Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/5ec7ca-a402-4c5d-a1b7-61b772d751ec/1/JEKqH2-xTUQwSAY3esG4rgJ8hDI.roa
File: JEKqH2-xTUQwSAY3esG4rgJ8hDI.roa (raw, json)
Hash identifier: ywrBjt3+/VMKdddjsua7qbiFbZpCO/ytWcyb9S1JT6g=
Subject key identifier: 24:42:AA:1F:6F:B1:4D:44:30:48:06:37:7A:C1:B8:AE:02:7C:84:32
Certificate issuer: /CN=8f175225f386ce980119f69884f9be7c6a2b3b33
Certificate serial: 37039EBB
Authority key identifier: 8F:17:52:25:F3:86:CE:98:01:19:F6:98:84:F9:BE:7C:6A:2B:3B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jxdSJfOGzpgBGfaYhPm-fGorOzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/5ec7ca-a402-4c5d-a1b7-61b772d751ec/1/JEKqH2-xTUQwSAY3esG4rgJ8hDI.roa
Signing time: Fri 25 Feb 2022 12:58:47 +0000
ROA not before: Fri 25 Feb 2022 12:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29600
IP address blocks: 2a01:a880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 922984123 (0x37039ebb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f175225f386ce980119f69884f9be7c6a2b3b33
Validity
Not Before: Feb 25 12:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2442aa1f6fb14d44304806377ac1b8ae027c8432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5a:a2:ff:28:61:ac:bd:69:70:40:b1:68:f1:
d2:d2:32:07:75:e2:b3:87:96:d2:6a:30:19:df:d5:
71:a1:ad:95:52:5e:4a:61:28:6c:7e:9d:d5:d2:cd:
30:e6:11:d5:68:f7:fa:dc:b4:44:70:5b:05:44:3b:
a6:dc:73:90:b2:94:08:d9:5c:69:04:54:3c:d8:1b:
a2:7e:ef:07:7e:0a:9b:ab:b2:f6:4b:6a:91:ab:1b:
19:eb:10:e4:b1:69:0a:40:0a:54:51:0f:54:9b:58:
ee:ee:1c:7f:f4:f6:9b:1e:a1:a9:0c:4d:36:4b:43:
a5:5c:dc:96:59:13:a2:a2:39:89:75:fa:0d:31:bf:
10:0f:a1:b8:90:03:e5:60:d8:b6:3f:77:72:19:2d:
6d:13:6e:e3:e2:95:98:63:8f:75:d6:33:a5:d9:90:
29:d9:dd:99:40:b2:d7:10:e4:9b:f4:87:59:de:99:
b0:c9:e5:e6:8d:17:18:ba:07:06:73:06:e5:d2:b7:
f5:8f:8b:2c:21:0a:c4:d9:c4:30:50:52:ad:7c:b1:
83:11:fe:00:f7:25:7c:7e:51:92:6e:4e:3f:98:d0:
6b:80:43:a2:f3:09:dc:2f:20:6b:67:e9:e6:e5:00:
a1:67:a2:34:10:40:1f:cd:6c:47:66:c6:0d:3a:49:
2e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:42:AA:1F:6F:B1:4D:44:30:48:06:37:7A:C1:B8:AE:02:7C:84:32
X509v3 Authority Key Identifier:
keyid:8F:17:52:25:F3:86:CE:98:01:19:F6:98:84:F9:BE:7C:6A:2B:3B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jxdSJfOGzpgBGfaYhPm-fGorOzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/5ec7ca-a402-4c5d-a1b7-61b772d751ec/1/JEKqH2-xTUQwSAY3esG4rgJ8hDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/5ec7ca-a402-4c5d-a1b7-61b772d751ec/1/jxdSJfOGzpgBGfaYhPm-fGorOzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:a880::/29
Signature Algorithm: sha256WithRSAEncryption
06:4f:35:07:73:0f:10:a6:9f:e2:22:16:2a:f3:77:5d:60:7c:
76:65:c8:f3:5f:56:49:8c:09:10:24:58:38:cc:d5:ec:64:0e:
62:2f:ca:dd:e7:f9:a1:3c:d0:29:c0:8c:e2:23:cd:47:dd:f8:
98:e8:1a:b1:3d:f6:ac:63:70:b9:04:f2:47:2f:7e:3d:9d:ff:
d6:21:5b:51:ef:84:c3:e0:8d:57:a3:40:d9:99:21:97:96:58:
21:4f:ef:5a:d9:64:ba:e0:23:51:4b:01:4c:1f:37:1a:94:a9:
14:62:02:62:7f:40:3e:71:c7:04:bb:b2:af:31:0c:03:31:03:
b4:6c:83:c7:80:ec:85:70:ec:9e:02:d8:30:75:22:57:b1:2c:
d3:d6:69:4a:2b:97:54:8c:fe:e0:e4:96:88:5f:e4:32:70:60:
78:88:58:22:47:41:85:e3:a2:5f:67:3c:d6:02:cc:a4:27:7a:
c2:35:c5:76:df:f5:b8:de:19:8b:49:0e:1b:b8:c8:0f:a8:a5:
8e:d0:eb:a1:e5:68:27:00:69:85:ab:c8:8f:c9:09:5d:5f:c1:
9c:1b:94:a8:f0:1d:02:55:94:9f:eb:a7:bb:15:ce:81:cc:0e:
79:9d:b6:13:58:a6:b9:02:75:8c:fb:62:e7:0a:a1:24:0e:c9:
82:bd:d8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:45 2023 by rpki-client on console-ams.rpki-client.org