Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b9dc4c-643a-41b8-a459-2b518acb78f3/1/JIiaSQm4Gz04TyPZKzbh5IcUW1Y.roa
File: JIiaSQm4Gz04TyPZKzbh5IcUW1Y.roa (raw, json)
Hash identifier: viQ3R2KffNfrScZhd0qyd+oXBCqZCj9Tmvx+5Q9xcbQ=
Subject key identifier: 24:88:9A:49:09:B8:1B:3D:38:4F:23:D9:2B:36:E1:E4:87:14:5B:56
Certificate issuer: /CN=74f9369c6e23c1bf0dbed301c7d00b4a3fdf0d04
Certificate serial: 0890D39F
Authority key identifier: 74:F9:36:9C:6E:23:C1:BF:0D:BE:D3:01:C7:D0:0B:4A:3F:DF:0D:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dPk2nG4jwb8NvtMBx9ALSj_fDQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b9dc4c-643a-41b8-a459-2b518acb78f3/1/JIiaSQm4Gz04TyPZKzbh5IcUW1Y.roa
Signing time: Sat 01 Jan 2022 14:55:29 +0000
ROA not before: Sat 01 Jan 2022 14:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 130.73.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143709087 (0x890d39f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74f9369c6e23c1bf0dbed301c7d00b4a3fdf0d04
Validity
Not Before: Jan 1 14:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24889a4909b81b3d384f23d92b36e1e487145b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b0:2b:67:ab:f4:e3:0c:ce:d3:7d:9a:75:a1:
65:12:55:22:56:06:4b:fd:8b:9a:29:a5:6e:55:e2:
67:8d:8d:91:ed:91:93:19:14:f0:ad:e3:3b:03:b2:
9b:97:c6:67:a2:ee:86:5c:2b:9a:b1:69:2b:61:4a:
09:d7:c4:32:a3:0b:66:98:d5:33:ad:0b:c1:b6:a2:
34:56:4e:44:ad:a3:f2:fe:67:d7:c1:64:4c:39:84:
ad:28:ad:ee:8c:bb:97:c9:90:26:3b:ea:b9:6f:7f:
93:d3:e3:65:d5:3d:1c:fc:3f:04:3b:a3:b5:1a:b7:
de:66:f8:42:3a:dd:8f:f6:92:83:5e:90:3a:c7:c6:
96:b9:33:83:e3:aa:65:74:58:f2:64:30:f7:af:40:
d9:83:8d:48:1b:8e:b7:f5:ea:de:0f:ec:3a:53:a8:
a2:7c:b3:d0:64:f1:a3:c3:ed:da:48:04:78:eb:9d:
f4:39:a2:5a:44:57:4e:1e:cb:32:db:cb:43:83:40:
d0:19:a5:f5:96:97:9b:a9:17:69:2a:cf:e2:3f:d3:
2d:e1:96:b4:7c:3d:3d:03:6e:a6:af:1a:90:76:11:
8c:c4:ab:99:02:46:11:6c:db:ef:13:6d:d6:37:07:
5a:d1:10:3f:cb:80:e0:72:34:d6:9c:5c:4a:87:a1:
a2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:88:9A:49:09:B8:1B:3D:38:4F:23:D9:2B:36:E1:E4:87:14:5B:56
X509v3 Authority Key Identifier:
keyid:74:F9:36:9C:6E:23:C1:BF:0D:BE:D3:01:C7:D0:0B:4A:3F:DF:0D:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dPk2nG4jwb8NvtMBx9ALSj_fDQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b9dc4c-643a-41b8-a459-2b518acb78f3/1/JIiaSQm4Gz04TyPZKzbh5IcUW1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b9dc4c-643a-41b8-a459-2b518acb78f3/1/dPk2nG4jwb8NvtMBx9ALSj_fDQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a8:8a:ba:48:5a:2c:29:17:40:6e:b6:82:7d:dc:84:cd:90:c3:
32:88:7e:80:19:f2:7d:08:56:e2:5c:2f:be:9a:9c:5f:d6:d5:
30:c6:b2:02:df:9a:85:fc:5a:c1:fd:18:8e:c7:c5:36:ec:90:
d9:2f:af:47:38:30:5a:a9:c3:fd:9d:cd:36:62:97:52:66:14:
3d:05:52:85:9f:0d:7e:82:1b:04:c3:cc:4f:55:a5:fb:ba:5f:
b5:46:63:ce:4b:2e:58:22:fb:44:3d:b8:67:49:2c:fb:c5:81:
37:15:8a:e1:83:03:a9:c2:71:67:9e:51:56:1d:4e:c3:49:22:
69:c8:15:15:4c:a8:63:21:8d:fd:20:6a:81:e8:5d:2b:62:00:
9d:04:2f:34:d9:b1:42:97:e2:a3:78:27:ae:27:10:73:7b:01:
53:df:e2:20:66:d6:fc:ce:4e:4b:68:eb:e7:a7:fc:77:de:fa:
6f:a9:54:e3:ef:7a:0b:3c:eb:2b:db:d5:05:88:ce:ad:da:67:
eb:ff:19:a3:0b:92:15:c6:d8:7f:06:45:e6:69:cc:fd:95:dd:
ef:b1:bf:2e:99:48:62:37:02:c7:6a:c1:02:56:36:ba:e1:79:
29:a8:2b:ae:7b:c4:07:49:0f:8d:bb:3e:fa:b7:52:ef:8d:1c:
c4:55:fb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:37 2024 by rpki-client on console-ams.rpki-client.org