Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/jph5QsswmpIy2oy6TcBKIJoszfM.roa
File: jph5QsswmpIy2oy6TcBKIJoszfM.roa (raw, json)
Hash identifier: kMIuLWygId1D8Cfzyk08onO7MHBz+ptly2tBCmu/VPs=
Subject key identifier: 8E:98:79:42:CB:30:9A:92:32:DA:8C:BA:4D:C0:4A:20:9A:2C:CD:F3
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 0F13A7DF
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/jph5QsswmpIy2oy6TcBKIJoszfM.roa
Signing time: Thu 24 Feb 2022 19:21:18 +0000
ROA not before: Thu 24 Feb 2022 19:21:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12525
IP address blocks: 81.198.166.0/24 maxlen: 24
81.198.167.0/24 maxlen: 24
195.13.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252946399 (0xf13a7df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Feb 24 19:21:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e987942cb309a9232da8cba4dc04a209a2ccdf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:39:03:8e:f6:ac:76:56:4f:6f:d4:10:55:c9:
e5:56:c1:0f:9c:46:31:a7:80:94:c2:4d:d1:9e:52:
0b:5d:69:7e:0d:a1:fd:fa:5d:48:70:08:f2:a3:57:
a0:4b:17:fa:66:73:ed:f4:c1:0e:4e:d4:92:08:ce:
17:d5:c9:cf:a6:6d:a3:9b:54:37:dd:dc:00:82:2a:
c3:b5:4c:bb:53:e1:09:70:46:f1:f2:43:9a:09:ea:
74:7b:b1:74:dd:94:15:56:21:43:e1:5c:31:fa:cd:
ee:06:55:58:25:41:21:68:5b:c9:04:6f:6b:43:66:
63:bd:88:1c:61:a3:71:d7:c6:48:e1:d1:64:d0:d5:
17:54:cd:12:52:e5:89:de:ab:b3:ca:6c:48:c1:e3:
33:9e:15:e8:77:4b:54:2a:65:00:8e:1a:7f:c2:64:
5a:90:49:ca:df:b9:c3:f8:06:0e:6d:b1:9a:e8:8a:
1e:7e:30:0b:cb:6b:a3:2c:c6:06:e2:19:a7:3b:0b:
36:2e:ed:ed:30:b8:4b:49:c7:aa:1d:8a:1e:d7:9e:
14:73:5e:f2:4f:0f:3a:d8:cb:ab:af:1a:4a:5c:ec:
aa:82:90:b6:8c:f9:5f:e2:e0:9d:a7:11:d5:64:9d:
2c:74:e3:61:18:c9:b8:99:4d:b1:eb:b9:b8:f8:9c:
0c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:98:79:42:CB:30:9A:92:32:DA:8C:BA:4D:C0:4A:20:9A:2C:CD:F3
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/jph5QsswmpIy2oy6TcBKIJoszfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.198.166.0/23
195.13.223.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:e1:ea:33:a4:10:8d:01:63:09:d6:4d:f9:20:ee:76:37:14:
1c:23:ef:25:25:41:e8:69:13:e5:ea:8c:3f:d8:b5:ec:97:92:
ed:7b:2b:dc:9a:e3:46:fc:ac:dc:24:99:93:bf:da:d2:a4:2f:
4b:5b:96:00:eb:4c:6a:96:b6:08:45:c5:b6:da:9c:fc:4e:aa:
52:1d:c1:5c:bc:62:25:d5:0a:a0:a4:79:9a:9d:ec:c8:2b:36:
fc:59:2c:78:78:47:76:22:48:12:41:47:a4:81:c1:00:88:3c:
6e:88:b7:b6:aa:9a:7a:6f:98:55:1f:9c:eb:2e:03:19:31:8d:
38:58:ba:71:14:89:db:3b:ae:65:41:24:dc:51:13:1c:f7:46:
9b:89:0f:a0:16:71:9f:27:93:60:97:0e:10:bb:e8:6e:33:d8:
e0:46:a4:07:1a:dd:4e:e1:83:e7:77:8b:04:51:bb:25:36:5e:
2d:f0:34:88:c7:32:04:fb:f6:eb:d9:1f:72:a8:02:7e:21:3c:
d8:50:0b:34:d3:f1:e7:f0:43:f9:34:1a:40:c3:69:62:e6:13:
36:6d:e3:63:f3:48:d7:46:c3:6e:49:f3:7c:6c:e4:4d:33:3b:
d1:7f:fe:82:3f:f7:2d:ce:82:61:23:d6:7a:84:60:d3:df:4c:
9e:60:61:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:51 2023 by rpki-client on console-fra.rpki-client.org