Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/JpzHHvK0jRCvHbWNc-7u5xzbHhc.roa
File: JpzHHvK0jRCvHbWNc-7u5xzbHhc.roa (raw, json)
Hash identifier: 1YEpIZkR0YAy9X/dG6IPMBvnxpYo5HhjA1qI7gKcprk=
Subject key identifier: 26:9C:C7:1E:F2:B4:8D:10:AF:1D:B5:8D:73:EE:EE:E7:1C:DB:1E:17
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0B31A1C3
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/JpzHHvK0jRCvHbWNc-7u5xzbHhc.roa
Signing time: Sun 20 Feb 2022 23:39:28 +0000
ROA not before: Sun 20 Feb 2022 23:39:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210746
IP address blocks: 151.237.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187802051 (0xb31a1c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Feb 20 23:39:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=269cc71ef2b48d10af1db58d73eeeee71cdb1e17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7b:a8:d3:a3:25:70:2b:fd:19:d9:11:78:4f:
0e:c9:01:8e:f9:ff:64:3e:2c:fe:30:97:26:95:9c:
ea:5a:05:ea:18:cd:11:55:a2:e2:76:22:62:03:4a:
fa:14:3d:d9:38:9b:84:b4:55:68:cb:48:9b:c6:cb:
87:69:34:2f:b8:67:55:cd:5d:a2:71:5b:46:76:b7:
72:1b:62:d9:4c:96:bd:b3:47:18:e5:da:7f:35:3a:
db:cf:e8:78:6b:31:cd:70:f3:9c:d8:37:21:15:27:
8c:fd:d8:d9:18:41:4e:7e:5c:f7:84:e5:ef:5c:31:
c2:89:db:fd:c8:a1:c1:cb:23:e1:74:9b:48:fa:4c:
4d:d8:65:30:37:cd:a6:ab:17:0c:ae:8c:ea:d7:2a:
f7:d2:e8:7c:14:9c:e2:41:14:93:f9:17:5c:12:13:
5e:a1:d3:58:3d:87:cd:65:67:9f:28:41:25:a8:15:
13:17:37:0b:81:09:8a:52:e1:13:a9:30:18:36:66:
af:0b:32:38:e2:47:64:6e:14:74:ee:bb:4a:d3:2b:
a6:17:b6:c8:c8:fa:7b:fa:af:bc:c0:58:e3:64:a2:
d3:9d:6c:a2:ef:14:b1:31:20:24:a1:e8:e0:14:81:
21:f7:2d:65:31:88:2f:14:ea:fd:d4:07:a5:99:a0:
28:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9C:C7:1E:F2:B4:8D:10:AF:1D:B5:8D:73:EE:EE:E7:1C:DB:1E:17
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/JpzHHvK0jRCvHbWNc-7u5xzbHhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.23.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:34:54:91:06:71:43:99:a4:bb:23:61:8f:0d:a2:a4:d8:c8:
f8:53:0e:ef:6b:38:85:14:dd:f1:1f:5a:0b:08:ea:9f:27:2c:
cf:1b:45:e1:b9:f6:88:f1:e5:24:5b:c7:19:df:56:67:e7:24:
75:17:bc:6c:0e:6c:47:4a:fc:e5:8e:cb:9e:f8:71:d6:54:30:
97:9f:a3:d3:9c:e1:23:6c:fd:42:ee:a0:1f:f8:76:ee:b8:00:
82:d8:f1:da:28:58:e5:5d:d4:35:ad:8d:ae:b9:8c:ec:81:fe:
c3:d9:d3:28:1b:1a:21:37:3b:b9:ec:bf:e2:b3:c2:32:61:46:
3b:ca:b3:f3:5c:18:4e:4f:5e:50:11:99:27:29:ce:a1:76:11:
3e:f6:d1:2c:24:d2:9e:86:e2:7a:3c:c6:90:9d:e6:91:eb:f8:
6e:8f:19:fb:f8:50:39:cf:24:8a:9c:f3:08:31:21:ee:37:6d:
7f:1a:40:b1:1d:de:e2:6f:ec:d7:c7:86:ef:9c:cf:65:13:80:
67:10:67:5c:35:68:d5:d5:60:f0:99:8d:bd:84:7a:d5:10:b5:
c4:24:3d:c8:cf:8c:e9:f5:7f:f4:5f:43:4c:f5:38:9f:d8:b8:
c6:f4:e7:eb:71:67:97:01:2d:a7:40:6b:74:cd:ff:c8:39:85:
f5:97:55:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org