Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/47065d-2d83-4641-8223-41f39a8c09dd/1/JFnoPJsSaQAUEI9Mizojl3uyTPI.roa
File: JFnoPJsSaQAUEI9Mizojl3uyTPI.roa (raw, json)
Hash identifier: zZac9qfVTO5/UQ0FZY6nuMpF8mocvr7jyrwh+tAdRjU=
Subject key identifier: 24:59:E8:3C:9B:12:69:00:14:10:8F:4C:8B:3A:23:97:7B:B2:4C:F2
Certificate issuer: /CN=62f603f3a55a29e6617f096b3a69bff0a392a928
Certificate serial: 1823269B
Authority key identifier: 62:F6:03:F3:A5:5A:29:E6:61:7F:09:6B:3A:69:BF:F0:A3:92:A9:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvYD86VaKeZhfwlrOmm_8KOSqSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/47065d-2d83-4641-8223-41f39a8c09dd/1/JFnoPJsSaQAUEI9Mizojl3uyTPI.roa
Signing time: Sat 01 Jan 2022 05:53:22 +0000
ROA not before: Sat 01 Jan 2022 05:53:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44238
IP address blocks: 91.195.238.0/23 maxlen: 23
2001:67c:160::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404956827 (0x1823269b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62f603f3a55a29e6617f096b3a69bff0a392a928
Validity
Not Before: Jan 1 05:53:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2459e83c9b12690014108f4c8b3a23977bb24cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3f:1c:04:3b:b0:4e:30:5d:fa:c4:ff:d5:27:
40:05:e4:7b:c3:0a:a2:51:a2:5b:eb:0e:f6:61:eb:
83:24:e3:5d:25:ec:e8:b8:0b:f3:b9:19:a3:5c:1f:
39:51:96:c6:2d:17:6c:a4:f4:4b:07:1d:c7:72:94:
fa:af:91:aa:4d:a3:28:8b:7a:f7:c5:2f:3d:a3:c8:
71:89:b7:74:9a:54:ad:5f:dd:3c:33:9e:f6:fa:fa:
b0:66:55:d8:c9:b1:40:58:69:84:f6:28:45:46:7f:
6e:8d:1d:31:b6:86:c7:e5:49:dd:f7:fb:7a:88:f5:
11:a2:d1:0f:fe:13:c5:ac:6c:83:50:80:9d:06:f4:
20:a8:45:e3:38:d0:f5:49:85:13:27:d5:cc:cc:00:
1b:3b:cf:b7:dc:2e:c8:65:70:96:a8:62:bc:15:fe:
7e:d2:59:4a:c6:aa:77:64:a7:e5:d1:1a:95:93:92:
cc:c1:88:e7:b7:76:0f:9e:b3:67:50:b6:7d:f3:5f:
39:cf:8e:6e:1c:67:cc:56:38:b3:fb:5c:aa:a7:38:
3e:2d:9f:3f:e3:af:95:46:3a:0c:2e:6f:62:57:51:
5a:83:f5:8f:a5:9f:8a:ab:52:86:db:7c:44:bf:37:
c2:87:dd:90:03:ec:16:76:71:5b:ef:8c:9f:cb:83:
c8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:59:E8:3C:9B:12:69:00:14:10:8F:4C:8B:3A:23:97:7B:B2:4C:F2
X509v3 Authority Key Identifier:
keyid:62:F6:03:F3:A5:5A:29:E6:61:7F:09:6B:3A:69:BF:F0:A3:92:A9:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvYD86VaKeZhfwlrOmm_8KOSqSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/47065d-2d83-4641-8223-41f39a8c09dd/1/JFnoPJsSaQAUEI9Mizojl3uyTPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/47065d-2d83-4641-8223-41f39a8c09dd/1/YvYD86VaKeZhfwlrOmm_8KOSqSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.238.0/23
IPv6:
2001:67c:160::/48
Signature Algorithm: sha256WithRSAEncryption
4a:69:3b:b6:d7:a0:e9:53:4f:b3:e5:62:12:ac:dd:5e:bc:ba:
f1:9d:3c:00:49:c5:0f:e0:27:c0:a4:0b:33:5d:f1:41:94:bb:
b5:4b:09:7c:3f:89:7d:17:0e:c9:31:bc:41:88:b9:27:08:ef:
47:55:d0:e9:10:6d:b8:67:3e:09:89:68:73:c0:4a:23:2c:31:
c9:38:72:2a:42:8a:d3:bc:0d:e9:71:31:6f:63:ea:73:67:ce:
c8:d0:a3:88:e1:a0:3d:e8:f6:c0:4a:15:05:bc:ae:0e:53:93:
f4:a8:ae:a9:24:ae:ec:81:da:84:4c:c8:43:cd:04:28:36:4e:
f5:d2:2f:c4:ec:23:3f:a3:ad:c8:58:34:c5:38:ef:b4:d1:8d:
44:e5:0c:d9:35:e1:66:2d:da:b2:40:23:52:40:32:5b:26:eb:
fe:a9:4a:b5:42:8d:4b:b0:12:ce:b2:ed:88:80:43:2e:62:00:
36:4f:48:bd:f4:08:df:ed:99:49:10:14:5e:81:c9:ba:21:50:
19:c8:bf:9a:48:0e:e2:ae:86:c5:2a:53:0c:ae:5a:64:55:0d:
a4:e5:bf:38:7d:dc:dc:c8:b9:80:d2:9a:b8:b8:5f:3e:58:78:
69:0a:27:f6:1a:1c:f6:f4:d1:a8:b4:57:0f:4b:13:9b:a1:45:
98:88:04:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:03 2024 by rpki-client on console-fra.rpki-client.org