Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/f22131-a0ff-4f27-8dfa-69152e9a08c3/1/Jx_A798d1m34WGYhb7fnbHEq0MI.roa
File: Jx_A798d1m34WGYhb7fnbHEq0MI.roa (raw, json)
Hash identifier: bQxxDMoiSnn8I5GKxfTulQwz+O1ptbIJ35WrR2Ua33Y=
Subject key identifier: 27:1F:C0:EF:DF:1D:D6:6D:F8:58:66:21:6F:B7:E7:6C:71:2A:D0:C2
Certificate issuer: /CN=9783a5487b35c1d1e1f157c191312b3df4bc17ab
Certificate serial: 0AAB86C2
Authority key identifier: 97:83:A5:48:7B:35:C1:D1:E1:F1:57:C1:91:31:2B:3D:F4:BC:17:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l4OlSHs1wdHh8VfBkTErPfS8F6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/f22131-a0ff-4f27-8dfa-69152e9a08c3/1/Jx_A798d1m34WGYhb7fnbHEq0MI.roa
Signing time: Sat 01 Jan 2022 15:01:53 +0000
ROA not before: Sat 01 Jan 2022 15:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 147.189.216.0/22 maxlen: 32
147.189.220.0/22 maxlen: 32
193.5.16.0/23 maxlen: 32
193.5.18.0/23 maxlen: 32
2a0d:3dc0::/30 maxlen: 128
2a0d:3dc4::/30 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179013314 (0xaab86c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9783a5487b35c1d1e1f157c191312b3df4bc17ab
Validity
Not Before: Jan 1 15:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=271fc0efdf1dd66df85866216fb7e76c712ad0c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d9:b0:eb:5d:84:99:b6:a2:6f:7a:24:fb:c6:
07:9d:a1:b9:9b:dd:90:72:97:b7:eb:7f:30:1e:27:
fa:9a:7f:75:1e:b2:be:52:37:5a:69:f4:84:b6:df:
20:25:a0:38:75:d3:76:63:17:3b:de:87:de:0e:60:
b5:4d:a5:e8:1b:0f:ce:9e:ec:7b:10:b4:e6:d7:1a:
d4:07:55:ee:d1:a6:9f:f1:98:59:92:82:c9:07:b8:
2d:ef:a7:f1:61:9c:ab:8f:5d:d9:73:66:79:7a:9c:
6d:e7:f4:98:c0:36:17:70:f6:e7:1c:d9:94:df:0a:
49:24:52:06:e9:94:91:a8:97:2a:f9:03:41:ab:5c:
20:d8:79:16:46:8f:c0:47:84:47:f3:08:8d:4d:66:
ef:84:16:6c:0f:32:37:1a:59:db:b1:1e:d3:70:1d:
3f:a3:6f:98:2e:f1:7c:13:5c:50:c9:6b:34:fb:6d:
73:4a:ac:cf:6b:47:5e:44:14:13:75:95:a7:d5:17:
42:ba:3c:95:d4:ac:e8:2f:8a:fe:ec:84:c8:64:57:
a7:10:8e:14:d7:e3:5f:10:4d:b6:51:d0:52:93:e9:
13:1b:47:6b:18:18:13:08:82:5f:9c:2f:19:69:a4:
a7:db:72:02:d8:95:24:cb:be:b9:c4:4b:9d:5f:1c:
6c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1F:C0:EF:DF:1D:D6:6D:F8:58:66:21:6F:B7:E7:6C:71:2A:D0:C2
X509v3 Authority Key Identifier:
keyid:97:83:A5:48:7B:35:C1:D1:E1:F1:57:C1:91:31:2B:3D:F4:BC:17:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l4OlSHs1wdHh8VfBkTErPfS8F6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f22131-a0ff-4f27-8dfa-69152e9a08c3/1/Jx_A798d1m34WGYhb7fnbHEq0MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f22131-a0ff-4f27-8dfa-69152e9a08c3/1/l4OlSHs1wdHh8VfBkTErPfS8F6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.216.0/21
193.5.16.0/22
IPv6:
2a0d:3dc0::/29
Signature Algorithm: sha256WithRSAEncryption
05:7c:2a:fb:75:96:bb:40:72:b4:75:66:f0:91:7f:7e:88:75:
50:67:24:d8:76:23:eb:d2:7b:7b:65:46:69:12:da:cc:6f:ea:
20:56:dc:3f:da:d9:a2:47:c0:9e:a9:79:ff:b1:86:a7:26:a0:
36:13:4e:8b:43:78:d6:08:ed:57:83:0b:ab:b7:c9:6b:35:d8:
e4:ff:dc:27:78:93:ee:31:43:c7:5e:5b:69:5b:57:a9:e6:fb:
ac:4e:d7:99:1c:8f:d8:32:99:38:7e:38:ef:73:ad:8d:0b:be:
f9:f6:00:5d:2d:b6:56:1f:21:6d:42:42:81:b4:b7:86:08:be:
6c:23:4d:fe:4c:6d:15:eb:2c:9e:0a:d2:22:48:22:22:92:ba:
11:45:f5:bc:c7:1d:e6:b7:40:28:69:d1:79:3a:f5:51:80:01:
e7:ff:f1:05:42:08:11:c9:72:9c:df:14:2d:02:66:23:bf:84:
83:3c:8f:39:cb:76:dc:16:9a:95:30:4e:e6:12:2f:79:43:45:
f0:22:29:21:5c:a8:b2:ba:7a:5f:22:6b:9d:05:9a:f4:c3:96:
f3:e3:c8:a9:de:81:16:2d:fe:25:1c:be:cc:71:35:82:c5:6b:
51:97:3a:d8:bc:44:c0:0f:3c:20:d1:17:8a:65:1b:f3:52:76:
ce:d4:a9:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:01 2024 by rpki-client on console-fra.rpki-client.org