Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/1JfLHr_Xacjoy3QoNMdq2ifoyTc.roa
File: 1JfLHr_Xacjoy3QoNMdq2ifoyTc.roa (raw, json)
Hash identifier: 9Cowa9Pa0k2PJ4MjcPRumkOAic/d1Oh3ji3P3CcGZqQ=
Subject key identifier: D4:97:CB:1E:BF:D7:69:C8:E8:CB:74:28:34:C7:6A:DA:27:E8:C9:37
Certificate issuer: /CN=523881993cf0db674e89db5815e6f189a6c60d1f
Certificate serial: 07714D
Authority key identifier: 52:38:81:99:3C:F0:DB:67:4E:89:DB:58:15:E6:F1:89:A6:C6:0D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjiBmTzw22dOidtYFebxiabGDR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/1JfLHr_Xacjoy3QoNMdq2ifoyTc.roa
Signing time: Tue 03 May 2022 20:13:32 +0000
ROA not before: Tue 03 May 2022 20:13:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206234
IP address blocks: 185.192.121.0/24 maxlen: 24
185.192.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487757 (0x7714d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=523881993cf0db674e89db5815e6f189a6c60d1f
Validity
Not Before: May 3 20:13:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d497cb1ebfd769c8e8cb742834c76ada27e8c937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fe:04:9b:52:02:0d:e7:b3:a7:d7:d3:c2:fc:
6a:de:70:2e:f3:8a:a0:07:08:06:ce:12:91:ec:60:
52:68:44:a2:a4:c5:27:ff:54:44:ca:5e:b2:4f:ea:
15:cb:94:5e:1c:9b:b3:ad:1a:ae:5c:06:02:9c:d9:
38:79:55:ff:17:88:19:ca:ae:7d:b6:30:e5:95:7b:
ca:83:72:f4:6d:2e:b9:7b:11:4b:73:6a:06:a6:16:
d5:9c:24:57:93:81:05:27:53:57:3d:a2:b9:7c:dc:
46:5d:60:ec:ba:40:e9:a9:2d:c1:8c:13:94:df:fb:
b0:86:84:5d:f5:1a:e3:40:ff:a3:6d:b6:25:df:22:
d6:0c:77:41:62:84:76:27:45:bd:b1:e2:0f:41:a9:
9f:51:72:c9:51:6a:98:4d:4f:84:9d:40:05:1a:8e:
da:a8:cb:ea:6f:cd:ce:df:4e:32:60:64:49:61:5b:
02:ed:85:02:03:1d:c4:57:7e:46:2d:d6:fa:04:1c:
1e:2c:b6:e8:63:db:98:b9:65:ab:4a:e4:9e:17:97:
91:2a:48:50:c9:0d:63:40:d6:56:85:a3:e1:76:91:
df:13:b8:8c:19:6c:fb:89:b1:1c:28:5b:69:07:ba:
d1:94:8b:7b:d7:21:9b:9c:c5:c6:e8:18:c4:ed:eb:
b8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:97:CB:1E:BF:D7:69:C8:E8:CB:74:28:34:C7:6A:DA:27:E8:C9:37
X509v3 Authority Key Identifier:
keyid:52:38:81:99:3C:F0:DB:67:4E:89:DB:58:15:E6:F1:89:A6:C6:0D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjiBmTzw22dOidtYFebxiabGDR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/1JfLHr_Xacjoy3QoNMdq2ifoyTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/7d0353-3a62-4c39-bd3a-c3a3521e8f70/1/UjiBmTzw22dOidtYFebxiabGDR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.120.0/23
Signature Algorithm: sha256WithRSAEncryption
14:78:b7:7d:b6:d0:f6:fa:40:0e:25:8a:c1:71:5f:f8:71:71:
d5:09:23:8c:81:ef:2b:18:8e:90:98:24:c6:ba:7a:8d:6f:fa:
4e:ed:9d:d4:29:e4:91:2d:1b:31:02:8d:d6:12:83:50:13:86:
d5:2f:4c:46:18:23:7a:2b:f3:63:0a:4a:18:20:1f:eb:d0:99:
69:a9:ed:c4:c9:c4:3b:c0:20:96:d8:bb:a6:9d:50:ed:5b:49:
bc:7e:2c:2a:87:16:89:b3:20:b7:56:a1:1d:d4:f9:f0:5e:e8:
b8:e8:fc:d3:3a:8c:51:08:df:b5:bf:9a:98:11:d7:8a:66:b0:
26:e1:a6:7b:34:6b:e5:09:cd:be:94:17:a0:10:23:a3:ab:c6:
28:7d:7c:25:66:6a:b8:27:7f:c7:75:00:ad:f0:20:57:3a:af:
48:ef:bc:0b:18:28:3f:ba:06:ae:a9:95:ad:c4:97:d4:ec:bb:
89:51:eb:28:30:bf:01:4c:b4:bc:2b:23:f6:b7:96:2f:3a:78:
73:e8:42:a5:d9:e6:8e:02:91:2c:32:4a:62:ae:07:58:0d:0b:
43:63:be:e1:dc:dd:fd:16:47:fc:f4:2b:97:cb:a0:c7:7f:73:
da:c0:13:89:3c:da:c8:91:25:54:44:47:fc:0b:46:21:d3:6d:
f9:ed:c5:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:12 2024 by rpki-client on console-ams.rpki-client.org