Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JGxjB0lzdXayS40Q4TF_ncjflZE.roa
File: JGxjB0lzdXayS40Q4TF_ncjflZE.roa (raw, json)
Hash identifier: nsSFPymObb5OKl3CF6UKhHzjnCefJhrCHcK8H1bf13I=
Subject key identifier: 24:6C:63:07:49:73:75:76:B2:4B:8D:10:E1:31:7F:9D:C8:DF:95:91
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A6982D1DC0D71E2473C367D7ED12364
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JGxjB0lzdXayS40Q4TF_ncjflZE.roa
Signing time: Wed 20 Jul 2022 07:01:38 +0000
ROA not before: Wed 20 Jul 2022 07:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205903
IP address blocks: 213.33.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:69:82:d1:dc:0d:71:e2:47:3c:36:7d:7e:d1:23:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=246c630749737576b24b8d10e1317f9dc8df9591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:04:4e:48:aa:3b:2b:54:d5:86:d5:f0:43:c1:
83:9d:db:57:d4:9c:1b:21:4b:cf:1a:7b:b7:78:1a:
ec:e9:38:20:49:cc:de:0a:af:51:d1:8d:23:5a:85:
3c:c2:4c:5b:c5:b1:6c:70:d4:d4:32:2b:1b:d0:03:
d7:5e:13:89:2a:87:c5:de:85:27:cd:5c:3c:c7:07:
3d:6f:c6:7c:7a:23:0d:a4:6a:66:90:1a:53:6a:35:
f8:d9:fa:ea:8d:15:77:0b:da:2f:cb:2b:a8:f3:d0:
8b:5c:ac:56:b1:45:15:06:07:8f:11:c6:22:b5:ab:
fd:5a:22:35:9c:7c:66:45:86:99:88:3b:ba:91:a8:
07:c8:34:10:38:5b:16:f0:7d:76:a3:26:8f:7c:b2:
e2:5a:5c:36:04:6a:a4:cb:65:a4:6d:c6:db:05:75:
c9:16:7c:42:79:94:0c:d9:53:80:24:fd:59:99:39:
2e:5e:8b:a1:a8:dc:35:17:03:ed:83:71:2e:02:90:
0c:cd:93:bb:12:10:da:fc:3c:67:67:49:be:5a:96:
e8:44:73:62:91:f3:b9:b8:a2:de:99:49:f6:15:1f:
f0:91:2b:f8:e2:6d:37:e1:50:7f:c4:cf:18:47:28:
e3:aa:59:65:60:3e:e6:d4:30:55:b7:bb:3e:27:b9:
0f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6C:63:07:49:73:75:76:B2:4B:8D:10:E1:31:7F:9D:C8:DF:95:91
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JGxjB0lzdXayS40Q4TF_ncjflZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.33.49.0/24
Signature Algorithm: sha256WithRSAEncryption
45:27:9b:31:85:01:35:3c:2d:cb:4d:46:24:cf:1b:c0:08:a2:
d2:a1:db:b3:b9:94:9a:2e:0b:dc:2c:b4:aa:37:38:8e:6b:3b:
0f:11:d1:15:95:ff:d3:cc:c6:85:cd:5f:d1:e6:df:82:e0:a5:
85:30:50:0c:6b:9c:65:32:ee:fd:25:a0:25:01:64:a4:39:8d:
e0:54:89:48:17:89:b3:12:6c:cf:6e:e6:f0:f7:b7:54:a0:82:
b9:d7:28:48:03:40:e3:05:0e:dd:26:f8:6a:f7:ef:62:0e:94:
c3:44:9e:b1:cd:75:83:5c:07:3b:e2:68:61:80:22:e8:25:a5:
10:8f:1a:90:27:ba:64:fb:2a:9b:bc:9f:35:24:db:fa:a5:09:
b7:e3:cd:a1:1c:1b:3d:21:6e:b1:29:c6:60:07:5b:48:85:a4:
f3:e5:56:ca:7f:0e:70:6e:1b:94:af:b9:77:d1:8d:1f:c2:99:
63:70:97:cd:a6:2c:56:ed:36:36:a5:a9:29:42:82:d3:33:d2:
48:83:c1:5b:79:f6:41:70:d5:ac:71:5d:1f:31:d8:ca:88:c5:
1f:e2:23:fa:c8:6c:2d:f8:e0:3f:5a:ab:df:35:d1:34:c5:ff:
3c:d8:9a:57:79:84:f3:c7:ba:60:eb:6f:1f:89:7f:80:2a:1e:
64:8c:ca:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-fra.rpki-client.org