Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/J80_IgptkcU1M98RcWsXOpj78Fs.roa
File: J80_IgptkcU1M98RcWsXOpj78Fs.roa (raw, json)
Hash identifier: /HER2T1OYb1P9e1IT8w/Zt9uShO5zGmUL7KzxT6tM70=
Subject key identifier: 27:CD:3F:22:0A:6D:91:C5:35:33:DF:11:71:6B:17:3A:98:FB:F0:5B
Certificate issuer: /CN=4f1e3770e71e6ee68b4e16f4eec6b1909f1d6686
Certificate serial: 01840907BA66BE3A7552F552C280D3AE266A
Authority key identifier: 4F:1E:37:70:E7:1E:6E:E6:8B:4E:16:F4:EE:C6:B1:90:9F:1D:66:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tx43cOcebuaLThb07saxkJ8dZoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/J80_IgptkcU1M98RcWsXOpj78Fs.roa
Signing time: Mon 24 Oct 2022 08:06:52 +0000
ROA not before: Mon 24 Oct 2022 08:06:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41789
IP address blocks: 185.55.57.0/24 maxlen: 24
185.55.58.0/24 maxlen: 24
185.55.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:07:ba:66:be:3a:75:52:f5:52:c2:80:d3:ae:26:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1e3770e71e6ee68b4e16f4eec6b1909f1d6686
Validity
Not Before: Oct 24 08:06:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27cd3f220a6d91c53533df11716b173a98fbf05b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ca:ad:28:63:a6:12:cf:3f:c2:e1:f2:4d:3c:
50:b4:a7:13:d6:b5:17:f2:b3:d2:00:e1:07:1e:ad:
d7:97:ba:eb:7e:60:db:18:97:71:41:4d:42:58:7b:
30:d1:1f:dd:42:af:50:42:09:5e:39:44:3d:95:81:
aa:27:db:7d:47:6d:80:f3:e0:1f:d4:16:57:6e:73:
9a:79:ba:0e:b6:96:76:de:b7:8a:ff:84:51:d9:b0:
f7:6f:9a:49:c0:49:ca:20:d4:4b:17:d8:e2:a6:28:
98:6f:4a:f4:52:c1:b7:88:61:b8:5f:14:0e:d5:e5:
cc:2e:85:0e:f5:4d:cc:cb:55:2b:8e:6f:06:2e:44:
f5:9b:bb:3b:1f:3e:81:13:60:04:dd:6b:13:71:75:
63:06:b8:c0:6c:38:0c:79:c6:c3:f7:97:89:2d:fb:
18:d5:50:35:96:ab:f6:6e:aa:bc:6f:05:9b:19:8a:
0c:cc:bd:1d:99:26:4b:6b:af:17:21:b4:9e:80:5f:
df:9a:3a:2c:07:96:7f:73:61:0f:a2:f4:69:20:20:
90:9a:38:88:a4:e8:1d:3f:e7:9c:2a:17:1e:2c:f8:
7d:c8:21:dd:bd:a8:10:fb:b8:50:a2:58:79:e2:b9:
16:f8:c6:e1:17:8a:fc:ad:62:9a:4f:c6:69:77:61:
c6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CD:3F:22:0A:6D:91:C5:35:33:DF:11:71:6B:17:3A:98:FB:F0:5B
X509v3 Authority Key Identifier:
keyid:4F:1E:37:70:E7:1E:6E:E6:8B:4E:16:F4:EE:C6:B1:90:9F:1D:66:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tx43cOcebuaLThb07saxkJ8dZoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/J80_IgptkcU1M98RcWsXOpj78Fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/Tx43cOcebuaLThb07saxkJ8dZoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.57.0-185.55.59.255
Signature Algorithm: sha256WithRSAEncryption
71:34:60:99:57:92:90:36:d9:79:9e:0f:86:e7:a9:49:68:17:
58:11:36:2b:8b:3e:89:63:71:27:5b:81:ab:d4:4e:38:4e:12:
40:9e:65:71:79:b4:2c:40:08:9f:df:db:f0:05:11:f5:fb:84:
52:4c:bc:d8:72:4b:5d:01:03:2b:07:33:03:36:55:12:e1:19:
6f:2c:c5:7a:92:c8:e0:e4:01:48:49:fb:cb:96:22:0c:1e:d4:
cc:8f:30:f5:bd:84:84:0e:cc:1e:8e:ed:a5:7c:55:1b:87:bb:
19:3d:a8:fd:d3:74:40:6a:ac:49:fd:8c:2a:e3:f1:be:d7:fe:
52:3a:f6:a8:10:d9:60:b0:b3:32:0c:44:01:f0:de:5f:3f:30:
e1:b7:7a:fc:b5:6c:6b:d4:c5:51:0f:35:4d:57:ad:1c:d8:a6:
3e:cc:60:24:eb:73:3b:18:23:58:71:b9:aa:2a:96:46:64:f0:
85:37:84:df:b5:4c:2b:dc:5e:3e:db:24:85:0c:c4:d6:75:86:
79:b0:f1:d7:0f:6b:3c:7d:24:be:70:ed:7f:17:b7:ba:62:50:
17:ab:b1:c5:be:84:61:3e:bd:c4:ae:1e:50:3d:fa:fe:72:cc:
b4:b5:40:f8:35:12:3c:5f:c5:76:4d:99:73:3f:0a:56:e0:3e:
91:14:ee:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:59 2023 by rpki-client on console-ams.rpki-client.org