Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/jMnoMQDHx5Ms7pOPZDXbd3EeUgU.roa
File: jMnoMQDHx5Ms7pOPZDXbd3EeUgU.roa (raw, json)
Hash identifier: Wep5HfOHvxmbAiYN74WA8IGr9gbhFpC97TLNc/qWpC4=
Subject key identifier: 8C:C9:E8:31:00:C7:C7:93:2C:EE:93:8F:64:35:DB:77:71:1E:52:05
Certificate issuer: /CN=0a37d807d4f7cdd3e0afe4abc8ee5a880c6090f1
Certificate serial: 09922129
Authority key identifier: 0A:37:D8:07:D4:F7:CD:D3:E0:AF:E4:AB:C8:EE:5A:88:0C:60:90:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjfYB9T3zdPgr-SryO5aiAxgkPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/jMnoMQDHx5Ms7pOPZDXbd3EeUgU.roa
Signing time: Thu 03 Mar 2022 15:36:18 +0000
ROA not before: Thu 03 Mar 2022 15:36:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9583
IP address blocks: 159.151.254.0/24 maxlen: 24
192.109.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160571689 (0x9922129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a37d807d4f7cdd3e0afe4abc8ee5a880c6090f1
Validity
Not Before: Mar 3 15:36:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cc9e83100c7c7932cee938f6435db77711e5205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ab:48:91:74:4f:33:a9:2c:81:bf:d9:34:2a:
2c:d0:ce:5c:58:ce:01:49:ff:8a:a0:3f:b2:0b:8d:
58:70:44:c1:b4:96:df:8f:03:7d:dc:79:f3:74:9c:
4e:e3:23:b1:ba:b9:0f:2a:98:45:18:7b:da:88:b5:
13:cf:50:b2:40:c1:83:34:44:9b:cd:d2:e8:aa:a2:
46:df:76:aa:89:29:98:73:c0:e7:b0:ee:2c:d2:b4:
de:25:70:7f:7f:72:5b:4c:94:04:8d:8d:16:64:e2:
c4:52:94:e9:53:31:77:9c:55:f9:d0:9c:15:69:a1:
e8:b3:75:20:8d:64:bf:a8:99:01:52:c5:42:bd:c6:
47:80:08:d4:c1:6a:10:59:a9:e5:3f:a9:72:80:ff:
61:91:ef:c6:b1:6a:03:4c:09:76:05:9f:da:11:36:
d7:d8:49:8a:9d:e1:da:68:f9:86:85:1d:00:8d:eb:
fd:71:5a:ba:3d:7e:32:26:e6:30:93:09:a8:9c:ae:
36:08:a5:fb:1c:fb:12:81:5f:6c:2b:79:1a:d2:a8:
84:9f:d0:a3:7b:2e:98:ff:4a:54:3b:a4:20:3c:b8:
38:99:f0:1c:f9:61:61:1f:6f:72:b7:3e:51:88:69:
89:9d:05:06:17:9d:de:3a:ec:fd:af:46:e4:62:53:
c7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C9:E8:31:00:C7:C7:93:2C:EE:93:8F:64:35:DB:77:71:1E:52:05
X509v3 Authority Key Identifier:
keyid:0A:37:D8:07:D4:F7:CD:D3:E0:AF:E4:AB:C8:EE:5A:88:0C:60:90:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjfYB9T3zdPgr-SryO5aiAxgkPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/jMnoMQDHx5Ms7pOPZDXbd3EeUgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bc268d-61f0-471f-aab9-800eda2cfb36/1/CjfYB9T3zdPgr-SryO5aiAxgkPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.151.254.0/24
192.109.146.0/24
Signature Algorithm: sha256WithRSAEncryption
40:39:99:aa:5d:0e:69:de:eb:ef:39:6e:1f:67:5f:28:25:3c:
5c:7d:83:d3:bd:52:35:4d:5c:9b:05:e5:89:3b:d4:a4:89:25:
f9:e4:07:4b:8b:5d:56:4f:8b:cd:48:90:12:4d:33:9d:da:85:
f0:45:51:bf:b1:6d:7a:c7:71:b2:41:71:5f:5d:72:9d:40:f9:
42:32:74:f2:bf:a4:b4:87:6c:b4:91:27:5d:e0:48:07:c7:7f:
2e:17:72:0d:ee:3e:4d:f5:d0:a6:3c:51:9e:81:bf:ef:c6:65:
35:4c:5c:14:5f:ff:dd:28:4b:7a:65:ae:03:19:c6:71:dc:ae:
5b:1a:22:a7:55:b7:44:c8:86:00:91:4b:63:b1:2e:1d:e0:13:
08:d5:57:62:83:93:f3:42:7e:9e:27:e4:85:b1:7a:ab:a1:07:
75:2c:6e:99:c9:9c:04:ec:1e:98:b1:24:3a:b9:e6:f5:df:1f:
91:25:ca:e8:44:92:50:81:c6:24:98:d0:75:99:a8:e3:b4:42:
a0:af:d6:8c:3e:a1:15:c2:a5:f3:d6:ed:7f:3a:b0:61:fb:5e:
73:48:ec:32:0c:02:c8:05:36:d5:25:01:4f:c4:d1:ee:4d:61:
64:ba:1d:ee:b5:25:4f:fe:06:11:e0:fb:bb:8e:a5:cd:43:38:
b9:8d:be:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org