Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/JLk8Us8myYpsFQ1iU2pJju8vIiU.roa
File: JLk8Us8myYpsFQ1iU2pJju8vIiU.roa (raw, json)
Hash identifier: ibRjhsVSHipjC8IzO4zqkF6FD9f/+ZW5e2PH4am9cUI=
Subject key identifier: 24:B9:3C:52:CF:26:C9:8A:6C:15:0D:62:53:6A:49:8E:EF:2F:22:25
Certificate issuer: /CN=1685cdba5d7daf6ddccf8675a90a25b6ed6444d7
Certificate serial: 018331F78ADCEA35FE6B9D6F28D4E83D09B9
Authority key identifier: 16:85:CD:BA:5D:7D:AF:6D:DC:CF:86:75:A9:0A:25:B6:ED:64:44:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoXNul19r23cz4Z1qQoltu1kRNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/JLk8Us8myYpsFQ1iU2pJju8vIiU.roa
Signing time: Mon 12 Sep 2022 13:50:50 +0000
ROA not before: Mon 12 Sep 2022 13:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207990
IP address blocks: 91.199.253.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:31:f7:8a:dc:ea:35:fe:6b:9d:6f:28:d4:e8:3d:09:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1685cdba5d7daf6ddccf8675a90a25b6ed6444d7
Validity
Not Before: Sep 12 13:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24b93c52cf26c98a6c150d62536a498eef2f2225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fa:3e:c2:1d:a5:da:60:6d:7f:78:63:ba:63:
05:b8:c3:dc:02:d2:86:7e:c8:9f:44:8c:72:43:30:
26:b3:56:23:80:fa:6b:5d:58:b6:00:0c:5e:0e:a6:
67:37:02:78:5e:19:d2:8a:cc:b1:5a:6c:f0:05:97:
83:a2:79:bf:b1:b5:0c:15:37:5c:f9:ef:98:ad:a2:
a8:64:05:32:4d:c4:e4:51:d6:74:3a:ac:79:a4:3c:
f7:f8:54:f8:87:d2:f6:a7:98:66:23:84:a3:e7:04:
f6:8a:b3:f7:ac:e4:b5:d7:f9:cf:f2:2f:71:5a:9d:
5c:1b:46:44:1c:3d:5d:b6:8d:a6:65:86:30:a5:72:
4b:39:cf:de:16:c1:90:89:16:fd:3e:c8:2c:44:22:
5f:52:d6:72:6c:e1:9a:34:a1:6f:6a:be:71:21:2e:
b9:8f:4d:ed:2d:a6:72:ec:18:b8:76:3f:46:3d:74:
bf:f1:88:29:31:34:9e:3a:ff:32:85:cc:b9:f7:20:
70:c2:62:2b:3e:4b:e1:64:25:73:e2:bb:9a:ac:cd:
a4:8e:60:d1:c5:97:6f:4d:7d:f9:96:ed:e7:35:6e:
d3:52:96:3b:66:cf:8b:a7:6a:36:4b:c6:bc:ba:ac:
04:f1:e1:52:5e:78:0c:7a:fe:45:67:47:81:14:2e:
5c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B9:3C:52:CF:26:C9:8A:6C:15:0D:62:53:6A:49:8E:EF:2F:22:25
X509v3 Authority Key Identifier:
keyid:16:85:CD:BA:5D:7D:AF:6D:DC:CF:86:75:A9:0A:25:B6:ED:64:44:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoXNul19r23cz4Z1qQoltu1kRNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/JLk8Us8myYpsFQ1iU2pJju8vIiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c63652-d03e-4134-bfd3-e298a43b8930/1/FoXNul19r23cz4Z1qQoltu1kRNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.253.0/24
Signature Algorithm: sha256WithRSAEncryption
63:3e:eb:c7:4c:11:c8:59:3d:06:24:28:3b:03:7f:5d:fa:12:
b9:68:02:f9:1c:08:a8:c9:21:36:c4:e1:f2:45:25:90:3c:52:
2b:9d:f2:0a:d4:04:75:ff:95:55:50:74:69:4d:54:41:8d:f2:
d8:e4:98:2a:33:cf:c2:23:57:40:08:32:69:6d:c5:20:d8:fd:
80:8b:72:76:20:45:fd:8d:c5:b4:16:bc:ad:a3:01:4d:84:a7:
7b:02:a9:52:ce:ff:af:09:86:5c:74:08:1b:2c:69:6f:11:84:
30:00:4b:1e:b1:96:f9:17:54:17:73:65:b1:cf:f1:93:0c:d7:
9c:3a:66:02:a8:9d:ee:bf:17:be:ea:7a:64:d9:76:20:65:13:
42:9c:26:ea:8e:58:6c:f5:75:49:16:c7:27:b6:47:dc:7d:96:
b2:21:fe:6d:c7:b7:24:d8:d0:4e:ab:63:cb:8d:44:1e:7d:8b:
78:f6:9c:4e:19:41:75:a5:ee:70:c8:85:0c:ca:7f:de:39:96:
06:84:b8:18:4d:88:64:b2:4c:6e:35:78:ee:24:9d:4c:75:77:
a7:b4:4e:5f:66:7c:b1:9c:81:6b:e1:07:5f:f7:f3:06:6c:3c:
eb:82:23:bf:53:5f:6c:85:2f:3e:7c:20:c2:d4:08:4f:3c:bf:
f3:8c:4d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:35 2023 by rpki-client on console-ams.rpki-client.org