Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/fc5820-8197-4f3d-b625-e20ebbd085e1/1/jmf666i4G0LKLBpMB74bm5x8sDQ.roa
File: jmf666i4G0LKLBpMB74bm5x8sDQ.roa (raw, json)
Hash identifier: L6NkrKaI//jmaEnWOi/EXi8DbrnJO1Y1X3xxcxgv0uA=
Subject key identifier: 8E:67:FA:EB:A8:B8:1B:42:CA:2C:1A:4C:07:BE:1B:9B:9C:7C:B0:34
Certificate issuer: /CN=34b8d5f9138568b52cb0936e2b4c94f77ce57aec
Certificate serial: 03CC34F8
Authority key identifier: 34:B8:D5:F9:13:85:68:B5:2C:B0:93:6E:2B:4C:94:F7:7C:E5:7A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLjV-ROFaLUssJNuK0yU93zleuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/fc5820-8197-4f3d-b625-e20ebbd085e1/1/jmf666i4G0LKLBpMB74bm5x8sDQ.roa
Signing time: Sat 01 Jan 2022 15:03:50 +0000
ROA not before: Sat 01 Jan 2022 15:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197870
IP address blocks: 176.57.40.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63714552 (0x3cc34f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b8d5f9138568b52cb0936e2b4c94f77ce57aec
Validity
Not Before: Jan 1 15:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e67faeba8b81b42ca2c1a4c07be1b9b9c7cb034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3a:78:ba:58:1b:3e:05:e1:57:f6:a7:1f:f5:
4b:e6:45:d0:e3:f7:c6:41:ba:13:a5:86:85:7d:4a:
5b:1b:76:ce:25:7c:67:97:92:61:cb:77:ef:6d:af:
5f:11:6c:c5:58:17:25:ae:0d:4d:b2:61:14:f0:91:
a0:f5:6f:64:6d:c5:53:d7:e5:84:fa:6a:0b:39:a5:
1f:02:97:f8:45:f2:93:d9:e9:b4:fe:48:93:a8:2a:
7f:17:7e:f0:e8:53:b1:bb:a4:95:05:b4:50:17:de:
07:48:7d:a1:52:38:50:ef:b9:da:2d:d9:fb:cb:31:
1a:d0:f3:9a:d8:27:70:a8:18:6c:fb:68:58:fa:44:
b3:bf:dd:85:2e:16:fe:81:5e:03:7b:b4:60:2a:1b:
31:8c:c2:64:6f:10:9d:33:3b:bd:c5:60:6b:3a:9b:
c0:e5:c6:ba:14:ad:82:9c:bf:1c:85:b8:8c:ed:96:
28:82:4d:88:77:e3:6b:18:75:73:72:f3:6b:96:14:
c2:ae:f5:7f:40:41:79:25:d5:ad:08:5f:1f:9e:77:
a1:30:6e:ac:5d:0c:77:69:33:6c:a3:c1:1e:97:6e:
2c:de:9c:b1:28:c1:d5:9b:66:68:02:89:bb:87:f5:
71:cd:8d:a8:64:af:32:60:41:66:44:d0:d6:80:42:
65:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:67:FA:EB:A8:B8:1B:42:CA:2C:1A:4C:07:BE:1B:9B:9C:7C:B0:34
X509v3 Authority Key Identifier:
keyid:34:B8:D5:F9:13:85:68:B5:2C:B0:93:6E:2B:4C:94:F7:7C:E5:7A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLjV-ROFaLUssJNuK0yU93zleuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/fc5820-8197-4f3d-b625-e20ebbd085e1/1/jmf666i4G0LKLBpMB74bm5x8sDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/fc5820-8197-4f3d-b625-e20ebbd085e1/1/NLjV-ROFaLUssJNuK0yU93zleuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.40.0/21
Signature Algorithm: sha256WithRSAEncryption
89:a2:a4:ef:6a:83:fb:d8:01:b5:0b:96:3d:e0:2e:25:7b:f9:
c5:ff:57:3e:41:0b:58:e5:f5:ae:e0:9f:13:17:4c:4d:1c:16:
d9:27:7b:43:f2:c4:c0:cc:91:e2:39:fe:cc:70:01:72:fd:1f:
f4:a2:cd:d4:25:74:8d:6b:c6:9e:69:e2:4a:0d:82:e2:21:49:
20:31:6f:39:44:5d:a2:87:98:1f:cb:be:43:a6:13:b8:8d:5a:
4a:5d:2a:9c:3a:cc:f9:30:55:58:fe:e5:04:a3:13:b1:6d:3c:
0c:62:63:da:b3:7b:f9:bd:2d:3a:7f:41:47:b0:b8:9f:78:5b:
93:4a:ea:9c:35:55:68:38:bf:91:7d:69:fe:85:44:bd:c3:dc:
41:1b:af:d0:3b:8c:d9:89:e3:5e:d4:f8:10:57:3f:24:5b:5f:
e0:1a:30:95:ed:c5:e1:ee:e4:5e:34:54:a6:89:a8:59:b1:a5:
0f:5f:53:b4:05:0c:b1:f4:3d:cd:8a:ff:17:94:a5:e4:4f:bd:
76:4f:ce:c5:a3:a0:ce:0c:51:8c:7e:1f:51:04:d4:4b:5f:cb:
c0:06:8e:d3:be:72:63:ff:74:65:60:33:23:11:96:20:8c:25:
66:d3:1a:d3:4f:01:7a:b3:24:4a:e2:43:ae:28:16:69:ad:df:
06:fd:5d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net