Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/9JC40BJIgeYs1Gp1trRJ0RllopQ.roa
File: 9JC40BJIgeYs1Gp1trRJ0RllopQ.roa (raw, json)
Hash identifier: 44IbQV7sKD091n28Ce5982ThNMFV5YmGcHWm0w5tPng=
Subject key identifier: F4:90:B8:D0:12:48:81:E6:2C:D4:6A:75:B6:B4:49:D1:19:65:A2:94
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 17A70158
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/9JC40BJIgeYs1Gp1trRJ0RllopQ.roa
Signing time: Sat 01 Jan 2022 13:03:31 +0000
ROA not before: Sat 01 Jan 2022 13:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212349
IP address blocks: 5.1.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396820824 (0x17a70158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f490b8d0124881e62cd46a75b6b449d11965a294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4c:22:7e:98:07:3d:fc:50:8e:44:57:7d:f2:
ab:41:0b:71:27:9e:9a:b4:8d:11:c0:42:1f:99:7a:
1f:6c:a8:f0:c6:3a:d1:ab:ff:73:19:eb:3c:8d:2a:
dc:65:73:b7:2c:ed:16:6d:8d:f5:26:87:2c:7b:7e:
bb:04:c3:b1:66:b3:74:bb:40:b7:ae:b3:1a:99:4d:
90:90:cb:f0:39:dd:0b:91:5e:93:cc:17:ab:91:2c:
a0:ed:fe:e9:88:2a:c2:c4:6b:a5:8f:be:9c:15:df:
75:c5:d3:e1:75:8c:dc:13:df:dc:a2:cc:39:ff:4a:
56:31:6d:39:29:49:12:e7:ea:0d:19:1e:c3:a6:04:
18:ec:dc:58:0d:41:89:a1:9b:16:38:67:6f:14:af:
11:04:75:be:a1:0c:26:cd:c8:b1:29:4e:8b:10:59:
80:8a:f3:e4:63:c1:97:2f:7e:56:b3:9d:63:48:33:
bb:b8:22:4e:57:2c:43:3c:9b:eb:88:70:99:0e:77:
ff:12:23:8b:6f:bb:89:57:69:dc:87:db:87:b4:c6:
dc:7e:b6:24:0e:38:d8:61:81:78:b7:0d:ef:08:9d:
79:80:fe:ca:f7:c3:2a:06:23:21:84:50:bb:f2:2e:
89:52:07:e5:0a:c5:1a:2d:a2:5d:38:1f:b5:ae:53:
6a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:90:B8:D0:12:48:81:E6:2C:D4:6A:75:B6:B4:49:D1:19:65:A2:94
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/9JC40BJIgeYs1Gp1trRJ0RllopQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.79.0/24
Signature Algorithm: sha256WithRSAEncryption
35:0e:0d:41:80:16:c3:6b:2c:b3:06:b6:f1:6b:f3:85:7a:d4:
0e:91:46:c7:c8:7f:9e:4d:98:b4:0b:5a:3f:8d:cc:27:18:d4:
75:fa:18:02:46:dd:48:5a:76:74:c7:86:80:31:14:8c:79:55:
65:b3:74:bb:a2:81:e0:8f:19:d7:5a:95:b3:3e:dd:66:41:27:
23:ca:b1:64:95:bf:cf:d4:f5:82:b4:fb:ab:b1:a0:11:f8:98:
be:95:b9:8a:0a:14:e2:f7:bd:3b:36:2b:a9:4c:dd:94:14:07:
8e:fa:1c:4c:25:c0:83:b5:66:94:19:32:b6:61:9b:ad:c1:12:
f8:f4:26:4b:1e:87:63:de:50:58:db:95:cc:21:95:eb:1a:41:
6d:ef:db:51:37:9c:f9:7c:65:6e:32:3d:9f:66:50:35:31:00:
35:22:29:1e:aa:1c:e3:9b:9f:48:07:43:32:c4:5c:b6:6c:7b:
dd:ce:24:2b:72:f2:91:cb:a1:7f:01:ae:71:92:be:e7:43:a2:
18:6d:24:33:6c:af:4f:3d:05:de:c1:93:15:98:a4:77:ad:c4:
a4:14:27:90:f1:aa:ef:f1:c5:ef:f5:56:5c:e9:7f:c9:40:ec:
16:d2:fd:c3:2e:54:9e:63:d2:9e:66:36:7a:03:92:1f:76:5c:
3e:63:a6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org