Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/jPJHa119NhtlUIs3VtvJTI4mfNY.roa
File: jPJHa119NhtlUIs3VtvJTI4mfNY.roa (raw, json)
Hash identifier: HgzImxVfwJNAfpoDgxFmsalgqmaydzKBvCWu4CvV2yQ=
Subject key identifier: 8C:F2:47:6B:5D:7D:36:1B:65:50:8B:37:56:DB:C9:4C:8E:26:7C:D6
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 02FBC40D
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/jPJHa119NhtlUIs3VtvJTI4mfNY.roa
Signing time: Sat 01 Jan 2022 16:03:38 +0000
ROA not before: Sat 01 Jan 2022 16:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211930
IP address blocks: 2a0e:46c4:1400::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50054157 (0x2fbc40d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 16:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cf2476b5d7d361b65508b3756dbc94c8e267cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d0:88:73:ff:04:41:20:ab:81:8b:c1:60:14:
14:fa:ac:9f:b5:43:fa:c3:4d:02:a9:bd:bb:db:44:
fc:15:d1:e8:12:c7:30:5b:22:e8:1f:77:c3:6d:7a:
b7:3a:04:e7:d0:e3:ab:98:17:a5:2a:43:8e:b7:ce:
7d:08:63:d9:2f:5c:c8:87:8b:ca:96:06:3f:23:dd:
18:f0:e4:71:61:a6:f2:4b:3f:46:c2:11:a2:0e:7d:
19:e7:34:71:9f:2d:9c:af:6f:b3:0f:b6:f2:61:29:
f4:9e:d2:84:cd:e5:73:8d:59:6b:00:ce:8d:db:fc:
0b:05:e0:02:16:29:8d:6d:e0:9f:64:77:e1:00:04:
e2:4c:8e:91:66:3c:a7:1e:f4:ba:73:5e:d7:7e:8b:
9c:12:57:d5:73:5e:84:19:b0:37:43:f4:ca:14:15:
54:2b:55:04:b1:ed:de:ea:d5:b7:89:bd:f3:6a:1d:
d1:ac:8d:4a:d6:66:ec:98:4f:6a:e4:cd:75:3c:38:
d4:5c:7c:9b:11:e9:5e:8b:c7:ca:8d:81:0b:a8:8d:
d8:11:a2:85:fa:ef:c2:75:06:97:fb:02:46:47:33:
26:02:d3:36:72:ff:e0:69:53:36:05:c4:2b:41:f1:
59:e1:75:ab:64:d3:85:20:d0:41:ab:02:ed:21:1b:
08:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F2:47:6B:5D:7D:36:1B:65:50:8B:37:56:DB:C9:4C:8E:26:7C:D6
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/jPJHa119NhtlUIs3VtvJTI4mfNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:1400::/40
Signature Algorithm: sha256WithRSAEncryption
23:89:00:bb:dc:a8:f5:43:93:94:58:b4:86:60:1f:2b:82:42:
85:02:ac:a9:38:0c:59:96:b7:73:c0:dd:2a:33:6a:70:1f:41:
49:a3:2c:7b:e3:a2:d6:f6:bc:e9:62:74:b8:64:43:51:24:8c:
a0:f9:16:aa:9c:91:b3:ee:fa:e6:cc:ce:6c:7a:49:6a:0d:61:
1b:61:fe:69:5b:b8:e5:c3:37:3a:1f:f9:3b:41:fb:18:fa:1c:
62:3d:ff:d9:e4:65:6a:07:cb:1b:f7:20:41:89:59:7a:a9:e7:
90:b4:eb:04:45:22:f9:91:b0:c3:62:7e:ad:fa:54:bc:f7:9f:
c8:ad:d4:ec:c0:e4:3e:9d:19:1c:37:ac:77:9e:b0:04:be:a4:
3f:2f:84:12:f2:93:1e:85:18:33:e2:f7:87:85:23:ca:75:38:
08:f8:7a:b1:57:50:06:68:cd:52:5c:34:6a:b0:c7:41:82:b9:
4d:3c:25:ef:fa:35:05:dd:9a:c8:c1:24:77:14:7b:2a:a4:1c:
d9:fd:dd:7b:84:4f:ea:21:5f:de:e4:ca:b1:7c:91:fc:0e:2a:
fb:39:82:92:bc:23:74:00:65:13:bd:07:75:78:ea:97:6b:84:
da:cc:7c:68:d4:79:2d:7c:2d:eb:21:5a:70:e9:f9:8f:f5:e2:
00:8d:68:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:09 2023 by rpki-client on console-fra.rpki-client.org