Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/1336c7-a33f-4ec6-82d7-f44166bb2db0/1/JTEbic43Wnaa-UEAmc6f2ww_V_Y.roa
File: JTEbic43Wnaa-UEAmc6f2ww_V_Y.roa (raw, json)
Hash identifier: PLugzBTWtgGD+RJ/4Kdblwwk/J7zOcOKZ8zn+GJelYU=
Subject key identifier: 25:31:1B:89:CE:37:5A:76:9A:F9:41:00:99:CE:9F:DB:0C:3F:57:F6
Certificate issuer: /CN=37fbdf2f5f855e5e1ca48e77c3bdd33bd47b4438
Certificate serial: 0A6B0F47
Authority key identifier: 37:FB:DF:2F:5F:85:5E:5E:1C:A4:8E:77:C3:BD:D3:3B:D4:7B:44:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_vfL1-FXl4cpI53w73TO9R7RDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/1336c7-a33f-4ec6-82d7-f44166bb2db0/1/JTEbic43Wnaa-UEAmc6f2ww_V_Y.roa
Signing time: Sat 01 Jan 2022 05:56:53 +0000
ROA not before: Sat 01 Jan 2022 05:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54145
IP address blocks: 193.151.172.0/22 maxlen: 22
2a0d:e8c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174788423 (0xa6b0f47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37fbdf2f5f855e5e1ca48e77c3bdd33bd47b4438
Validity
Not Before: Jan 1 05:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25311b89ce375a769af9410099ce9fdb0c3f57f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:97:5b:78:2e:47:c5:25:b2:b1:14:f4:77:f1:
87:8f:c6:9f:18:90:ab:97:27:7a:2d:94:95:aa:f4:
35:51:f3:4b:00:1e:3c:c4:80:df:37:c8:d3:68:74:
01:0d:d1:9e:70:48:5f:2b:dc:ff:ef:bd:7a:99:a9:
33:50:89:1d:5b:24:76:aa:89:f2:1b:67:fc:8d:c6:
e0:3a:f8:c9:46:8a:cd:c3:34:e6:72:de:dd:16:d3:
fd:69:4d:11:7d:b6:c2:b0:7c:a5:43:6b:3b:5a:03:
60:3a:b2:c2:f2:d1:af:8d:21:ab:a8:ff:70:dd:ce:
5d:25:f2:38:26:1a:d2:62:bb:05:19:8d:bd:50:fe:
6d:ef:b8:88:52:85:eb:63:fa:80:c0:45:ed:fa:32:
de:f0:d6:f7:0c:bf:5a:b9:8f:1a:89:a8:82:bb:f8:
9d:61:10:33:d9:94:98:e6:1c:c4:e0:ac:a9:30:72:
a1:5e:99:7a:07:33:39:72:01:73:81:3c:09:49:6f:
47:fc:e8:4e:20:0e:4f:fe:7f:e1:4c:36:4b:70:c4:
b7:17:25:bc:97:58:36:8c:1c:1b:06:b2:68:0f:56:
85:d0:8e:b1:3d:9e:b5:62:1a:c4:0d:2a:ab:25:29:
a0:94:b9:15:09:7d:c7:68:e7:87:e5:21:4c:c4:c4:
7e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:31:1B:89:CE:37:5A:76:9A:F9:41:00:99:CE:9F:DB:0C:3F:57:F6
X509v3 Authority Key Identifier:
keyid:37:FB:DF:2F:5F:85:5E:5E:1C:A4:8E:77:C3:BD:D3:3B:D4:7B:44:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_vfL1-FXl4cpI53w73TO9R7RDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/1336c7-a33f-4ec6-82d7-f44166bb2db0/1/JTEbic43Wnaa-UEAmc6f2ww_V_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/1336c7-a33f-4ec6-82d7-f44166bb2db0/1/N_vfL1-FXl4cpI53w73TO9R7RDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.172.0/22
IPv6:
2a0d:e8c0::/29
Signature Algorithm: sha256WithRSAEncryption
06:bc:84:e0:63:44:2d:fb:e8:d6:28:7a:af:0b:66:cb:5a:67:
df:e5:06:4d:92:cb:cf:3a:6a:66:5a:61:a3:90:b2:86:22:29:
7e:25:74:13:b6:ca:92:20:e0:95:96:5a:52:95:43:75:f8:d6:
00:6a:88:69:34:ee:7a:09:f4:4b:d6:be:99:15:ad:1c:e6:98:
9d:43:1b:d4:3e:77:c4:3b:8b:1f:78:1e:a2:90:87:1c:b2:5a:
aa:e1:e9:c5:b0:9b:3f:d7:63:5f:dd:07:88:25:ad:9b:41:59:
5a:fd:ee:91:94:f5:8f:fe:91:66:37:7a:34:f1:0a:0f:d4:68:
70:16:b2:f2:2a:3f:a8:66:19:bd:e1:55:b9:9e:7f:57:2e:c9:
f4:9e:b3:4e:bb:79:a7:a7:e0:4d:59:05:a6:4d:99:1b:d2:ca:
a4:60:71:f8:d3:82:b8:a2:0d:4f:a2:2b:3b:05:c7:12:31:26:
24:10:3b:dc:a9:d1:ba:60:27:a0:cb:e1:1e:b9:05:6b:23:33:
70:6b:5a:a1:97:ca:f4:f8:00:07:62:27:68:2e:c9:03:d3:5e:
72:ea:39:71:04:69:ca:4f:ba:d7:94:78:a6:f9:df:7d:8f:b5:
0b:ee:c6:92:97:a5:cf:40:ae:38:35:77:f9:12:4e:44:86:fe:
5a:9e:e6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:06 2023 by rpki-client on console-fra.rpki-client.org