Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/J4jsIJH08uEBNW9B7bdF2bQxhW4.roa
File: J4jsIJH08uEBNW9B7bdF2bQxhW4.roa (raw, json)
Hash identifier: zeFWmRcK+pdGdPrpIMcNHZ1WIVkFL5bF5IipU5Jeurw=
Subject key identifier: 27:88:EC:20:91:F4:F2:E1:01:35:6F:41:ED:B7:45:D9:B4:31:85:6E
Certificate issuer: /CN=0268b930beeca51fbf3543fe79f9b19345cf13d5
Certificate serial: 0183A6DD51FC41A200318290A72C86B06DBC
Authority key identifier: 02:68:B9:30:BE:EC:A5:1F:BF:35:43:FE:79:F9:B1:93:45:CF:13:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ami5ML7spR-_NUP-efmxk0XPE9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/J4jsIJH08uEBNW9B7bdF2bQxhW4.roa
Signing time: Wed 05 Oct 2022 06:37:45 +0000
ROA not before: Wed 05 Oct 2022 06:37:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1064
IP address blocks: 192.76.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:dd:51:fc:41:a2:00:31:82:90:a7:2c:86:b0:6d:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0268b930beeca51fbf3543fe79f9b19345cf13d5
Validity
Not Before: Oct 5 06:37:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2788ec2091f4f2e101356f41edb745d9b431856e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:aa:ff:64:fe:f1:1a:4f:40:40:3b:77:f0:47:
cc:dc:69:ed:42:21:ed:dd:08:b2:14:1f:82:1e:d3:
f0:b6:4f:46:6f:28:21:9e:e0:14:30:e8:12:23:59:
38:a7:7c:18:77:e4:16:cb:da:87:b1:c8:17:a9:04:
af:0d:3d:35:9c:87:39:f0:ba:27:c7:4c:c4:cc:7c:
db:13:d0:75:c0:aa:d1:72:30:14:92:d8:2b:a1:4a:
38:8d:f3:88:e7:c2:50:86:87:2f:2f:7b:05:94:d3:
5c:74:0f:75:7f:e0:c9:0a:65:88:e9:4d:86:16:08:
02:78:6a:b2:bf:f3:2d:bb:19:fa:10:5d:c0:71:a0:
36:53:c9:81:df:dd:29:97:f1:7f:c9:b0:f6:c6:91:
c3:d0:10:35:2a:c6:91:7f:8a:9f:fb:4c:65:16:b5:
90:67:4b:f2:0a:5d:b6:6e:2e:74:aa:d1:fe:a4:c2:
de:25:8c:83:aa:3d:db:e9:5f:59:e6:2c:cc:9b:24:
86:6c:90:7f:ea:ab:63:73:7a:f7:7a:a6:00:74:0c:
dd:8f:60:12:cb:b9:2a:7b:ce:92:f7:65:f0:bc:73:
44:8f:82:21:4f:96:6c:0f:d8:26:39:b6:83:f8:8c:
ba:96:65:1f:5d:3b:45:1c:b8:5c:0e:1f:e5:44:ae:
d7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:88:EC:20:91:F4:F2:E1:01:35:6F:41:ED:B7:45:D9:B4:31:85:6E
X509v3 Authority Key Identifier:
keyid:02:68:B9:30:BE:EC:A5:1F:BF:35:43:FE:79:F9:B1:93:45:CF:13:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ami5ML7spR-_NUP-efmxk0XPE9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/J4jsIJH08uEBNW9B7bdF2bQxhW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/Ami5ML7spR-_NUP-efmxk0XPE9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.76.164.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:30:67:5f:62:36:35:31:62:73:4e:b0:2b:ea:eb:29:f8:43:
7d:1b:66:5d:e9:cf:b6:9a:72:94:25:82:02:8f:63:b7:c3:e7:
0c:16:24:b3:5c:a2:0a:d9:fb:12:79:f0:ac:e7:1a:92:42:3b:
88:9b:98:94:f0:92:14:56:c5:30:a8:0c:89:83:57:19:09:0f:
fe:92:e8:83:11:e9:1b:4a:6e:d0:e6:fd:2b:43:11:9e:57:1b:
76:80:7f:1d:bf:67:75:67:d1:60:7a:8f:04:be:3f:98:9b:d7:
f5:9b:b2:d3:29:b8:54:97:1d:4b:93:eb:a8:6e:c7:93:bd:3d:
39:08:04:fe:ff:36:c8:b7:95:8a:17:4c:f7:be:3e:49:81:6d:
b6:da:86:74:32:e1:55:a4:4d:71:26:3d:67:8b:10:7c:dd:94:
62:71:88:1c:cf:04:38:e3:7e:f2:92:35:dd:9f:0f:3f:cd:01:
f3:af:05:9a:eb:3c:96:de:2e:19:2d:fe:66:47:d3:29:08:52:
3d:47:97:a9:1c:e1:69:c4:4a:31:e8:d8:91:75:be:5b:a9:71:
7f:29:2a:e1:ad:42:fc:cd:46:60:39:e9:25:38:06:f6:dd:ee:
e6:56:a2:74:fd:c8:f5:1b:e1:9e:4e:78:65:68:f2:6b:cf:ce:
3f:45:c3:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:56 2023 by rpki-client on console-fra.rpki-client.org