7:83:ed:7b:00:f6:b5:e2:42:6e:1b:fd:81:
4c:ee:09:df:bf:45:95:f5:9a:ef:fb:0c:1d:f9:b6:e8:25:de:
01:fc:c1:9f:2e:5a:d3:8f:af:8a:89:e5:68:92:3b:bd:b3:2e:
37:33:cd:d6:f2:79:43:00:ac:a7:b4:9f:f7:4d:d8:f1:95:51:
06:32:0f:a2:36:e0:7a:97:e7:37:0c:43:fc:71:62:4a:46:b1:
55:7a:c0:db:07:00:62:ea:86:8a:44:c4:f0:2c:01:8a:36:5b:
03:7e:14:47:7c:bf:25:44:65:58:14:df:cd:d9:81:5a:cb:0a:
a3:b7:14:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:09 2023 by rpki-client on console-fra.rpki-client.org