Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/jOZLXeRMZ4eUdWCWt1jJ3rqLAjk.roa
File: jOZLXeRMZ4eUdWCWt1jJ3rqLAjk.roa (raw, json)
Hash identifier: iOAFYtIhgCETXuKWUJj9PgNnivwMeCfYlKSWH+VCnzU=
Subject key identifier: 8C:E6:4B:5D:E4:4C:67:87:94:75:60:96:B7:58:C9:DE:BA:8B:02:39
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0BE613B6
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/jOZLXeRMZ4eUdWCWt1jJ3rqLAjk.roa
Signing time: Wed 27 Apr 2022 07:52:44 +0000
ROA not before: Wed 27 Apr 2022 07:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 91.229.132.0/23 maxlen: 23
91.229.134.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199627702 (0xbe613b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Apr 27 07:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ce64b5de44c678794756096b758c9deba8b0239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:62:8d:74:44:ba:6c:5b:c9:de:81:e5:19:23:
eb:c1:73:d5:99:f0:07:0b:71:18:56:eb:c8:e9:78:
07:52:b7:a8:b2:a5:82:d8:63:79:49:d5:ec:95:6b:
d5:c5:37:5a:1d:47:d6:75:12:a0:36:74:fc:bd:6a:
fa:13:ec:ff:d9:e0:9b:03:99:43:90:66:40:40:69:
7a:97:9d:7b:37:15:42:81:50:b3:2a:86:05:26:51:
d0:93:8a:b4:26:8b:f2:14:a1:e5:dd:d8:b1:37:56:
41:ad:ad:41:32:e8:43:80:97:0f:18:4a:06:42:3a:
d4:48:59:60:a6:67:61:c3:b1:51:09:b9:89:fb:0a:
49:34:a2:67:38:7f:b7:b1:4d:04:42:0a:c4:f3:f4:
a2:3c:6d:b5:db:05:a7:38:22:89:22:10:c1:ec:94:
26:2d:a4:ea:84:ee:b4:7b:58:b0:04:5a:76:80:12:
f9:e6:38:0c:42:a7:ae:53:1e:b2:61:e5:1c:7f:bb:
88:26:57:a1:5d:43:49:0b:52:74:15:6f:85:f7:90:
8b:70:8c:1e:cf:19:85:0d:da:31:f2:52:91:b5:77:
22:7a:4f:b9:54:2a:cd:99:43:11:6b:ef:e9:4e:5c:
b0:d0:ff:b4:59:14:84:c7:04:17:36:91:d6:30:83:
83:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E6:4B:5D:E4:4C:67:87:94:75:60:96:B7:58:C9:DE:BA:8B:02:39
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/jOZLXeRMZ4eUdWCWt1jJ3rqLAjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.132.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:6f:a9:ee:f0:4c:f3:ec:aa:58:ad:86:82:67:8d:89:90:35:
cd:d5:c7:0d:d3:37:e7:17:c0:a5:01:ba:aa:56:1d:67:1f:fc:
66:59:35:e5:76:5c:f7:2d:7d:f3:c8:30:4a:7a:78:6d:6f:bc:
bb:85:3d:1d:fe:c1:db:c7:7c:c6:a0:bb:01:4a:ea:d9:64:d6:
54:cd:ae:34:a6:86:ac:ef:96:10:8d:2b:02:29:21:3a:7c:e1:
c7:f4:69:ab:2c:ea:95:db:e9:1d:90:fd:27:1e:a2:7e:98:7c:
5a:fe:4f:b6:e8:44:a7:59:27:89:f9:f0:7c:63:ba:13:dc:7f:
f1:d6:eb:f1:c3:c3:da:6a:33:85:19:97:7d:c9:b2:ff:48:c5:
df:3e:71:ee:a6:54:69:f3:06:cd:24:bd:47:82:a1:c5:c6:3b:
38:bb:39:8f:73:8b:b2:23:ad:a9:04:6a:56:19:2b:af:f1:79:
eb:1e:e8:39:bb:00:be:e6:5c:3b:05:ce:05:19:44:ff:f8:ee:
89:6a:06:e5:f3:42:46:de:a8:62:db:8c:3d:76:d6:0d:b5:89:
6f:db:c1:99:5c:f1:49:b5:3b:de:28:eb:f4:95:3a:dc:85:b3:
4e:31:9a:23:06:f3:bb:78:2d:c1:11:fd:35:b0:53:47:90:16:
37:b3:6e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org