Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jjscgDGsxwDXMKif0xJtGLdBC3k.roa
File: jjscgDGsxwDXMKif0xJtGLdBC3k.roa (raw, json)
Hash identifier: qZiAc3+BbfQ2kmTDE1niQ2GRWasZCrP//8aPCgyIdGQ=
Subject key identifier: 8E:3B:1C:80:31:AC:C7:00:D7:30:A8:9F:D3:12:6D:18:B7:41:0B:79
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01828C444AD275C3A5B2897718F4E09A72C6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jjscgDGsxwDXMKif0xJtGLdBC3k.roa
Signing time: Thu 11 Aug 2022 09:37:41 +0000
ROA not before: Thu 11 Aug 2022 09:37:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 194.124.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:44:4a:d2:75:c3:a5:b2:89:77:18:f4:e0:9a:72:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 11 09:37:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e3b1c8031acc700d730a89fd3126d18b7410b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:32:74:40:20:9f:a8:bd:df:69:9e:e2:0a:6a:
16:4d:94:b3:ad:16:c0:b3:00:c8:03:c8:73:ed:79:
4f:1c:7c:42:25:b1:9c:e1:f9:d5:78:7b:66:80:0a:
d1:ae:2a:f0:ba:13:b9:e6:4d:66:91:d7:6a:41:5d:
41:38:4e:2f:70:47:78:a7:0d:42:1e:36:b0:9a:63:
23:1a:bf:df:d2:56:f4:e0:ae:0a:ca:71:33:46:1f:
ad:9c:5e:bf:a3:ee:58:f1:d2:1f:0c:ce:42:a1:ab:
c7:29:9b:fe:7e:64:73:3a:c3:cc:9f:33:b8:53:99:
5d:72:9a:0a:90:5f:05:e4:65:d6:22:8e:fc:7b:fc:
7c:3d:d7:2e:18:a8:08:ff:5c:23:ca:d3:37:e9:a7:
99:ff:7d:dc:30:76:14:7e:34:ff:89:10:10:a4:af:
11:59:74:82:cc:7b:a5:1f:fc:5a:36:4d:66:6f:1d:
24:1a:d0:f2:06:8c:66:8b:46:7c:b1:c9:3d:0f:5a:
23:d3:2c:d9:90:6c:f1:4e:a2:89:31:eb:41:2d:57:
04:48:71:87:8a:87:51:c4:11:34:e5:ce:eb:05:36:
5c:25:81:f3:c6:b1:a4:ef:88:73:85:f7:95:ad:ca:
46:ef:52:47:39:44:be:bd:ad:1d:61:19:da:d9:76:
46:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3B:1C:80:31:AC:C7:00:D7:30:A8:9F:D3:12:6D:18:B7:41:0B:79
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jjscgDGsxwDXMKif0xJtGLdBC3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:4a:63:ef:e8:79:b0:3c:52:ca:00:bd:0c:e3:bf:1f:75:dd:
e5:6d:b5:cd:21:0c:00:6d:a9:44:75:73:0e:26:98:92:e2:ef:
bd:8d:76:18:28:a3:19:3f:cb:e1:eb:f7:12:cb:98:1c:a1:8f:
e8:24:b0:d4:e6:d9:bc:f5:c9:a1:1c:e5:9a:12:95:e4:9c:d0:
9b:27:2d:9d:d6:10:a7:29:d8:cc:fa:56:ea:01:73:fa:90:29:
66:bc:06:fd:ec:56:e7:a4:73:3c:90:7a:e2:e4:2f:27:fa:70:
3e:25:ab:f5:20:c1:d4:bc:9c:34:b1:09:45:55:8e:23:1c:d9:
51:22:ad:ff:c3:c8:1d:c5:0c:8b:e6:42:3e:e8:27:1c:a9:cd:
ab:31:69:1a:90:00:f4:e4:cb:9d:c7:60:03:12:f9:b5:a8:75:
83:69:ad:f2:d8:c8:a1:30:6f:0b:3b:f0:5f:9a:8d:f2:24:73:
bf:6e:6b:7f:e8:43:82:ac:ba:47:ef:47:12:84:a8:5a:4c:e4:
bf:ae:d8:55:4e:0f:21:87:68:a2:24:34:f5:09:e6:2e:d1:95:
9e:7b:7c:2d:b4:57:e1:9f:f9:e6:3b:65:16:39:3f:2e:a5:d5:
62:0b:08:df:c1:56:de:28:dd:3e:01:5c:eb:f0:d3:67:bd:7c:
c0:1d:b8:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-ams.rpki-client.org