Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/JrfB5ju8WuF3jwUJqYOi-XAUNdM.roa
File: JrfB5ju8WuF3jwUJqYOi-XAUNdM.roa (raw, json)
Hash identifier: bKceH5hIXjep1X54cIz7YcTxJH4zCZblAxdsFpo77gE=
Subject key identifier: 26:B7:C1:E6:3B:BC:5A:E1:77:8F:05:09:A9:83:A2:F9:70:14:35:D3
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 09BA7500
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/JrfB5ju8WuF3jwUJqYOi-XAUNdM.roa
Signing time: Thu 23 Jun 2022 12:11:57 +0000
ROA not before: Thu 23 Jun 2022 12:11:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 185.169.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163214592 (0x9ba7500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jun 23 12:11:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26b7c1e63bbc5ae1778f0509a983a2f9701435d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f0:7f:22:06:d4:7b:ae:8d:8a:fe:7b:82:9d:
40:00:6b:41:b8:d1:c9:7d:bd:ee:c8:84:42:d8:6f:
3b:0e:39:8e:86:1e:31:8d:07:23:29:8a:ba:15:2d:
bd:d0:75:6a:c5:5c:ec:c6:3c:4c:62:f8:ef:c3:d3:
db:33:95:c9:29:47:da:67:59:da:71:90:67:63:1f:
d4:3e:d5:ad:bc:aa:4d:3f:9a:5d:e9:7b:85:9a:2f:
2e:f0:d2:12:29:b9:ad:74:9f:2c:27:e5:ce:aa:1c:
64:4e:1c:56:90:ee:e5:aa:e7:1c:03:4e:8a:19:c9:
07:7c:2c:26:e0:84:44:b1:b4:ad:51:cb:70:11:d7:
ca:da:57:f3:d9:20:1e:ba:31:19:50:5b:9a:db:e0:
43:42:03:8c:8d:13:ea:9f:b1:f8:d5:f9:68:01:6c:
4e:f9:6d:27:92:45:10:1f:c1:2a:05:4d:e7:cd:37:
78:6c:f0:26:8c:94:7d:43:18:95:35:35:41:e2:8d:
c7:12:85:16:03:24:e4:c4:9e:75:5c:a6:ab:62:f4:
c5:f8:8c:69:d5:3d:26:18:3b:eb:f7:11:71:a6:2b:
a9:12:e3:b1:ff:7e:69:ed:e3:62:80:30:4f:1d:f0:
f1:bd:0b:c1:40:b8:36:6c:6a:04:da:af:08:50:c8:
89:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B7:C1:E6:3B:BC:5A:E1:77:8F:05:09:A9:83:A2:F9:70:14:35:D3
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/JrfB5ju8WuF3jwUJqYOi-XAUNdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.228.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:c9:84:91:e6:06:d7:c0:ec:f1:09:05:96:21:34:b0:18:4e:
30:50:11:1f:41:29:f1:9f:a4:40:09:48:dc:64:ed:77:85:51:
af:3f:1c:b9:39:b7:6d:bc:a2:48:b5:3c:c1:8d:99:01:51:d2:
fd:fc:7d:93:5a:1d:a5:c5:fa:19:f1:ca:a1:cd:e7:74:56:c3:
30:7c:6c:d4:cf:6b:bd:3f:60:d0:e3:55:21:85:5f:b3:0f:a7:
28:58:45:29:b0:56:04:23:e7:f8:ec:40:d4:99:7c:1e:38:a7:
21:9e:fe:05:bb:a8:7a:90:ef:a9:e0:82:00:82:80:81:c6:38:
bf:95:34:5f:b7:af:04:a2:07:f8:12:1c:7b:48:45:bd:98:83:
8d:0f:bc:d1:95:9b:48:53:89:0c:4c:32:d3:01:e6:56:71:77:
6c:b6:af:2c:25:a4:55:5a:b7:aa:68:fd:9d:a3:be:97:b8:41:
7c:16:d8:bd:5c:89:01:9d:05:77:4b:c9:08:cc:c7:63:72:1e:
a2:63:67:a2:6d:f4:e8:05:37:a8:6c:ab:95:cd:b5:24:42:28:
e9:a3:ba:08:cb:b1:72:73:24:f3:21:c7:12:ac:bc:e4:2e:c5:
7d:50:6c:87:97:b9:0e:d0:ee:e7:16:9e:7d:30:df:f0:d4:92:
a8:07:40:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:57 2023 by rpki-client on console-fra.rpki-client.org