Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/JsCCslpuMUiRTFXUs3haUZLQfZA.roa
File: JsCCslpuMUiRTFXUs3haUZLQfZA.roa (raw, json)
Hash identifier: IrCwZ0qxpfUpFyDijCcdNvu/QW/40zjYMohmSfj3N08=
Subject key identifier: 26:C0:82:B2:5A:6E:31:48:91:4C:55:D4:B3:78:5A:51:92:D0:7D:90
Certificate issuer: /CN=5f1a427072b31d44784c375dfae42278e71fa836
Certificate serial: 01843EDE0C40245FB87227AAC4AF1BC3C018
Authority key identifier: 5F:1A:42:70:72:B3:1D:44:78:4C:37:5D:FA:E4:22:78:E7:1F:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxpCcHKzHUR4TDdd-uQieOcfqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/JsCCslpuMUiRTFXUs3haUZLQfZA.roa
Signing time: Thu 03 Nov 2022 19:00:50 +0000
ROA not before: Thu 03 Nov 2022 19:00:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399382
IP address blocks: 213.173.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3e:de:0c:40:24:5f:b8:72:27:aa:c4:af:1b:c3:c0:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1a427072b31d44784c375dfae42278e71fa836
Validity
Not Before: Nov 3 19:00:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26c082b25a6e3148914c55d4b3785a5192d07d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:30:23:48:4a:8e:dc:45:df:41:42:59:01:
db:0e:a0:36:b0:71:34:62:25:fa:0d:1c:2e:3f:33:
56:c4:31:24:e8:2f:84:5d:de:34:fd:07:d4:33:8b:
2e:03:de:9d:d5:f7:65:e9:b6:d4:6c:fe:9c:28:9a:
42:b4:43:07:b7:59:c3:45:b5:eb:2b:d7:9c:a7:25:
26:ea:4c:25:87:36:ad:86:af:05:3a:a1:9c:84:5d:
e2:81:21:89:44:b4:3b:52:6e:b7:a3:14:ca:a7:d7:
74:be:03:27:ab:33:db:88:98:67:4d:10:f1:64:f8:
01:5c:6f:4b:9c:5f:32:c8:ad:20:8e:d7:9d:cd:b7:
0d:33:7a:cd:41:1a:e2:ec:a3:3e:05:61:e4:bf:26:
8d:f9:ff:1b:68:cf:f5:9a:de:52:ad:d1:42:ab:f1:
24:b3:71:9d:e0:95:72:88:5e:65:92:97:ea:11:c5:
ae:b5:37:50:a9:c3:25:03:b2:4d:c6:e0:86:9a:d1:
8d:02:66:70:c9:56:7b:a9:e8:3e:5a:3e:6d:b3:68:
e4:6a:db:69:c1:d4:1e:99:4f:d5:6b:0c:ae:65:e7:
ba:9d:76:7c:aa:1e:6b:0a:fe:93:37:09:e5:bf:4f:
24:6b:11:5e:7a:37:97:16:47:1d:8c:12:e4:9a:34:
b1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C0:82:B2:5A:6E:31:48:91:4C:55:D4:B3:78:5A:51:92:D0:7D:90
X509v3 Authority Key Identifier:
keyid:5F:1A:42:70:72:B3:1D:44:78:4C:37:5D:FA:E4:22:78:E7:1F:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxpCcHKzHUR4TDdd-uQieOcfqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/JsCCslpuMUiRTFXUs3haUZLQfZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/077f64-b843-469f-8547-dd20bb208bba/1/XxpCcHKzHUR4TDdd-uQieOcfqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.36.0/24
Signature Algorithm: sha256WithRSAEncryption
66:4b:25:fa:2c:8d:bd:3c:3f:56:db:c3:17:f5:f4:f4:56:52:
d3:2e:7d:57:c7:e7:f8:0b:4e:4e:7d:96:8a:99:ed:80:39:4b:
89:b9:46:d0:cc:f0:f7:ad:32:21:8f:1d:02:ed:c7:95:28:8f:
07:86:63:e0:f9:ae:a0:f9:22:e4:74:1a:e7:bc:a2:cd:c6:0e:
88:41:fb:c7:51:c8:94:cd:20:fc:69:2e:02:66:0b:f6:57:2a:
04:55:87:93:61:e6:ab:9c:97:4c:5b:19:95:0d:81:d6:83:49:
22:e3:b5:da:08:f9:0e:12:2e:c1:78:47:36:aa:58:a2:dc:7c:
ef:16:2d:fe:00:67:d8:02:45:1f:61:8f:f7:77:21:00:d8:7f:
da:4b:20:ae:c0:53:db:b4:df:6d:f9:f6:3f:40:35:2b:d9:ab:
5e:9d:0f:6c:96:8a:d3:1d:18:16:6f:f0:cc:47:86:e2:0e:91:
3d:6b:3f:6b:67:98:92:dd:64:b8:b6:4b:cc:15:1b:4d:70:bc:
ce:fd:8b:7c:87:86:87:69:bd:86:2c:20:c3:e2:db:06:df:a9:
f6:15:78:73:6c:0e:f2:ac:40:cd:1a:2f:ae:a6:12:a5:f5:c2:
b4:c9:b2:c1:36:b8:7b:42:47:d7:67:9e:18:27:d8:3d:d2:61:
71:90:13:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:00 2024 by rpki-client on console-fra.rpki-client.org