Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/jE-XVh_LYqzqzfB4jR6DTjVxY9Q.roa
File: jE-XVh_LYqzqzfB4jR6DTjVxY9Q.roa (raw, json)
Hash identifier: ulYcQa+mVMaSZteCkUlAXM5iuFJ2hFKyL6kRAmUPXYE=
Subject key identifier: 8C:4F:97:56:1F:CB:62:AC:EA:CD:F0:78:8D:1E:83:4E:35:71:63:D4
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 02542973
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/jE-XVh_LYqzqzfB4jR6DTjVxY9Q.roa
Signing time: Tue 25 Jan 2022 05:17:35 +0000
ROA not before: Tue 25 Jan 2022 05:17:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 188.64.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39070067 (0x2542973)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 25 05:17:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c4f97561fcb62aceacdf0788d1e834e357163d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:36:e6:e1:13:ea:af:e9:cd:94:e1:b6:da:80:
24:4a:10:ee:78:69:c6:52:b2:a2:4b:5a:f2:1e:ba:
fd:d7:17:2e:b6:cd:be:8d:56:71:cd:99:3e:54:db:
eb:92:ca:2a:23:a0:99:61:99:04:65:2f:93:79:1f:
7b:c8:c1:13:7e:f8:45:19:2c:9f:4f:a2:c6:0d:b9:
4b:28:a9:aa:91:d9:ec:32:7f:31:49:c0:16:c2:d9:
e2:1b:79:14:9f:51:6c:49:14:06:cf:73:fc:48:99:
20:c6:05:d7:a9:e1:66:54:73:40:9b:38:e1:46:99:
71:d8:59:d7:fd:6e:b4:4e:1d:bb:e1:da:74:95:21:
3a:b6:c8:02:d5:af:e6:b3:6d:6c:6d:44:5b:d4:9f:
4e:83:05:d7:94:b5:34:45:2d:b7:63:a7:81:93:a2:
f7:7c:67:2c:3a:c6:2a:1b:08:30:99:fc:b2:a0:9d:
a6:11:96:c0:6e:a8:a0:f5:cc:25:ce:0c:a7:cc:6f:
20:da:d2:2e:d8:45:d9:b3:79:af:91:68:b4:83:9d:
86:e4:2d:46:2b:10:b2:7a:32:91:8c:c8:b6:bd:c6:
b9:85:02:4d:98:61:65:93:99:eb:74:64:1d:88:55:
04:a6:02:f3:dd:35:8d:f3:0b:a7:bb:e7:79:23:0c:
d4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4F:97:56:1F:CB:62:AC:EA:CD:F0:78:8D:1E:83:4E:35:71:63:D4
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/jE-XVh_LYqzqzfB4jR6DTjVxY9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:24:fe:9c:64:88:48:06:e7:5c:3e:75:e9:65:2e:90:9f:4a:
53:33:e3:57:bb:39:e2:b3:42:d5:c3:64:cd:07:bf:8d:07:8e:
d9:fd:78:50:31:ef:2d:66:27:11:7b:6e:38:93:49:5f:c5:a7:
b6:60:09:cd:a6:bc:fa:6b:cd:7a:49:0b:4b:9f:c1:de:d9:5d:
de:61:21:5e:76:d8:f0:c1:25:79:18:5c:a2:a5:65:8e:df:43:
1f:ae:1e:6a:1f:94:19:72:38:f6:02:ec:9e:f5:98:e5:fd:92:
35:ce:3c:1f:0a:10:f2:02:fb:b5:57:42:a5:05:fc:10:da:6a:
4f:2b:fd:1c:94:76:c9:72:4f:3c:2c:fb:10:0f:99:70:b3:40:
5a:3f:8a:93:d9:2e:42:24:4a:0e:31:8e:b3:8f:02:02:0e:55:
c0:4b:8a:8c:da:67:cb:28:c1:59:cd:41:30:9f:e8:56:5b:9a:
75:68:e7:a9:12:95:7b:04:a3:85:81:f2:00:a5:05:36:f7:bd:
9c:62:5f:63:a0:36:73:d0:80:85:2b:d2:bf:8c:81:a6:65:bd:
cf:3d:39:09:3d:3f:06:09:5f:d4:7c:6f:23:e4:8a:11:ac:a5:
c5:cd:06:d6:32:39:e7:95:0d:36:81:b1:41:32:30:b2:ac:08:
00:58:a5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org