Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/cd27a8-5e21-48ff-9dfe-cf5e1eaa37e1/1/JzGI5PEol7vohzgmou-h5WBUdDM.roa
File: JzGI5PEol7vohzgmou-h5WBUdDM.roa (raw, json)
Hash identifier: 2vhZFOa9KZJft0tg5ZXZVyLtZR3WaLLqLzPvEtYvX1w=
Subject key identifier: 27:31:88:E4:F1:28:97:BB:E8:87:38:26:A2:EF:A1:E5:60:54:74:33
Certificate issuer: /CN=07e405e9d9b757e8141b4c638d65f5411adb0e2f
Certificate serial: 7D0421
Authority key identifier: 07:E4:05:E9:D9:B7:57:E8:14:1B:4C:63:8D:65:F5:41:1A:DB:0E:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-QF6dm3V-gUG0xjjWX1QRrbDi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/cd27a8-5e21-48ff-9dfe-cf5e1eaa37e1/1/JzGI5PEol7vohzgmou-h5WBUdDM.roa
Signing time: Sat 01 Jan 2022 02:57:25 +0000
ROA not before: Sat 01 Jan 2022 02:57:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 212.18.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8193057 (0x7d0421)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07e405e9d9b757e8141b4c638d65f5411adb0e2f
Validity
Not Before: Jan 1 02:57:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=273188e4f12897bbe8873826a2efa1e560547433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:fc:f2:1c:a1:9c:3b:10:b2:4d:10:69:11:
51:2c:63:19:b0:bf:c6:7e:d0:7d:ab:89:7c:b8:ee:
69:de:a6:f6:40:a3:51:82:7e:58:3d:ce:c7:df:95:
9a:1b:eb:e3:f1:51:88:0c:21:bd:f4:46:af:52:3c:
7d:34:c7:d8:df:de:04:3c:fc:d6:f2:3c:ec:c0:ad:
77:76:41:7c:2b:45:a5:65:27:5f:bb:5b:07:00:b7:
f0:53:3b:bc:5c:38:18:04:db:fd:bd:24:b5:dd:33:
8f:31:23:2a:71:bd:4e:49:1f:f9:bb:86:02:43:3e:
9d:00:2b:35:5b:af:3c:a9:79:75:28:5e:5a:96:9c:
b2:93:4c:bf:c4:6c:20:88:a6:cf:e2:d5:90:50:0d:
f6:60:11:0c:7e:57:a2:d9:c2:b0:b8:bf:d7:5f:f3:
82:ad:3c:31:13:89:af:3c:95:2e:97:e2:c2:3e:a3:
23:92:51:74:3c:b6:36:f1:94:f8:00:0e:5e:0b:ba:
95:66:42:05:6c:4d:ec:09:0f:47:36:81:e6:a4:95:
55:d8:5d:ba:39:32:67:18:4b:8d:94:87:4f:ae:f9:
65:d7:c0:f9:0b:c2:ee:7a:3a:c3:b9:d1:35:fe:71:
6f:b9:12:43:34:44:d0:26:b8:06:b2:2c:94:be:cb:
33:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:31:88:E4:F1:28:97:BB:E8:87:38:26:A2:EF:A1:E5:60:54:74:33
X509v3 Authority Key Identifier:
keyid:07:E4:05:E9:D9:B7:57:E8:14:1B:4C:63:8D:65:F5:41:1A:DB:0E:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-QF6dm3V-gUG0xjjWX1QRrbDi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/cd27a8-5e21-48ff-9dfe-cf5e1eaa37e1/1/JzGI5PEol7vohzgmou-h5WBUdDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/cd27a8-5e21-48ff-9dfe-cf5e1eaa37e1/1/B-QF6dm3V-gUG0xjjWX1QRrbDi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.103.0/24
Signature Algorithm: sha256WithRSAEncryption
be:f0:d6:e8:a7:05:f3:27:e8:ce:37:0d:27:95:21:44:e8:a4:
a7:93:8a:56:3b:35:4c:eb:19:f6:58:6d:1f:b1:a4:d3:51:9f:
3b:f2:5a:f8:53:92:ba:42:0b:68:d2:1a:0c:4f:83:17:12:2a:
8b:0d:60:32:56:62:a8:2d:77:91:f7:5c:44:0b:58:ae:17:c4:
f2:d2:bb:ba:95:c6:92:16:ae:a8:b9:6f:77:33:59:c7:09:e1:
c5:95:f7:7e:85:be:8c:44:74:9e:0f:b8:be:61:a4:8e:17:9a:
c7:07:ab:35:9b:4d:71:80:45:66:d8:8b:d0:46:65:f1:9b:03:
de:39:43:24:b9:47:b5:2c:95:3a:71:f2:b7:df:3e:d1:8d:19:
10:0f:dc:fd:c7:41:32:a2:45:77:d6:10:c6:f2:61:5b:85:96:
5e:16:0a:76:97:e7:41:59:de:c6:bd:f8:17:5d:63:8a:00:fb:
67:88:c2:8b:8c:bd:62:61:0e:8a:f4:06:a3:7a:a4:11:15:a9:
2f:6f:9b:34:a4:a4:43:c7:df:ab:48:19:59:5f:14:28:e0:46:
a7:33:48:a6:f7:d9:62:62:9b:c5:3f:47:62:f1:7c:4a:cd:67:
9e:f8:ad:74:ad:f7:5f:ac:06:18:69:41:df:99:57:34:80:88:
a1:b9:7a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-ams.rpki-client.org