Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/jGXfK617sFtRkrtTCYSzMt4EQ6M.roa
File: jGXfK617sFtRkrtTCYSzMt4EQ6M.roa (raw, json)
Hash identifier: 1g9PIwD8Vg9jxXyzpz5NO2E+u0WqM2NvxI/loqtTurQ=
Subject key identifier: 8C:65:DF:2B:AD:7B:B0:5B:51:92:BB:53:09:84:B3:32:DE:04:43:A3
Certificate issuer: /CN=1a8eeb83b5a1ed7d5caade8ef1004a5bac19f30f
Certificate serial: 01A647BB
Authority key identifier: 1A:8E:EB:83:B5:A1:ED:7D:5C:AA:DE:8E:F1:00:4A:5B:AC:19:F3:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/jGXfK617sFtRkrtTCYSzMt4EQ6M.roa
Signing time: Thu 14 Apr 2022 17:54:22 +0000
ROA not before: Thu 14 Apr 2022 17:54:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 188.244.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27674555 (0x1a647bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a8eeb83b5a1ed7d5caade8ef1004a5bac19f30f
Validity
Not Before: Apr 14 17:54:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c65df2bad7bb05b5192bb530984b332de0443a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8a:60:93:68:24:41:69:25:26:15:61:4a:b7:
5b:02:49:1e:62:2d:34:7a:09:3c:4c:36:80:90:e3:
7c:5f:07:d5:98:8f:17:7a:5c:de:59:c2:0b:84:a2:
27:27:19:92:21:dd:34:ef:9a:c0:58:15:34:64:8b:
69:8b:66:1a:70:e0:96:cc:f3:27:86:51:a2:04:61:
b5:f6:ce:9f:16:4f:c3:b8:f4:a8:72:11:f4:4a:e8:
73:10:d6:b4:70:e3:46:6a:36:84:5f:94:fd:37:cd:
7b:5d:bf:00:e7:2c:12:72:0e:69:58:5b:6b:65:26:
0d:12:ca:21:7b:fc:6e:2c:07:b5:b3:23:32:34:c0:
f5:d6:54:99:90:76:ea:f7:25:2c:d4:63:de:84:de:
55:e5:3a:b5:aa:a0:93:67:c3:db:46:ec:4b:09:25:
b0:34:a2:2d:4b:9a:ac:23:54:da:64:7e:76:c3:63:
4c:dd:38:05:53:6d:f6:18:52:e0:46:75:0a:0a:22:
ce:b4:be:a8:ca:24:f5:6e:c7:d0:7d:de:cf:24:f4:
3e:c4:48:cd:b2:b5:30:c0:14:a7:85:da:6e:68:2e:
2a:d5:ed:1d:7e:59:22:ea:a0:5c:d4:06:7e:2b:b7:
31:5c:dc:ae:35:94:3d:9b:91:56:2f:25:40:08:32:
b6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:65:DF:2B:AD:7B:B0:5B:51:92:BB:53:09:84:B3:32:DE:04:43:A3
X509v3 Authority Key Identifier:
keyid:1A:8E:EB:83:B5:A1:ED:7D:5C:AA:DE:8E:F1:00:4A:5B:AC:19:F3:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/jGXfK617sFtRkrtTCYSzMt4EQ6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.113.0/24
Signature Algorithm: sha256WithRSAEncryption
61:18:2a:e0:f0:04:e4:ee:fc:99:71:e5:6c:0f:a1:3e:87:44:
58:12:c3:5e:9f:36:95:0c:0d:ad:18:00:1d:ad:3a:bb:d4:79:
fa:49:1f:7e:ca:1a:fb:9e:da:28:78:42:e6:c5:97:b7:d0:99:
73:8f:31:e1:94:a2:35:6c:8d:5f:5b:48:50:31:3d:08:c2:69:
1e:9d:fa:b8:63:89:85:70:7c:59:49:5d:a1:75:1d:98:83:ed:
0e:75:a5:b5:9b:7f:30:ee:1f:07:78:99:25:34:ce:d1:fd:ef:
00:b8:21:20:5a:59:d1:35:69:e4:f5:0e:60:5b:c8:40:26:c8:
66:ba:c3:68:13:04:3e:29:ca:49:dc:c1:ae:64:b5:33:41:ff:
55:b4:2d:85:f1:75:fe:23:96:ac:ae:ff:ad:78:72:ce:6c:4f:
57:b1:de:26:be:3f:1d:b4:55:21:42:f3:67:f4:ef:01:28:8d:
4e:b8:a0:20:4b:d4:38:2d:0b:aa:6a:a0:94:99:32:c2:32:88:
1a:5b:0f:2a:e2:ef:35:10:20:c1:4d:85:25:e5:d2:db:ff:c7:
1e:27:ee:d7:d6:0c:31:c4:2e:ed:cb:33:fd:0b:c3:04:b5:9b:
f0:24:e9:6e:73:42:ac:b8:ac:c7:07:33:7c:e9:27:f1:2d:98:
86:bc:1a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-fra.rpki-client.org