Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/JNQST3ycd9jijebCp9319dO7ftE.roa
File: JNQST3ycd9jijebCp9319dO7ftE.roa (raw, json)
Hash identifier: qjnyEskaIXdyo3xrrh0aVsLEitZVyD5jhRX5b/CyWW0=
Subject key identifier: 24:D4:12:4F:7C:9C:77:D8:E2:8D:E6:C2:A7:DD:F5:F5:D3:BB:7E:D1
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 033EFEE8
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/JNQST3ycd9jijebCp9319dO7ftE.roa
Signing time: Sat 01 Jan 2022 16:04:35 +0000
ROA not before: Sat 01 Jan 2022 16:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207877
IP address blocks: 193.168.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54460136 (0x33efee8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24d4124f7c9c77d8e28de6c2a7ddf5f5d3bb7ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:10:02:b4:4a:19:a6:6e:6a:8a:60:ea:cb:d8:
a8:84:ef:e4:9a:27:de:22:b7:d5:9e:66:29:d9:4f:
e6:92:24:50:50:8f:92:83:47:ec:22:0c:d7:d3:ce:
c0:19:d4:d3:0c:64:71:70:f9:af:48:1c:49:b4:0b:
30:ea:26:ba:2f:af:69:cd:8a:7e:e3:01:f2:60:ab:
f7:7b:ba:85:b8:f6:e1:3b:42:35:67:95:4a:f7:2c:
61:b2:04:55:cc:e9:00:b8:c3:5b:3d:65:21:3b:8e:
fc:c7:67:24:32:3f:64:a8:4d:82:ed:5f:90:a1:94:
fb:86:70:e1:6d:bd:fb:57:8c:b1:2b:9f:e5:ab:15:
ed:6c:0a:6b:68:93:82:12:fd:51:ee:45:fd:6f:d5:
36:95:e3:60:a7:d4:85:d6:8e:ca:5c:bb:36:2d:ad:
0e:6a:79:4e:cc:9b:68:cf:a0:f1:d2:98:3d:72:ae:
42:3e:38:af:30:ec:f3:28:d3:93:6e:c6:47:99:37:
78:ec:62:48:1d:59:ee:4b:af:c4:0f:41:c3:17:49:
a3:c5:73:f8:a5:53:2f:6f:9b:8a:26:27:7b:ce:71:
46:e2:55:2e:4c:1c:d5:62:d5:78:60:6c:aa:17:85:
ab:03:5d:d3:e9:52:f7:6d:22:f4:fc:2f:e5:15:ec:
29:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D4:12:4F:7C:9C:77:D8:E2:8D:E6:C2:A7:DD:F5:F5:D3:BB:7E:D1
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/JNQST3ycd9jijebCp9319dO7ftE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.224.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:56:83:ef:81:de:90:f6:ef:6d:51:34:15:4d:c3:8a:cd:2b:
e3:14:67:ac:9d:1e:07:da:a8:05:a7:a2:eb:0e:58:5a:38:3c:
f7:82:c8:d8:f3:e0:94:fe:6d:12:7d:9a:01:31:e7:2d:16:6c:
df:0d:0e:4e:28:55:2f:a3:48:82:95:5c:b2:bd:77:dc:25:3d:
f1:38:77:b0:a6:ea:3f:9d:dc:31:46:5a:b7:38:8f:90:4c:e3:
15:fa:a2:23:8a:9e:be:68:0f:b5:a7:84:b9:e9:64:29:72:11:
fe:6f:ee:cc:25:2c:0e:5d:91:0a:bb:b9:af:e7:5d:a4:34:70:
95:cd:fd:ca:a3:76:b0:bd:db:22:6d:77:bb:f9:e8:ee:98:4f:
53:39:8d:d5:d8:7d:28:1c:12:c0:f7:ae:f7:7b:f9:01:4a:ff:
87:5c:1b:71:08:78:b8:ac:d9:20:5f:ab:52:88:84:35:96:bf:
fc:2a:04:40:98:ed:69:7b:a0:fb:db:45:04:59:d7:81:8b:39:
97:04:82:a4:cb:6c:5e:84:4e:41:78:68:cf:2f:58:0f:ab:00:
e3:5b:e9:44:ac:bc:a4:4f:2d:b4:76:37:80:43:21:d6:50:ea:
49:7e:41:3c:7a:5d:e8:2d:99:12:2e:c6:fd:4a:cc:5a:2a:9d:
7e:5b:51:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org