Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/xJg9iphyIsKGnTlKPrjnncYyDWY.roa
File: xJg9iphyIsKGnTlKPrjnncYyDWY.roa (raw, json)
Hash identifier: bp9l0x1/dwxBZXX9ueqDIGnPh0lfJ79HjQRCs4LiEIw=
Subject key identifier: C4:98:3D:8A:98:72:22:C2:86:9D:39:4A:3E:B8:E7:9D:C6:32:0D:66
Certificate issuer: /CN=8f31cc3605b3efc09b2688508063b6fd485561dd
Certificate serial: 0183F0A868AABBF5F1662EAA62E644E635F4
Authority key identifier: 8F:31:CC:36:05:B3:EF:C0:9B:26:88:50:80:63:B6:FD:48:55:61:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzHMNgWz78CbJohQgGO2_UhVYd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/xJg9iphyIsKGnTlKPrjnncYyDWY.roa
Signing time: Wed 19 Oct 2022 14:31:52 +0000
ROA not before: Wed 19 Oct 2022 14:31:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 702
IP address blocks: 192.109.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:a8:68:aa:bb:f5:f1:66:2e:aa:62:e6:44:e6:35:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f31cc3605b3efc09b2688508063b6fd485561dd
Validity
Not Before: Oct 19 14:31:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4983d8a987222c2869d394a3eb8e79dc6320d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:25:ff:17:55:5d:f0:25:09:62:5f:58:d4:aa:
12:19:ef:7d:b7:9f:9e:b8:6e:2f:b3:02:07:42:b3:
ea:a5:f4:46:c6:dc:ce:a9:c9:d2:62:bf:f8:08:a7:
6f:27:50:71:3c:a4:20:db:ff:18:d4:e9:17:61:32:
5e:5f:8f:c7:01:3c:8e:fc:ce:4b:7c:39:3d:ed:1a:
c3:67:ea:6f:01:f9:65:f1:1e:8e:21:40:3e:38:8a:
83:47:d2:d6:38:aa:a8:c4:0a:dc:21:41:83:61:0e:
f5:84:13:98:c3:37:29:aa:f4:0a:d8:dc:ee:fa:39:
e4:5f:ac:ad:2e:b1:90:3f:a4:28:c3:80:84:1b:6d:
89:c2:30:6f:b5:db:54:ef:d9:e4:63:1d:9f:da:67:
14:db:9d:49:82:99:df:c3:a0:ca:9d:a9:77:49:77:
a3:ed:76:4d:66:40:41:e4:11:d9:14:f5:ca:1c:e1:
38:5b:a8:56:51:af:c6:86:93:20:5e:13:b6:92:f7:
21:88:cf:4b:ae:86:ae:92:c7:20:9e:08:4e:f9:e7:
ed:6b:37:55:ff:d6:8a:39:e5:ee:4d:e8:70:bf:23:
4b:0a:6c:59:d8:e6:8e:b5:b3:e6:79:3a:4b:c2:a8:
b5:e4:48:54:76:c2:e8:40:21:3c:38:c5:00:75:b1:
a4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:98:3D:8A:98:72:22:C2:86:9D:39:4A:3E:B8:E7:9D:C6:32:0D:66
X509v3 Authority Key Identifier:
keyid:8F:31:CC:36:05:B3:EF:C0:9B:26:88:50:80:63:B6:FD:48:55:61:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzHMNgWz78CbJohQgGO2_UhVYd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/xJg9iphyIsKGnTlKPrjnncYyDWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/jzHMNgWz78CbJohQgGO2_UhVYd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.254.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:2d:94:f1:4a:d9:85:f9:70:ad:aa:48:fe:eb:9f:12:f9:35:
17:e5:91:38:ce:5d:4e:9c:cc:d3:39:48:a9:b4:2b:ff:c3:64:
59:0e:a1:ca:f2:de:28:da:de:22:ce:56:c6:81:b8:e5:ba:5c:
1b:28:d7:15:b0:29:c0:8e:30:22:9c:89:6e:2f:e1:58:2b:b9:
52:e9:ea:4f:d8:f2:aa:35:8f:ed:75:67:23:ea:71:31:ed:20:
dd:c9:f1:00:73:9f:68:23:69:06:a7:3d:11:5a:b1:d3:aa:1d:
24:e1:4c:55:75:7a:fa:55:cf:15:d1:87:50:b3:fc:b8:e3:f1:
ef:7e:da:99:eb:ee:25:4d:c3:f1:38:94:8c:91:8a:c6:80:9b:
c1:52:ee:53:00:89:b5:de:0d:ad:a1:7f:cd:dd:51:c7:40:69:
11:86:2b:f1:dc:6e:b9:29:b5:c6:54:21:ae:5f:ab:9a:fd:50:
25:c1:5e:05:60:a1:2c:bc:4b:8c:a3:98:43:ab:5e:49:04:10:
53:b3:2b:29:41:c2:6f:bc:10:0b:a9:ab:88:b6:ab:d5:b3:00:
1d:b0:42:c6:6d:1e:7b:6b:07:ff:db:49:5a:80:1a:21:15:fb:
82:a6:7c:8f:0d:c3:d7:1d:53:5d:0c:1e:7f:18:6f:cd:75:50:
7d:a6:73:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:03 2024 by rpki-client on console-ams.rpki-client.org