Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/jb5CFFgeS48-SZtJBajxjvT9sDA.roa
File: jb5CFFgeS48-SZtJBajxjvT9sDA.roa (raw, json)
Hash identifier: tfHt3PZ+1omQAZ1MCNnSGQL9cMJeERXqBZf/jTlBBY0=
Subject key identifier: 8D:BE:42:14:58:1E:4B:8F:3E:49:9B:49:05:A8:F1:8E:F4:FD:B0:30
Certificate issuer: /CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Certificate serial: 040799BD
Authority key identifier: D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/jb5CFFgeS48-SZtJBajxjvT9sDA.roa
Signing time: Sat 01 Jan 2022 13:56:34 +0000
ROA not before: Sat 01 Jan 2022 13:56:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53340
IP address blocks: 86.106.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67606973 (0x40799bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Validity
Not Before: Jan 1 13:56:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dbe4214581e4b8f3e499b4905a8f18ef4fdb030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:39:34:18:b5:b8:e6:c9:0e:a9:56:a9:27:b7:
e0:4a:73:51:68:a2:d9:7c:9e:89:c8:cb:f4:8d:fb:
62:ef:3a:d2:0a:db:07:14:dc:97:39:75:a5:34:78:
2b:99:3e:90:51:ea:1b:a4:9d:15:9c:e3:f9:24:21:
87:49:c4:0d:5e:82:8e:1b:da:bb:37:c1:2a:0a:b2:
bb:bd:ea:67:ef:87:76:b2:57:18:ec:65:cd:8f:b2:
ab:0c:0b:b8:6a:8e:12:bc:c6:7f:27:99:b1:d4:2d:
24:b5:96:17:df:8a:d5:ec:d5:6d:5b:36:a0:86:c4:
db:51:de:d2:f6:d7:f9:32:92:f3:58:39:b7:d4:5f:
79:d4:2d:91:16:5d:bf:e2:e6:a5:33:fb:a7:04:91:
ec:32:ba:ec:c3:57:15:74:f8:bc:4a:b9:2c:e9:48:
4f:24:ae:b8:ae:e0:c6:7c:a4:68:76:f7:09:b7:79:
f6:97:90:b3:fe:33:ac:e5:b7:7f:f0:a8:3f:9a:cf:
ea:72:26:8b:90:29:cb:46:14:c9:e1:28:48:09:e9:
47:dc:a5:f0:de:db:3d:3c:da:72:2b:c7:0f:af:c7:
88:8f:b5:0a:04:23:a8:b2:11:e2:df:a4:19:3e:ea:
b2:c4:ad:42:a3:68:2b:d4:c2:1f:8c:4e:70:42:91:
8f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BE:42:14:58:1E:4B:8F:3E:49:9B:49:05:A8:F1:8E:F4:FD:B0:30
X509v3 Authority Key Identifier:
keyid:D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/jb5CFFgeS48-SZtJBajxjvT9sDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/1M8PvV9uF1mQPMad4NxOokwfg98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.183.0/24
Signature Algorithm: sha256WithRSAEncryption
09:a6:89:44:49:17:cd:fb:62:1c:27:13:f1:58:0f:1f:0c:6d:
59:82:46:9f:6c:cb:17:2b:35:b6:ec:95:0f:84:ea:af:b3:2d:
88:91:6c:32:30:d4:bf:ce:d1:7c:b4:af:e1:6a:f3:35:be:16:
e6:f3:85:44:ad:92:ed:84:fd:22:1c:88:7d:96:25:eb:7f:9b:
8c:4e:f9:72:b9:9c:cc:2d:80:9a:9f:fd:44:d4:81:b0:10:52:
66:b4:94:1b:b9:dd:9c:ca:8c:69:16:fe:a5:44:55:c7:a8:c0:
b9:18:22:3e:60:4d:fc:26:37:b8:8c:7e:d9:24:f2:14:ef:33:
9d:74:72:bc:ba:5e:b5:c7:a6:5c:dc:d4:7b:af:a3:d0:53:8a:
ef:55:45:ab:39:2b:1a:ba:4f:fd:d5:18:da:2c:b9:d8:23:ce:
7f:37:92:96:9f:0b:7b:49:0e:db:b7:b6:2e:1b:b6:6a:80:17:
bc:71:ed:6b:e7:8d:9d:ce:6f:3d:2e:95:17:ba:ec:f5:c4:c2:
53:5e:60:39:2f:52:c7:97:74:f1:cd:d1:f0:69:db:0d:2d:21:
e8:82:57:b7:25:79:75:2b:78:6f:0e:ce:09:f9:60:ad:e0:ac:
41:25:e4:73:45:03:6e:01:98:02:36:56:be:86:2c:c2:50:cb:
2c:80:0f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:57 2023 by rpki-client on console-fra.rpki-client.org