Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/JQI28jg16v86mqP-2rZas4CENkU.roa
File: JQI28jg16v86mqP-2rZas4CENkU.roa (raw, json)
Hash identifier: xRxQJDHdRqO9VKhIn7bSPQUOSyeVBquHg/3s25M6PbQ=
Subject key identifier: 25:02:36:F2:38:35:EA:FF:3A:9A:A3:FE:DA:B6:5A:B3:80:84:36:45
Certificate issuer: /CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Certificate serial: 04725BF7
Authority key identifier: 68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/JQI28jg16v86mqP-2rZas4CENkU.roa
Signing time: Sat 01 Jan 2022 15:01:04 +0000
ROA not before: Sat 01 Jan 2022 15:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 206.204.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74603511 (0x4725bf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Validity
Not Before: Jan 1 15:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=250236f23835eaff3a9aa3fedab65ab380843645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c0:cc:28:e8:e9:05:17:c4:35:e6:84:3c:d3:
6d:6e:67:4b:df:43:fb:15:6b:0d:4d:50:32:76:9b:
c7:d3:0c:72:ac:6c:25:ea:96:a0:4c:dd:50:b7:f8:
65:e7:2b:4e:c4:e9:13:53:89:be:66:78:74:72:37:
b6:cc:41:a8:e7:7f:90:91:29:8b:cf:7e:5a:59:ce:
67:24:23:73:ae:96:c8:38:be:6e:a2:3f:bc:2c:48:
e7:e2:e6:e9:44:89:b0:6f:46:99:da:de:6c:16:25:
72:a6:f1:ec:21:05:55:20:22:b3:f2:5f:c3:99:7d:
cd:96:f5:04:c2:43:7e:0a:58:87:5d:50:51:c4:48:
b7:15:e1:87:63:a8:7c:e1:71:de:d0:fe:b7:32:77:
6c:45:69:85:2a:11:ae:e2:15:dc:f7:df:69:f5:46:
e7:e7:60:00:19:d9:9b:60:9f:c4:58:fc:77:79:57:
a8:8a:88:85:c7:1b:a0:41:d6:6a:eb:e7:1e:2d:f8:
24:c0:84:11:74:f9:ec:67:08:9b:7a:13:fa:27:9a:
73:a0:ce:52:a5:4b:82:d5:a1:96:d2:47:6f:8d:57:
8e:3b:68:e3:d5:38:ee:17:52:41:c0:b5:13:c3:54:
22:34:98:6a:11:65:5f:a3:d0:b3:49:a0:59:d3:a7:
06:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:02:36:F2:38:35:EA:FF:3A:9A:A3:FE:DA:B6:5A:B3:80:84:36:45
X509v3 Authority Key Identifier:
keyid:68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/JQI28jg16v86mqP-2rZas4CENkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/aNHvFjpmHM5bxiEX7HY3WLG1u4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.204.104.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:3c:f1:8d:2c:a1:20:b5:7a:6f:17:da:b0:43:31:51:1d:a6:
35:8f:a4:81:7e:5d:90:fa:7c:d2:60:e8:a6:a6:d0:ab:a0:1e:
ba:25:84:26:a5:8b:fe:4e:89:53:f9:de:34:38:49:4c:c6:81:
24:84:fc:34:6b:1b:ef:27:28:5e:0e:c3:ce:db:59:2c:d1:01:
f2:e5:46:4a:d2:c6:af:a6:27:04:f4:e2:6a:a1:49:36:25:99:
c4:76:27:b3:01:c5:a7:38:e5:0b:78:1f:db:12:c5:3b:40:93:
9b:f9:2e:56:1d:90:e1:e5:e9:a4:aa:7d:2a:6b:c0:0f:a9:e9:
d7:e7:5d:c8:9a:44:a0:e1:da:f8:15:66:ba:c4:96:88:7a:8e:
9a:02:c0:17:a9:e3:f6:6a:81:13:41:23:c9:82:71:44:fa:25:
96:43:38:d0:a6:f6:67:88:22:e1:3e:f0:55:bf:db:e5:e1:ae:
33:74:86:a5:e4:37:cf:2b:b3:67:a0:f5:c2:c2:f3:21:7a:90:
42:61:87:b6:a8:3b:7a:76:20:54:34:0f:33:43:fe:37:23:f8:
64:03:28:b7:a9:74:b1:51:9b:ad:d3:cc:a0:85:a2:7a:e5:d4:
19:55:18:f0:5e:31:f5:ad:f2:65:23:e3:21:29:33:a0:83:1a:
8f:9d:00:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:56 2024 by rpki-client on console-ams.rpki-client.org