Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/00jnhUzHH6oKBhpfpTQ8c1wqxWs.roa
File: 00jnhUzHH6oKBhpfpTQ8c1wqxWs.roa (raw, json)
Hash identifier: WFgBusH68wUmM0kFPyZcXccj0vc5cSngx/Lpi0VgyhM=
Subject key identifier: D3:48:E7:85:4C:C7:1F:AA:0A:06:1A:5F:A5:34:3C:73:5C:2A:C5:6B
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 01841363B413E4FD6B0C9D8768FD5651920F
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/00jnhUzHH6oKBhpfpTQ8c1wqxWs.roa
Signing time: Wed 26 Oct 2022 08:23:32 +0000
ROA not before: Wed 26 Oct 2022 08:23:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 37.221.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:63:b4:13:e4:fd:6b:0c:9d:87:68:fd:56:51:92:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Oct 26 08:23:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d348e7854cc71faa0a061a5fa5343c735c2ac56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:df:f9:78:c6:25:28:36:69:e4:80:40:ab:0f:
bf:6a:ed:b3:da:c1:0c:1c:f4:c8:9a:20:2c:e5:89:
3e:d5:24:fb:e0:63:7a:70:a9:1e:69:c7:10:63:ca:
18:81:07:9b:a5:9c:5b:bf:6e:3d:d0:6d:88:bb:de:
a8:8b:f8:85:10:ba:3d:13:7a:d0:d8:d2:d9:19:f4:
bc:7a:0f:d4:6d:29:5a:54:92:69:52:e6:0a:29:74:
8b:a6:9c:4d:60:ee:32:d7:e1:cd:f5:48:98:27:79:
dc:9a:b4:bb:40:4a:55:9f:4d:6a:02:c9:6a:f7:1b:
3c:bf:df:c3:30:03:ce:36:5f:ac:fd:e3:16:3f:52:
e8:7b:57:bd:4f:bf:56:ca:e7:04:70:62:02:9a:8f:
b5:5f:65:71:9d:7b:9b:19:5f:e2:c1:ab:b6:2a:05:
ba:8f:c2:c2:e8:a0:14:73:61:f9:84:a1:27:49:f8:
01:fa:bb:69:f0:f7:03:df:08:0f:35:93:9e:de:55:
76:35:4e:be:93:e9:ab:dc:21:62:62:c7:1d:bf:7e:
6e:ef:93:78:47:31:e5:07:3e:2c:72:85:05:96:a5:
1d:ef:d9:5b:bf:62:51:8f:96:aa:75:d0:15:a5:4b:
fa:09:37:8e:f2:46:1c:71:9b:88:a6:df:ab:e3:6d:
f0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:48:E7:85:4C:C7:1F:AA:0A:06:1A:5F:A5:34:3C:73:5C:2A:C5:6B
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/00jnhUzHH6oKBhpfpTQ8c1wqxWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.64.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:ea:d2:34:e9:93:52:0a:4c:31:b6:0b:77:9d:c0:39:ef:cf:
e2:66:83:3a:b1:4f:f0:e4:64:36:d9:20:cb:77:59:a0:d7:54:
d3:f2:c8:c9:c6:1c:f0:31:bd:a5:29:8f:d6:51:fe:f9:c6:3c:
ff:43:56:0a:47:8a:68:3c:51:26:32:f8:2a:d5:fa:0b:3d:55:
2f:a2:09:57:3a:06:ac:af:99:ee:ec:76:a9:0c:23:03:c0:35:
61:e7:f2:ea:af:fe:81:9f:ec:ca:42:f4:7b:76:c3:07:ac:16:
20:3a:50:56:b7:2a:fa:2d:ce:f7:28:9c:ee:f9:6b:6f:29:5c:
28:bc:8e:37:58:6d:77:7d:6b:46:45:b2:5e:8c:db:af:82:75:
56:00:e0:52:13:42:50:18:05:2c:38:04:b7:e2:35:5f:50:f6:
b2:af:f5:e0:51:3f:7a:4c:ae:bd:64:75:41:20:2d:70:8a:d7:
b5:ba:4f:f0:be:e1:09:6b:4a:01:0f:eb:91:bb:ea:c3:b1:8a:
39:ef:13:f7:aa:5c:b6:09:8d:69:22:90:0e:d4:d8:a1:42:a1:
1a:8c:0e:96:30:be:91:66:53:5e:0d:86:1f:d3:15:1e:ef:cf:
08:20:88:29:38:c0:35:8f:8d:f7:5f:cc:20:d5:0b:f6:51:2e:
2b:3a:0f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org