Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b41519-46fc-44da-a9af-e3f4bbcbbbd7/1/Rjje7zLg84b0TKvkxwxST-mWZak.roa
File: Rjje7zLg84b0TKvkxwxST-mWZak.roa (raw, json)
Hash identifier: M80A1rtqDvVMPbclWE5gX30oiJwiIwKQ1EbiFhMN0VU=
Subject key identifier: 46:38:DE:EF:32:E0:F3:86:F4:4C:AB:E4:C7:0C:52:4F:E9:96:65:A9
Certificate issuer: /CN=2031bc7f71bb0d1a8566fd4604214507c0d4711b
Certificate serial: 0D60F520
Authority key identifier: 20:31:BC:7F:71:BB:0D:1A:85:66:FD:46:04:21:45:07:C0:D4:71:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IDG8f3G7DRqFZv1GBCFFB8DUcRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b41519-46fc-44da-a9af-e3f4bbcbbbd7/1/Rjje7zLg84b0TKvkxwxST-mWZak.roa
Signing time: Sat 01 Jan 2022 07:56:50 +0000
ROA not before: Sat 01 Jan 2022 07:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49362
IP address blocks: 193.9.160.0/19 maxlen: 19
2a0d:aa00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224458016 (0xd60f520)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2031bc7f71bb0d1a8566fd4604214507c0d4711b
Validity
Not Before: Jan 1 07:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4638deef32e0f386f44cabe4c70c524fe99665a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7a:a7:8e:11:da:0d:59:6d:3d:e5:2f:37:27:
b8:45:25:af:9f:71:fd:16:98:48:e8:95:6a:b5:a7:
7b:d2:0a:bf:c1:a5:43:c9:3c:42:8d:10:a9:2b:03:
fa:bc:5c:49:28:59:8c:02:43:72:0b:ae:cf:4b:9d:
b5:01:9c:21:5f:2b:6e:60:37:f1:95:74:53:f7:8e:
f1:67:f9:5d:69:78:ad:f7:a2:a4:e9:3c:26:99:f3:
42:86:09:4b:41:4c:9c:c0:69:88:4c:f7:c0:a4:34:
6e:d8:d3:fb:c3:b7:ee:5e:48:ca:13:05:2e:1b:df:
6a:78:41:00:a2:5e:3d:9c:78:13:37:9e:b5:f5:7e:
b3:20:03:af:90:b1:e6:af:f7:e7:8c:9b:8b:ce:7d:
a8:be:70:91:39:ac:b6:61:d7:c5:f4:c2:50:7a:2a:
c3:b5:57:ea:61:28:0d:bf:31:e1:90:7c:72:ba:85:
4b:d3:54:53:3d:25:1a:18:d3:23:80:ce:48:28:39:
19:29:89:67:fe:d8:d8:b4:57:06:07:92:84:86:e5:
35:2d:62:a4:dd:4a:13:2e:95:34:1b:30:11:d0:d1:
f7:41:59:ac:1e:72:8f:1f:49:69:f4:3b:37:b9:21:
77:fe:92:c5:d1:e2:8e:df:86:7a:3f:85:6b:af:d9:
c4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:38:DE:EF:32:E0:F3:86:F4:4C:AB:E4:C7:0C:52:4F:E9:96:65:A9
X509v3 Authority Key Identifier:
keyid:20:31:BC:7F:71:BB:0D:1A:85:66:FD:46:04:21:45:07:C0:D4:71:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IDG8f3G7DRqFZv1GBCFFB8DUcRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b41519-46fc-44da-a9af-e3f4bbcbbbd7/1/Rjje7zLg84b0TKvkxwxST-mWZak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b41519-46fc-44da-a9af-e3f4bbcbbbd7/1/IDG8f3G7DRqFZv1GBCFFB8DUcRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.160.0/19
IPv6:
2a0d:aa00::/29
Signature Algorithm: sha256WithRSAEncryption
c7:28:a2:05:f0:4a:42:26:e1:fc:c8:3a:0a:fd:bc:87:5a:0c:
26:43:58:26:0a:4f:77:d5:8f:a4:50:2c:95:5e:4b:5e:b0:4e:
5c:da:f7:d9:cf:96:49:8d:50:8e:fa:12:85:da:c5:4a:a1:2e:
dd:ef:3e:94:42:ac:fa:c3:7d:d0:97:53:6f:ae:92:e5:73:50:
21:c7:07:a1:ed:93:5e:e2:65:b9:00:42:22:91:8e:29:76:a1:
78:12:0b:4e:66:ff:ab:15:ca:2f:71:52:26:e2:fd:c4:44:07:
19:5a:21:92:71:c8:6c:20:b7:71:00:4c:47:a7:f4:1e:4f:2c:
8b:7e:01:22:04:de:26:6f:dd:e7:54:1f:27:3c:ca:57:40:ed:
73:cc:64:a4:cd:df:5a:c1:a1:2a:d8:10:1f:4d:6b:79:ae:c4:
f1:12:46:8e:dc:4d:03:36:09:59:51:2e:c4:d8:e6:a3:09:44:
5c:10:73:af:08:cb:ca:7f:d8:25:1c:d1:b3:11:03:0e:45:04:
a4:0b:5b:fd:e6:a7:56:af:e4:66:af:7e:03:ec:bb:7e:71:4e:
ef:2c:bf:5d:37:e0:d6:aa:67:9e:5a:88:7e:b7:06:8e:f5:84:
58:8d:ef:b7:f9:a8:2b:be:40:f3:42:89:a0:7d:cf:cf:59:a6:
d0:d4:b5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:03 2023 by rpki-client on console-fra.rpki-client.org