Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/JOMjP0-F3OGWCTJMH1wqf7bbNvw.roa
File: JOMjP0-F3OGWCTJMH1wqf7bbNvw.roa (raw, json)
Hash identifier: rdt10TI03kLRPS7V2QSKRdpfI8aRCTJH1j/yiuRsI9Q=
Subject key identifier: 24:E3:23:3F:4F:85:DC:E1:96:09:32:4C:1F:5C:2A:7F:B6:DB:36:FC
Certificate issuer: /CN=66d8a84f0e8cf755137a9680ebcc4fccd20a34b2
Certificate serial: 0B22C722
Authority key identifier: 66:D8:A8:4F:0E:8C:F7:55:13:7A:96:80:EB:CC:4F:CC:D2:0A:34:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/JOMjP0-F3OGWCTJMH1wqf7bbNvw.roa
Signing time: Sat 01 Jan 2022 04:01:19 +0000
ROA not before: Sat 01 Jan 2022 04:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205804
IP address blocks: 195.246.200.0/22 maxlen: 24
2a0d:12c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186828578 (0xb22c722)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d8a84f0e8cf755137a9680ebcc4fccd20a34b2
Validity
Not Before: Jan 1 04:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24e3233f4f85dce19609324c1f5c2a7fb6db36fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:80:8d:24:d3:3a:f8:a5:37:8e:89:77:14:
d0:4c:9d:ee:da:49:34:17:fc:d9:fa:7c:34:23:85:
8e:43:21:93:1a:7f:e2:e2:f4:4c:35:d3:58:f7:4c:
e2:8f:7d:09:85:1f:fe:c5:a3:64:80:e7:3a:f9:fa:
05:d3:e8:de:87:25:a2:d9:01:52:ce:aa:47:ca:e7:
d6:69:08:d1:bc:1f:3d:5a:6d:5d:50:1b:2b:02:bb:
36:35:ca:30:43:76:dd:8e:ef:0f:7f:fb:42:26:18:
8f:0c:20:09:de:c1:98:40:a5:3e:68:ff:b4:71:1b:
42:5f:a8:39:84:46:ed:a5:d1:7d:cd:b3:9e:e6:3f:
de:4f:8f:4d:07:8c:b4:07:fa:62:1a:5c:5c:1e:7d:
3e:9a:1d:95:c0:86:4d:f6:3b:42:ed:2d:f0:5c:96:
cb:09:58:38:e0:07:a8:f4:42:8f:48:8e:29:a9:29:
d0:f4:77:50:92:05:4a:ac:4c:ba:49:96:fb:ba:46:
e3:0a:2c:52:c2:c8:df:2b:7c:39:c4:41:54:45:ea:
84:17:2f:de:b4:f9:5c:d2:20:d7:9e:36:03:2c:50:
54:b6:d2:a2:35:e7:67:ac:b6:03:8c:79:2c:63:11:
2f:1b:c9:9f:6e:ca:f8:48:d9:d7:67:c8:d9:17:25:
64:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E3:23:3F:4F:85:DC:E1:96:09:32:4C:1F:5C:2A:7F:B6:DB:36:FC
X509v3 Authority Key Identifier:
keyid:66:D8:A8:4F:0E:8C:F7:55:13:7A:96:80:EB:CC:4F:CC:D2:0A:34:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/JOMjP0-F3OGWCTJMH1wqf7bbNvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/ZtioTw6M91UTepaA68xPzNIKNLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.246.200.0/22
IPv6:
2a0d:12c0::/32
Signature Algorithm: sha256WithRSAEncryption
64:5a:16:70:c4:54:ab:52:64:cb:a2:86:a1:39:60:52:eb:41:
c6:15:55:11:74:61:36:d5:d8:a8:a7:b1:d5:a2:20:81:e5:aa:
9b:48:8c:6e:c8:c5:55:ac:43:64:2e:71:2f:db:2a:ef:43:ff:
37:1f:20:dd:43:fe:4b:24:1d:b8:9a:4b:63:8b:11:f5:8a:b8:
92:09:4c:47:53:8a:8a:34:50:84:f7:f7:19:06:7a:a2:c5:6e:
4c:8e:54:30:57:51:2c:3b:c7:89:31:e1:ab:41:fc:7f:86:27:
e4:8d:7e:d5:d6:95:a9:e2:fd:7e:55:64:52:66:aa:1b:3f:33:
bb:77:7c:35:eb:d6:ac:a3:d8:8b:24:2b:d4:fc:bb:f6:15:81:
30:bf:3e:aa:b4:49:f1:8b:5f:fa:ec:4b:6f:76:3f:28:6d:38:
d9:b7:ec:84:3a:6e:b5:74:63:0c:8d:36:ac:6f:ed:2c:04:c3:
9a:57:32:5c:f6:12:f5:af:95:5a:37:50:f6:97:73:27:02:a4:
34:87:9a:bc:52:fa:2d:e0:a5:ad:53:16:3d:92:c7:99:6d:b0:
e0:a4:70:40:38:82:fb:ee:2e:e8:4d:c7:d5:fc:57:87:e2:bc:
71:0f:25:7c:60:9c:87:74:fc:2a:8b:74:6a:5b:b9:17:81:93:
c7:27:16:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:09 2024 by rpki-client on console-fra.rpki-client.org