Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/JUzlKr64SPdLYyazI-OnSQOcQw0.roa
File: JUzlKr64SPdLYyazI-OnSQOcQw0.roa (raw, json)
Hash identifier: DFNlpN3SYjuxy2J3oMqhNleCmWm12KyXIQFWAEakpA0=
Subject key identifier: 25:4C:E5:2A:BE:B8:48:F7:4B:63:26:B3:23:E3:A7:49:03:9C:43:0D
Certificate issuer: /CN=9912d945ac2a49f3b4da2221c27b829aafccb2f2
Certificate serial: 048300B3
Authority key identifier: 99:12:D9:45:AC:2A:49:F3:B4:DA:22:21:C2:7B:82:9A:AF:CC:B2:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRLZRawqSfO02iIhwnuCmq_MsvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/JUzlKr64SPdLYyazI-OnSQOcQw0.roa
Signing time: Sat 01 Jan 2022 12:55:46 +0000
ROA not before: Sat 01 Jan 2022 12:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24929
IP address blocks: 195.177.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75694259 (0x48300b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9912d945ac2a49f3b4da2221c27b829aafccb2f2
Validity
Not Before: Jan 1 12:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=254ce52abeb848f74b6326b323e3a749039c430d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:33:b4:01:40:97:54:ea:c3:c4:3e:3c:77:56:
54:61:16:7e:90:e1:9f:73:40:79:43:17:9d:fe:d0:
66:c0:7a:de:a0:6a:cb:78:15:33:91:56:18:88:1f:
72:31:af:e5:fd:dd:e5:a4:32:38:cc:2e:42:a8:b8:
5b:bc:2b:c5:78:5a:37:ac:93:e1:89:9b:61:57:a3:
bc:57:15:89:b1:32:95:ac:11:14:0d:e4:2b:29:b0:
df:9c:88:af:a1:ab:ff:4f:4d:ec:77:94:4e:fc:0e:
ec:f0:34:71:21:41:e9:ff:ef:95:93:55:e3:55:d2:
5c:8e:e1:8f:5d:f0:19:d7:e6:49:e0:69:d8:a4:58:
10:fd:14:54:61:78:1b:69:22:00:2d:8f:84:3f:b3:
52:70:d8:f1:c3:d9:ae:04:dc:a8:ef:8d:b9:64:42:
6c:60:34:fb:d8:3e:af:56:c5:f0:12:dc:9a:7c:55:
26:a0:63:55:80:9c:f9:d0:26:26:71:c6:18:ae:b8:
d0:78:44:03:61:bb:06:19:16:5f:4d:d7:00:ff:6a:
4d:42:8a:ad:fb:67:ec:50:f3:81:f3:9a:0f:ac:2b:
8d:4b:6d:e7:5c:cf:49:26:33:0f:51:03:db:63:55:
d5:a5:07:b6:f0:67:ab:27:23:ed:ad:5e:1f:1a:d9:
35:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4C:E5:2A:BE:B8:48:F7:4B:63:26:B3:23:E3:A7:49:03:9C:43:0D
X509v3 Authority Key Identifier:
keyid:99:12:D9:45:AC:2A:49:F3:B4:DA:22:21:C2:7B:82:9A:AF:CC:B2:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRLZRawqSfO02iIhwnuCmq_MsvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/JUzlKr64SPdLYyazI-OnSQOcQw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/mRLZRawqSfO02iIhwnuCmq_MsvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:c4:a8:74:81:b9:35:af:5b:3b:64:51:a2:25:91:90:4c:5e:
9b:48:ca:ca:9e:35:a5:f2:77:dd:9b:16:59:84:e9:84:79:b2:
37:18:e1:af:34:c0:b4:4a:a1:84:2d:71:98:af:f6:cc:4e:c0:
5c:a0:c9:31:fc:23:19:76:67:b2:6a:3c:9f:b5:77:a9:fb:93:
3a:9d:a1:2f:de:5f:67:49:7e:9b:2e:20:06:ea:ba:d4:5e:23:
8d:8c:87:81:e8:37:1c:ac:3f:74:23:0d:83:cf:58:c7:46:40:
a1:b0:15:75:5f:9b:7f:aa:af:14:68:16:29:c9:b3:2c:b4:e7:
4a:43:17:4f:3c:34:1c:9a:d4:4e:b1:32:96:0c:e7:de:50:e9:
26:67:d2:71:b1:93:2f:a7:2a:94:61:c7:ac:b7:22:d6:04:ad:
92:c6:50:20:56:0f:74:ce:fd:11:07:69:d7:04:37:d0:fc:26:
f1:20:8a:8e:60:5e:88:59:73:c2:2b:57:f4:71:f7:c0:c3:f3:
a0:0a:8d:01:5f:c8:2c:34:a0:0d:01:ba:20:f6:38:44:4a:d4:
94:94:f6:56:5b:01:a7:e9:e5:4e:61:3c:08:b4:8a:5b:59:b4:
ca:03:01:92:b5:bd:c6:ff:45:f8:1f:c9:5d:08:89:8a:7c:45:
e0:13:6c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:54 2024 by rpki-client on console-fra.rpki-client.org