Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/SIJmzrWdFS05xNPsaG6wDRINUyc.roa
File: SIJmzrWdFS05xNPsaG6wDRINUyc.roa (raw, json)
Hash identifier: Hq0XeCTMqsBkEVeSvlzNLaMf56SFBAyPEaw3E4/TiLU=
Subject key identifier: 48:82:66:CE:B5:9D:15:2D:39:C4:D3:EC:68:6E:B0:0D:12:0D:53:27
Certificate issuer: /CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Certificate serial: 0559D452
Authority key identifier: 25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/SIJmzrWdFS05xNPsaG6wDRINUyc.roa
Signing time: Tue 31 May 2022 03:53:13 +0000
ROA not before: Tue 31 May 2022 03:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63593
IP address blocks: 192.169.104.0/24 maxlen: 24
192.169.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89773138 (0x559d452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Validity
Not Before: May 31 03:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488266ceb59d152d39c4d3ec686eb00d120d5327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c4:eb:23:b2:f6:fb:5d:29:93:70:9e:ce:47:
f0:f3:6b:54:b0:e9:bb:49:f2:d1:19:23:22:c3:4a:
39:8b:8e:9f:0b:3e:9c:e3:bb:6a:dc:07:9c:66:90:
53:e6:8f:40:81:38:b6:11:05:6b:91:18:59:ca:6b:
d8:ac:97:6e:ea:f7:33:d8:f9:a9:95:54:7b:08:75:
1a:06:53:b2:cd:b9:fa:2c:71:f0:1f:49:48:d6:ca:
fc:70:9a:f3:98:e8:db:a3:1d:e0:2a:04:23:7b:97:
87:51:41:37:3b:97:0e:8a:84:5b:b3:79:bd:b0:9c:
3c:14:f6:33:8a:b4:68:8a:b6:1d:47:58:5d:0d:a6:
d6:8d:fc:ab:de:c2:5a:ea:9a:1d:23:42:16:ed:49:
e1:7c:4c:73:b6:a8:56:51:08:7d:a7:40:7b:19:4b:
4b:11:6b:dd:db:7d:cd:b8:7e:53:f6:70:c3:b1:b4:
16:5d:31:2e:e0:a3:7f:97:02:53:77:88:db:c8:85:
be:0a:d3:7c:cb:c7:d1:08:0f:09:aa:6d:1b:6a:f4:
75:5f:5a:d3:57:6c:a0:0d:0e:01:90:12:bb:42:8e:
b6:6b:62:12:c7:b4:0e:fb:0f:e9:4b:b8:39:9e:92:
65:96:cc:b6:cf:cd:34:f2:02:91:d3:8a:05:b3:48:
b4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:82:66:CE:B5:9D:15:2D:39:C4:D3:EC:68:6E:B0:0D:12:0D:53:27
X509v3 Authority Key Identifier:
keyid:25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/SIJmzrWdFS05xNPsaG6wDRINUyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.169.104.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:bd:78:fd:16:93:ae:b7:f2:4d:ad:e7:32:3a:ea:45:94:48:
51:2d:cc:43:2b:c5:7b:15:e7:6c:bb:13:65:4b:37:ed:07:a1:
33:85:b6:73:96:0e:a9:5a:c6:98:99:da:03:8d:5a:b7:e3:bd:
07:6a:82:3f:b9:7a:d9:35:21:2b:48:52:8c:b9:7b:eb:e9:93:
5f:d8:16:3d:83:23:d2:0a:6e:74:f6:43:0c:7a:44:5b:6f:68:
22:bb:6e:13:6c:f3:e4:03:52:27:f4:e8:cf:c1:3e:47:ea:c4:
e1:23:3f:16:de:fe:7e:7d:f0:0b:06:19:2d:2a:da:08:c3:ef:
81:47:11:68:d4:62:45:0b:14:c0:7d:31:d3:5d:b8:fc:ad:17:
3d:be:4c:3f:4e:1f:da:c2:dd:19:1f:3d:7a:59:20:16:05:4b:
09:84:b7:24:57:77:47:37:96:41:cf:86:11:e1:d5:fc:ac:1f:
a4:d9:89:d2:03:7c:78:de:38:0b:6e:0d:fd:fe:17:4d:ab:e5:
58:76:4e:00:88:c8:95:51:04:d6:f4:84:84:d9:06:68:de:8c:
da:a4:a3:03:8c:40:38:7c:c2:3d:a7:51:a9:22:bd:83:92:c3:
25:7c:10:bb:fa:d1:02:17:6b:b9:9c:a9:3d:97:b9:c9:90:3e:
f5:26:38:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:50 2024 by rpki-client on console-ams.rpki-client.org