Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/joO0GUJzP1SNtRw0AULtbhFJiYk.roa
File: joO0GUJzP1SNtRw0AULtbhFJiYk.roa (raw, json)
Hash identifier: N4OmWz4SXPmuGTtYaPRm7rZuaN3NtBfljhGLCjNZ4fY=
Subject key identifier: 8E:83:B4:19:42:73:3F:54:8D:B5:1C:34:01:42:ED:6E:11:49:89:89
Certificate issuer: /CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Certificate serial: 137BCD0C
Authority key identifier: 1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/joO0GUJzP1SNtRw0AULtbhFJiYk.roa
Signing time: Sat 01 Jan 2022 08:55:41 +0000
ROA not before: Sat 01 Jan 2022 08:55:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202753
IP address blocks: 185.133.25.0/24 maxlen: 24
185.133.26.0/23 maxlen: 23
2a00:6700::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326880524 (0x137bcd0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bfe6b9a0e6898a7a2e9d84d3dbf6327b453e662
Validity
Not Before: Jan 1 08:55:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e83b41942733f548db51c340142ed6e11498989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c8:c1:b1:a0:8a:8a:be:60:ea:c9:06:81:13:
5d:cc:cd:8a:a8:db:4c:e9:15:90:4d:2d:22:de:55:
4a:98:68:f0:bf:3c:79:30:83:de:21:9c:0c:c8:cd:
c6:e0:eb:ba:d7:81:df:87:70:bf:95:74:9c:0e:ef:
59:da:10:2d:c9:1a:53:38:5d:5a:43:47:3f:b1:d3:
d8:74:fe:2e:11:ea:50:d2:3c:bf:44:c2:da:ba:9f:
cd:c0:67:72:93:b1:78:49:5d:85:9f:bc:06:74:da:
8c:de:89:8e:95:5f:f4:8f:b4:e5:8c:87:c4:ee:be:
51:94:0d:9f:e2:5b:b7:d3:c3:f2:e3:e1:b5:a6:68:
94:49:49:29:14:c5:3c:c8:2f:78:02:2d:52:e3:93:
ca:bc:de:d0:c9:6b:5e:9a:aa:c3:13:81:68:e2:18:
68:04:7e:f3:e1:47:5c:f0:e4:fe:97:75:21:3c:3d:
ff:c1:ff:44:d8:ca:98:d1:d6:4d:78:79:37:33:12:
fa:07:dd:d7:67:24:1c:ae:c6:0f:aa:b3:c0:f9:de:
b3:5f:e2:1a:c1:87:90:5b:3c:f0:3e:04:b5:91:13:
76:0e:12:c7:cc:08:00:81:d1:70:4f:d6:9e:2d:e5:
22:8f:06:e3:9a:b3:bf:50:04:f3:cf:d6:75:65:60:
bc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:83:B4:19:42:73:3F:54:8D:B5:1C:34:01:42:ED:6E:11:49:89:89
X509v3 Authority Key Identifier:
keyid:1B:FE:6B:9A:0E:68:98:A7:A2:E9:D8:4D:3D:BF:63:27:B4:53:E6:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_5rmg5omKei6dhNPb9jJ7RT5mI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/joO0GUJzP1SNtRw0AULtbhFJiYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/a56723-d37c-417b-a8a1-6e22bf436304/1/G_5rmg5omKei6dhNPb9jJ7RT5mI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.25.0-185.133.27.255
IPv6:
2a00:6700::/48
Signature Algorithm: sha256WithRSAEncryption
cb:a5:54:e9:e7:f3:cc:70:c2:7c:94:32:7b:8e:98:8f:64:c3:
53:75:5b:d8:f4:37:ac:bf:9b:89:5f:ca:7d:96:1d:a6:95:c9:
ff:58:d4:e8:de:5c:15:3a:b8:75:fb:c4:29:02:13:cc:8d:53:
b0:e0:7e:80:55:42:1a:65:97:2e:60:66:9b:aa:5b:77:da:1f:
eb:4a:14:03:a2:45:45:ab:47:df:80:9d:a7:a6:66:da:6f:f4:
16:9a:fb:7f:3a:4e:6f:3f:6b:7a:6a:ba:c3:b7:26:66:5d:16:
df:2e:bc:59:2e:84:56:01:b3:ed:84:7b:fb:1d:bb:62:0b:56:
85:c5:a6:f8:c1:4d:23:f7:fe:4d:73:fa:ba:ee:8e:0e:d0:69:
98:1b:93:8d:97:00:73:aa:95:f8:7f:f7:9d:33:ef:14:56:d3:
10:19:a3:bd:c7:c1:0e:65:c2:c8:a3:90:53:55:8b:de:d2:68:
85:8f:d7:2c:df:b5:ff:43:e4:6d:15:e1:b4:e2:33:ae:9d:fd:
64:52:c1:20:11:18:36:f5:56:30:a2:d8:49:0c:5a:c2:5e:1d:
c1:26:d4:10:3e:5a:e3:5d:49:cf:fb:21:00:da:ff:fd:af:a4:
d3:97:69:da:37:2a:f8:05:c6:48:3b:e6:2e:9e:83:e5:37:a5:
cb:20:61:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org