Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/je03x3xbkK2Y8j4pWdhyEkHOGTI.roa
File: je03x3xbkK2Y8j4pWdhyEkHOGTI.roa (raw, json)
Hash identifier: spQstea4WPRcF6ioU4tP1CQJS7ZxejJc6VS8y1+zB1A=
Subject key identifier: 8D:ED:37:C7:7C:5B:90:AD:98:F2:3E:29:59:D8:72:12:41:CE:19:32
Certificate issuer: /CN=0039f741686da11e79ae7c5e486aa290808cb1b7
Certificate serial: 0375134F
Authority key identifier: 00:39:F7:41:68:6D:A1:1E:79:AE:7C:5E:48:6A:A2:90:80:8C:B1:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ADn3QWhtoR55rnxeSGqikICMsbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/je03x3xbkK2Y8j4pWdhyEkHOGTI.roa
Signing time: Sat 01 Jan 2022 12:06:58 +0000
ROA not before: Sat 01 Jan 2022 12:06:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206827
IP address blocks: 194.31.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58004303 (0x375134f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0039f741686da11e79ae7c5e486aa290808cb1b7
Validity
Not Before: Jan 1 12:06:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ded37c77c5b90ad98f23e2959d8721241ce1932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ca:8f:a3:73:50:38:28:07:5a:3c:40:bf:f0:
8d:44:02:18:90:c2:c3:57:7c:a6:f0:8c:23:89:f9:
54:6e:7c:9a:2c:77:a3:54:08:78:5f:63:e2:3d:d5:
9f:5a:53:b9:ed:77:4f:96:55:13:7c:c5:45:a0:04:
83:12:9f:0f:6b:94:48:da:80:26:d2:e7:2a:e9:3b:
61:17:fa:2b:33:43:e2:a6:ff:9d:fb:67:db:bd:e6:
b1:0c:3f:22:b6:6f:47:0f:f3:99:5c:a6:a0:d9:85:
94:41:5f:eb:10:98:43:e4:f2:de:9f:f8:14:e5:d9:
6d:69:ef:b6:dc:a4:ff:67:52:8d:44:8d:a2:b4:47:
89:35:13:de:3e:a3:82:9f:78:95:64:ef:e2:a9:b4:
6d:9c:b6:26:b6:0f:06:79:de:7e:b3:6a:d9:09:0e:
bf:82:52:45:f5:1c:5b:56:eb:00:84:96:6f:90:51:
68:e6:47:d5:ed:2c:7c:44:49:1c:10:1c:70:48:b0:
ae:59:8a:fe:a0:2e:c4:e8:b5:4b:10:1b:18:a6:5d:
06:0f:1a:94:84:55:dd:48:a8:59:0d:e0:69:04:47:
f5:3c:9d:39:ee:d9:d7:f5:10:53:11:d8:aa:5e:6b:
0c:47:2e:ad:42:18:4b:27:e4:11:84:b8:3f:60:3f:
ae:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:ED:37:C7:7C:5B:90:AD:98:F2:3E:29:59:D8:72:12:41:CE:19:32
X509v3 Authority Key Identifier:
keyid:00:39:F7:41:68:6D:A1:1E:79:AE:7C:5E:48:6A:A2:90:80:8C:B1:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ADn3QWhtoR55rnxeSGqikICMsbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/je03x3xbkK2Y8j4pWdhyEkHOGTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/ADn3QWhtoR55rnxeSGqikICMsbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.66.0/24
Signature Algorithm: sha256WithRSAEncryption
44:e8:f2:b2:98:7c:ca:6f:7e:c5:64:39:f8:bb:b8:98:81:0c:
2f:d5:64:18:99:d9:05:1c:3b:56:83:bb:f6:2e:93:26:b0:0e:
8c:1d:b9:e5:94:93:54:90:c4:f0:f7:47:e9:93:35:b1:fa:a3:
f9:56:62:33:42:63:1d:68:10:64:b4:22:44:7c:7d:c6:f9:62:
f0:bc:51:a0:21:21:ca:53:69:65:23:77:fa:ff:4a:0d:75:f8:
7d:d0:0d:90:a9:3d:15:79:6b:e6:90:c7:73:4d:6a:2d:57:8a:
b1:68:95:75:12:63:91:a1:71:30:86:51:f1:94:8c:32:f5:3c:
34:eb:e3:3d:45:46:0f:6e:7e:1d:70:b2:91:6f:8e:86:94:4c:
e7:28:37:16:44:86:56:47:c5:df:b8:5c:36:3e:62:30:f5:60:
90:fc:4f:da:36:8e:2f:54:d0:a3:dc:80:e4:3f:69:b2:3f:06:
4e:3a:ed:e0:3a:de:74:41:1a:7d:00:2f:66:ca:e7:fc:03:5b:
5c:5f:b7:34:57:44:4d:16:f0:ee:6f:fd:e5:b4:6f:a5:c8:72:
68:5b:f7:f6:5b:49:9f:47:41:8c:ec:80:f2:90:a5:9a:00:ec:
cb:4d:9c:92:3f:bf:18:bd:91:69:3a:7a:78:0f:15:67:9f:a5:
9c:c2:78:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:04 2023 by rpki-client on console-fra.rpki-client.org