Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/1ed3e2-a09c-49c2-9928-c5c082a313f7/1/jYzlbduc38IuYDRIU_9zuF6H-u4.roa
File: jYzlbduc38IuYDRIU_9zuF6H-u4.roa (raw, json)
Hash identifier: gOXiDFwZShCiZwWhJr31Y2xWpEeJih2VowrbaqmBdPA=
Subject key identifier: 8D:8C:E5:6D:DB:9C:DF:C2:2E:60:34:48:53:FF:73:B8:5E:87:FA:EE
Certificate issuer: /CN=45962ea566054656ef82aace2d71c76d1b0b88bb
Certificate serial: C527DE
Authority key identifier: 45:96:2E:A5:66:05:46:56:EF:82:AA:CE:2D:71:C7:6D:1B:0B:88:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZYupWYFRlbvgqrOLXHHbRsLiLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/1ed3e2-a09c-49c2-9928-c5c082a313f7/1/jYzlbduc38IuYDRIU_9zuF6H-u4.roa
Signing time: Sat 01 Jan 2022 01:56:04 +0000
ROA not before: Sat 01 Jan 2022 01:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 130.193.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12920798 (0xc527de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45962ea566054656ef82aace2d71c76d1b0b88bb
Validity
Not Before: Jan 1 01:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d8ce56ddb9cdfc22e60344853ff73b85e87faee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:21:e6:68:d8:bb:be:93:bc:9d:11:49:fe:6d:
23:62:d4:77:c2:b4:f0:af:27:b0:9d:ae:23:72:b0:
42:ea:ad:8e:b2:ff:2e:8f:a9:4d:79:05:66:15:15:
47:f4:23:65:7a:55:bc:f0:89:19:7c:6d:60:11:5d:
c6:03:d1:6c:77:8f:60:f3:27:1d:12:d0:7c:01:0d:
5f:99:c8:99:9d:bd:81:60:3c:68:6b:cf:a9:5b:e6:
86:d5:e9:ec:e6:f9:49:88:13:f0:e6:2a:42:34:2b:
da:27:9a:ca:27:35:1e:21:3c:92:7d:7f:21:db:14:
67:24:e3:2f:14:fc:76:a1:ad:10:46:e4:07:60:e3:
31:c0:cc:69:ee:42:93:9e:a2:68:37:97:e3:8c:b1:
44:bd:8d:04:68:ec:7c:25:8c:71:ca:a5:f1:da:e5:
0c:c7:de:13:87:bb:61:6f:35:34:14:e0:1e:23:cb:
62:aa:24:b4:0a:1d:1d:15:21:6b:c3:0f:76:9d:93:
09:0e:bc:01:83:aa:30:67:68:e9:99:bf:11:6b:08:
51:ac:33:8a:04:94:e3:65:8d:f2:c4:5c:9d:5a:fb:
de:5c:62:02:5f:68:60:ff:dc:54:0a:d2:7d:6e:b3:
00:c7:60:9a:0c:8a:d7:c1:ee:49:c4:9e:4c:aa:07:
33:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:8C:E5:6D:DB:9C:DF:C2:2E:60:34:48:53:FF:73:B8:5E:87:FA:EE
X509v3 Authority Key Identifier:
keyid:45:96:2E:A5:66:05:46:56:EF:82:AA:CE:2D:71:C7:6D:1B:0B:88:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZYupWYFRlbvgqrOLXHHbRsLiLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1ed3e2-a09c-49c2-9928-c5c082a313f7/1/jYzlbduc38IuYDRIU_9zuF6H-u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1ed3e2-a09c-49c2-9928-c5c082a313f7/1/RZYupWYFRlbvgqrOLXHHbRsLiLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.2.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a6:fb:0c:c3:4f:d1:67:3a:e8:bf:15:36:51:db:17:ce:8f:
34:2e:e1:7a:47:1f:de:fc:05:89:46:3f:55:a3:7f:ca:56:18:
9d:2c:01:55:f0:61:8b:ed:fb:60:e2:1e:e7:6b:74:ce:44:b2:
0f:76:89:d5:6c:58:53:3d:aa:21:6d:c0:ee:41:0e:7d:66:dc:
44:3b:2a:74:62:dc:cf:89:d5:00:cc:8a:21:93:fc:35:43:21:
af:17:de:6d:42:08:b1:46:29:ae:bb:42:c7:49:8f:bf:04:67:
33:70:a1:51:a6:e0:05:1d:92:1b:6e:4a:dd:ae:5a:bc:58:6c:
27:e8:a2:be:1c:19:26:b5:b4:d8:33:a9:66:ac:4c:89:a5:37:
2d:69:10:5d:6b:50:df:92:26:a9:28:9e:8c:fa:6d:6a:1b:00:
e7:a7:ac:cf:84:66:1c:1e:43:69:b6:54:52:08:34:02:d3:78:
d6:46:3b:5d:bc:d3:2f:61:c2:34:bf:24:d3:8f:21:f7:52:5d:
81:de:34:b3:ab:24:a5:38:72:a6:b4:8d:b4:50:b7:e7:9a:9b:
83:9c:c5:80:52:0c:4d:71:e1:3b:fc:a6:eb:87:40:9f:06:38:
45:00:28:81:49:da:fc:27:1f:67:9a:9a:44:74:34:0c:9c:59:
3b:8c:28:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:46 2023 by rpki-client on console-fra.rpki-client.org