Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/_JO0ELtIztC6LKGAmpazwkWaoBg.roa
File: _JO0ELtIztC6LKGAmpazwkWaoBg.roa (raw, json)
Hash identifier: JaWsBvqSfd8nwFixX9FNHdHhg8VYd+obY8uasIK4jf0=
Subject key identifier: FC:93:B4:10:BB:48:CE:D0:BA:2C:A1:80:9A:96:B3:C2:45:9A:A0:18
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13608A8C
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/_JO0ELtIztC6LKGAmpazwkWaoBg.roa
Signing time: Sat 01 Jan 2022 05:58:18 +0000
ROA not before: Sat 01 Jan 2022 05:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3457
IP address blocks: 83.125.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325094028 (0x13608a8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc93b410bb48ced0ba2ca1809a96b3c2459aa018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d2:d4:1d:7b:95:d4:d2:c6:cb:83:8b:a7:4f:
12:96:46:ed:1c:ff:66:5b:5a:98:49:82:a1:a6:96:
7c:82:aa:45:66:63:b4:69:47:94:4d:4f:79:29:69:
2a:f6:8c:3d:a7:ac:cc:27:13:ad:c7:48:44:fe:e9:
76:66:da:85:fc:f3:f0:44:a8:f4:c5:90:05:2c:f1:
9c:5f:05:a5:b8:84:e8:e1:3f:4b:d2:27:f6:da:2c:
f6:aa:77:ff:ea:d9:a8:07:a7:2d:b5:d4:4c:6c:34:
98:2f:5b:e6:24:dc:29:80:42:3b:a1:35:c8:de:7a:
79:05:84:0a:69:7d:d7:55:96:d0:6f:91:21:a8:53:
fe:bf:12:63:c5:11:77:44:87:ea:ee:05:45:50:73:
7d:bc:a8:ae:7c:5a:0a:c8:1c:a0:6e:f8:a5:bf:60:
93:25:24:b4:d1:5c:17:62:29:7b:5e:7e:ba:a6:3b:
70:a6:05:4d:37:46:42:95:6b:3d:8d:8b:29:19:15:
23:15:8f:fc:15:33:ff:f0:ec:c3:72:61:dc:81:10:
78:ef:0d:05:0a:7f:b4:fc:85:7d:07:de:c4:83:b4:
46:49:5e:f6:01:c0:b0:08:d5:26:f5:f9:09:5e:2c:
d2:7a:39:3f:e9:cc:c2:a6:f8:7f:98:c7:38:c7:94:
ba:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:93:B4:10:BB:48:CE:D0:BA:2C:A1:80:9A:96:B3:C2:45:9A:A0:18
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/_JO0ELtIztC6LKGAmpazwkWaoBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.125.26.0/24
Signature Algorithm: sha256WithRSAEncryption
24:a6:5b:7d:81:aa:ef:b9:e9:e5:30:0c:40:bb:db:ef:a1:a5:
8a:d2:ae:0e:4c:3d:a2:4f:6c:8a:09:36:eb:89:ae:25:56:78:
fc:29:4d:ee:69:4d:b1:06:c1:92:c3:aa:2f:df:72:e7:e1:2e:
e9:ba:f2:ff:c4:c1:b5:dd:47:f6:3a:fc:bf:83:41:96:d4:58:
77:93:33:ef:0d:75:41:23:5a:45:7b:44:18:86:07:c8:0e:72:
5b:c7:fe:8a:93:1a:ac:12:30:6f:0d:1e:ee:89:13:c5:06:d9:
da:ed:a7:2b:03:d9:ec:e9:9f:1a:10:b0:cc:99:38:b6:cc:e4:
07:2e:d9:f5:70:ab:da:5c:63:5b:b1:51:61:9a:a0:55:8d:ff:
9d:8e:3b:33:fd:68:24:81:75:4e:aa:d2:d9:b8:a0:ca:be:d5:
b6:85:29:f4:ae:be:b1:83:8d:50:28:3c:65:46:15:11:be:fa:
b0:51:5e:65:f1:55:3a:16:68:93:72:99:97:5e:08:67:09:0b:
f8:66:ba:dd:18:c0:8b:0d:ba:4b:64:d4:5c:e2:9a:1b:67:bc:
80:b5:a9:2d:a9:6c:6f:5f:79:eb:9e:4e:b5:3e:52:e4:70:54:
7e:34:7c:a2:c2:d2:9a:bb:e1:59:5f:7f:e2:99:41:6b:47:a6:
0e:ad:1c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org