Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/jn3JFRZxi8I6SZEY78B6GrYzUws.roa
File: jn3JFRZxi8I6SZEY78B6GrYzUws.roa (raw, json)
Hash identifier: u2LLNKmfp1pkMdUlCEISwssgTCNnCX4KHNkg4q7fz0Y=
Subject key identifier: 8E:7D:C9:15:16:71:8B:C2:3A:49:91:18:EF:C0:7A:1A:B6:33:53:0B
Certificate issuer: /CN=a73d640d90bf3d67f2498138cc371f654647ddad
Certificate serial: 01619573
Authority key identifier: A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/jn3JFRZxi8I6SZEY78B6GrYzUws.roa
Signing time: Sat 01 Jan 2022 16:04:57 +0000
ROA not before: Sat 01 Jan 2022 16:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41970
IP address blocks: 194.60.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23172467 (0x1619573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73d640d90bf3d67f2498138cc371f654647ddad
Validity
Not Before: Jan 1 16:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e7dc91516718bc23a499118efc07a1ab633530b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ce:df:ec:a0:43:e7:ff:c3:c0:4f:6a:44:78:
59:49:61:41:5a:9b:54:6d:ef:18:79:a7:21:61:50:
ae:90:f3:34:db:3b:4c:09:00:fa:db:94:5c:c7:ba:
78:aa:bf:e6:51:f3:74:f2:9d:68:06:ce:e0:a2:6c:
2a:c9:83:b5:16:3b:7f:38:19:2d:2d:0d:f5:45:47:
b9:4e:fc:3a:3a:9d:4e:ca:9f:9e:ce:18:af:5d:14:
cb:8e:6b:3d:ef:c3:d9:38:bc:bd:43:9a:c8:bd:77:
6c:a7:de:7a:20:a8:9e:b2:b6:f3:25:12:bf:24:09:
04:e2:81:cf:c2:e3:f0:94:99:34:02:ef:93:32:61:
20:47:d1:8e:3c:36:dd:60:e3:56:f1:52:30:b6:46:
55:f6:8b:11:b1:74:d2:24:37:6d:40:47:61:92:67:
db:fd:1d:79:23:50:dd:7f:09:e5:c6:13:17:bb:41:
bf:30:07:b2:24:08:04:74:5e:51:fb:6d:2d:cc:93:
5a:87:60:ce:7c:50:56:d0:a7:40:4f:d6:72:6d:44:
fa:9f:b3:5b:d7:7a:08:38:0a:85:65:8e:f3:39:d6:
ad:e8:de:4c:1c:32:13:08:8a:a5:eb:73:a1:7a:f3:
08:fe:de:89:aa:d3:7e:bb:d1:60:1a:7a:72:ad:99:
1a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7D:C9:15:16:71:8B:C2:3A:49:91:18:EF:C0:7A:1A:B6:33:53:0B
X509v3 Authority Key Identifier:
keyid:A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/jn3JFRZxi8I6SZEY78B6GrYzUws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.74.0/24
Signature Algorithm: sha256WithRSAEncryption
92:8e:cc:07:9c:f5:c2:95:21:7c:af:b7:d4:64:b1:3a:d5:49:
16:03:df:a3:a2:fd:d6:cf:f0:21:cd:91:45:62:b3:1e:fb:08:
52:a7:cb:08:79:ab:26:71:f7:83:93:cc:7f:6f:18:7f:07:2e:
6b:bd:17:05:2a:e4:e0:6d:85:77:28:88:20:d0:15:83:2f:6d:
82:17:d9:8f:a8:29:c5:9b:8d:93:0d:e5:a1:e6:e6:f6:f5:28:
0a:f9:a4:16:54:65:d6:25:36:88:bc:3a:dc:ae:1e:ee:55:5c:
55:83:12:43:87:68:0b:65:84:e4:3f:bc:92:73:2c:21:1c:84:
65:dc:65:ba:46:51:9b:9f:19:05:d2:8d:33:ea:f9:b9:7d:df:
30:01:88:b4:2f:93:a0:4f:08:cf:23:ed:d3:cd:a1:5b:55:f0:
c2:64:4c:8a:1c:77:4a:e0:47:28:80:e4:b1:18:5e:2d:c3:2c:
7e:71:64:4c:b7:ef:ab:85:ff:fe:f5:25:5b:b7:e7:0f:c6:1a:
1c:ad:63:ff:bf:86:97:36:60:cf:93:ef:60:d2:d7:7c:33:fa:
3c:c8:28:48:df:fc:4e:7a:05:d1:3c:bb:9a:36:87:de:30:b0:
1f:72:26:5d:ec:78:4b:2b:3a:03:b4:9c:86:62:43:10:2b:ca:
c0:30:15:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:09 2024 by rpki-client on console-fra.rpki-client.org