Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JIPChe9CYdl64E9vHvQfEsV3zeY.roa
File: JIPChe9CYdl64E9vHvQfEsV3zeY.roa (raw, json)
Hash identifier: Afsy/DR9EvFeAgj6ukrCSDDnIx2BmFqS1GrgY1JMakM=
Subject key identifier: 24:83:C2:85:EF:42:61:D9:7A:E0:4F:6F:1E:F4:1F:12:C5:77:CD:E6
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A5039D30A1B505FB4DCFB4FD212270C
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JIPChe9CYdl64E9vHvQfEsV3zeY.roa
Signing time: Wed 20 Jul 2022 06:34:01 +0000
ROA not before: Wed 20 Jul 2022 06:34:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 212.16.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:50:39:d3:0a:1b:50:5f:b4:dc:fb:4f:d2:12:27:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 06:34:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2483c285ef4261d97ae04f6f1ef41f12c577cde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3e:84:24:a4:f3:64:29:8b:3f:03:e9:c4:40:
d6:69:5f:53:ef:75:0a:67:9d:3e:da:c7:ea:73:65:
af:38:ff:e5:32:70:9d:80:c2:a3:23:2f:b5:01:7f:
5d:94:d1:02:6e:07:e1:6c:b1:9a:75:86:2a:ad:01:
0f:6b:46:6b:9c:cd:13:e7:86:20:ef:20:94:a4:25:
c0:e2:e3:97:fa:78:3e:3b:26:bb:49:d4:b8:74:74:
db:22:e6:aa:0a:ed:5a:74:26:6b:b8:f4:94:6a:7d:
f2:45:69:49:8b:fb:60:d4:4f:67:18:69:e5:0b:d2:
ae:95:09:21:a9:5b:be:96:49:62:dd:25:03:0e:44:
5f:11:0c:a0:e3:b4:24:1b:bc:7e:c9:2c:a1:31:a4:
12:4e:fe:a4:ae:72:40:5b:19:97:06:7e:16:75:55:
b4:18:3d:8d:e7:27:a4:05:61:1f:9d:d7:a3:29:2c:
53:bd:48:47:34:3d:ae:f3:5e:da:7d:48:e0:65:f2:
0b:ac:92:32:fb:1e:c3:a4:f0:76:76:b8:83:dd:10:
83:b9:d8:25:fb:c5:1b:1e:11:ff:b9:28:79:72:36:
0b:7b:49:3b:05:d5:46:ef:8e:23:aa:5c:01:57:40:
33:5e:b6:77:c6:02:4d:49:b1:c2:d3:0b:73:43:53:
b9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:83:C2:85:EF:42:61:D9:7A:E0:4F:6F:1E:F4:1F:12:C5:77:CD:E6
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JIPChe9CYdl64E9vHvQfEsV3zeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.32.0/22
Signature Algorithm: sha256WithRSAEncryption
c6:45:db:75:72:e9:39:f1:bd:0a:42:69:02:14:af:fb:99:f7:
68:5f:4f:38:6b:d6:02:f7:43:47:84:15:0d:d6:cc:cc:1c:8a:
ca:74:8f:87:36:8c:4c:80:cf:f8:48:81:50:42:c4:ff:b1:c7:
21:f8:b9:de:21:0b:9c:b7:d2:45:95:84:ba:62:a3:07:a0:ab:
a5:1f:6f:c0:25:d5:38:b2:0e:09:3f:66:ea:3f:e9:61:2b:ef:
ce:40:59:cb:cf:1d:56:17:84:d0:44:1f:e9:dc:16:f4:21:3e:
d4:c3:66:a6:d0:6d:b6:44:6b:00:ff:d1:a2:fb:fd:63:38:5a:
fe:bc:82:b0:b4:8e:48:2b:fd:c1:8c:2d:4d:46:2d:98:c4:25:
68:fe:70:af:9c:83:7e:79:90:13:e7:44:0f:ac:a3:e6:9e:da:
58:48:9a:75:4f:33:b6:86:d5:33:14:05:46:80:ad:ed:80:bc:
7a:43:41:56:4f:27:6e:a3:3a:2b:d1:01:ab:91:98:d5:25:ce:
89:44:10:4b:a2:ee:7e:42:c9:7b:3d:93:58:c9:9f:dc:ed:e9:
86:ba:56:fc:cb:4a:38:46:43:07:e0:f0:eb:77:16:29:6a:c2:
68:0d:63:4a:9a:92:22:4b:44:0a:67:1a:e7:60:ac:29:16:69:
3f:81:41:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org