Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/47a54a-637c-4486-b12c-7db9dfbc4ae9/1/JWcS0jiNnHXijVYCtz2IYtstvyg.roa
File: JWcS0jiNnHXijVYCtz2IYtstvyg.roa (raw, json)
Hash identifier: b6oTlTF40kR1Fk3WMgb3ucZMC0cIPGnIbmuMx2GxK2M=
Subject key identifier: 25:67:12:D2:38:8D:9C:75:E2:8D:56:02:B7:3D:88:62:DB:2D:BF:28
Certificate issuer: /CN=d9ee5a4c9f30498680e4d7b59ddb08f82bc6f4c7
Certificate serial: 010C4B7B
Authority key identifier: D9:EE:5A:4C:9F:30:49:86:80:E4:D7:B5:9D:DB:08:F8:2B:C6:F4:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2e5aTJ8wSYaA5Ne1ndsI-CvG9Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/47a54a-637c-4486-b12c-7db9dfbc4ae9/1/JWcS0jiNnHXijVYCtz2IYtstvyg.roa
Signing time: Sat 01 Jan 2022 03:54:32 +0000
ROA not before: Sat 01 Jan 2022 03:54:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209216
IP address blocks: 2.56.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17582971 (0x10c4b7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ee5a4c9f30498680e4d7b59ddb08f82bc6f4c7
Validity
Not Before: Jan 1 03:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=256712d2388d9c75e28d5602b73d8862db2dbf28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:73:3f:78:1a:33:5d:ab:41:44:c3:1f:26:c7:
80:02:86:a2:77:f5:24:0f:ba:12:b4:96:e6:26:51:
45:4f:94:6d:9b:2d:65:65:f5:f6:70:99:2b:93:93:
c5:78:c6:4b:7c:9f:02:93:64:2e:2f:e2:6e:c7:79:
3f:5c:80:cc:34:9f:23:6f:e0:0d:3b:4e:07:1c:d0:
40:57:34:fe:59:1c:c2:26:2a:d4:34:c4:66:f6:02:
eb:c1:e3:38:99:89:06:49:77:e4:d8:f3:2f:13:8c:
8f:ff:5c:c2:a9:ec:76:20:e0:dc:1d:4d:5e:4b:7a:
81:8f:d4:5b:7f:93:14:03:ef:fb:93:30:ff:7d:da:
75:e2:e0:a9:9d:e5:93:44:53:c3:2a:ea:17:a6:95:
22:0b:2b:9e:40:a9:6d:fd:3d:df:c5:19:22:58:e7:
68:6d:6a:d4:b4:a9:75:c6:6f:8d:3d:b2:57:b6:b1:
78:5e:25:d7:c3:74:9a:ff:6d:72:77:f7:df:69:e1:
36:70:31:5e:b1:48:d8:b9:6e:c5:d5:2a:6c:f2:05:
1c:a0:5e:55:02:33:6d:18:4c:6f:96:0e:16:c4:92:
cd:78:82:94:06:02:14:df:e6:d0:d8:eb:58:1a:b8:
90:26:71:07:d7:98:b4:dc:2e:a2:e1:e1:e8:3f:be:
72:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:67:12:D2:38:8D:9C:75:E2:8D:56:02:B7:3D:88:62:DB:2D:BF:28
X509v3 Authority Key Identifier:
keyid:D9:EE:5A:4C:9F:30:49:86:80:E4:D7:B5:9D:DB:08:F8:2B:C6:F4:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e5aTJ8wSYaA5Ne1ndsI-CvG9Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/47a54a-637c-4486-b12c-7db9dfbc4ae9/1/JWcS0jiNnHXijVYCtz2IYtstvyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/47a54a-637c-4486-b12c-7db9dfbc4ae9/1/2e5aTJ8wSYaA5Ne1ndsI-CvG9Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.76.0/22
Signature Algorithm: sha256WithRSAEncryption
41:a8:05:20:c2:6d:33:17:c5:aa:d0:b3:ab:1e:1e:95:45:c9:
69:35:93:0c:08:fe:5b:d7:5b:22:fa:4b:06:47:cf:90:ae:2d:
1a:b0:cb:29:43:63:df:df:a8:d8:43:31:8c:f0:2d:02:7f:8a:
c1:e2:42:36:e5:6e:d3:ed:c3:8b:99:50:85:ef:ce:10:c4:57:
bd:cd:88:e8:7d:ba:59:88:fe:eb:22:21:b0:3d:b6:63:66:0e:
1d:d9:ce:0a:8d:bb:dc:91:1e:a6:ca:50:78:93:0e:3f:8d:94:
7e:86:6b:c7:e1:63:8a:9d:54:71:69:3f:e9:37:84:a2:cf:69:
47:a6:d1:ae:83:f2:c4:11:a4:17:e5:b0:7d:bc:e0:b6:e3:18:
d3:53:18:44:8e:fa:37:b8:b2:77:0a:84:95:b4:69:6a:cd:aa:
cb:ac:ab:16:24:3d:0f:74:de:3c:88:b4:e3:40:74:e6:3b:30:
85:7f:e7:92:09:06:55:e7:fc:95:c4:63:b8:1f:eb:64:cc:08:
89:3a:ca:96:46:58:4a:b4:68:6d:08:25:05:00:d1:ca:f3:f8:
0e:eb:91:4a:25:68:3c:83:2b:68:83:0b:12:14:03:00:bf:fd:
ae:03:92:2f:60:7b:b5:73:1f:28:d6:06:e9:c3:24:dd:41:90:
2a:74:21:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:14 2023 by rpki-client on console-fra.rpki-client.org