Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/J1AtlAcKsBtkZWqypwdUqgjBgVc.roa
File: J1AtlAcKsBtkZWqypwdUqgjBgVc.roa (raw, json)
Hash identifier: l5S47RFtsjj6+dL+u4VLVggdWC7KAHo/M1ji0vl6hNw=
Subject key identifier: 27:50:2D:94:07:0A:B0:1B:64:65:6A:B2:A7:07:54:AA:08:C1:81:57
Certificate issuer: /CN=0a2a157f00515f95b6df5dc0d52eb1b5d43fde5c
Certificate serial: 01824A8E1A8E0320AB5367897A836312FA0E
Authority key identifier: 0A:2A:15:7F:00:51:5F:95:B6:DF:5D:C0:D5:2E:B1:B5:D4:3F:DE:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CioVfwBRX5W2313A1S6xtdQ_3lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/J1AtlAcKsBtkZWqypwdUqgjBgVc.roa
Signing time: Fri 29 Jul 2022 15:23:23 +0000
ROA not before: Fri 29 Jul 2022 15:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.211.12.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:8e:1a:8e:03:20:ab:53:67:89:7a:83:63:12:fa:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a2a157f00515f95b6df5dc0d52eb1b5d43fde5c
Validity
Not Before: Jul 29 15:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27502d94070ab01b64656ab2a70754aa08c18157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e8:ef:31:0d:fb:0b:7f:26:54:80:a2:ff:b1:
45:a3:9b:c7:4b:18:38:45:b4:a2:87:a4:a5:c2:ed:
c9:8d:b4:d4:18:a9:ae:63:78:cf:ab:fe:96:20:3a:
73:bd:41:23:6b:69:28:6c:8e:01:d6:e9:ec:4d:b5:
c4:54:50:4a:6d:b8:f3:2e:46:87:46:07:24:06:23:
4b:c6:bc:c7:c3:94:54:54:de:14:76:ba:08:e0:a7:
92:ef:ee:f4:8f:8d:6b:2d:05:f4:5f:74:53:4c:42:
9c:d7:eb:a4:e4:12:7c:04:c3:74:d4:38:86:3a:9c:
34:f5:91:3b:18:5c:7c:26:74:c1:48:5f:67:58:ec:
b8:db:e2:bb:f8:16:48:28:ae:9a:6b:56:9f:de:01:
9a:fd:1d:8f:6d:7a:0c:e2:84:76:f8:3b:40:18:3f:
e1:22:dd:fa:1c:96:8d:e7:bf:23:85:55:ad:d4:1a:
64:5a:f9:e1:4f:fc:93:9a:8e:cc:4e:db:c8:7c:00:
c1:78:99:f7:ba:77:2e:54:24:3f:36:5c:0a:ee:cf:
4c:74:a7:cf:d2:2f:68:fd:4a:6c:42:69:73:72:67:
c9:74:45:f3:4d:0f:08:37:28:77:62:78:e0:b0:2d:
d6:a9:56:c6:c9:16:ea:35:1f:6a:f2:c5:01:c2:e2:
93:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:50:2D:94:07:0A:B0:1B:64:65:6A:B2:A7:07:54:AA:08:C1:81:57
X509v3 Authority Key Identifier:
keyid:0A:2A:15:7F:00:51:5F:95:B6:DF:5D:C0:D5:2E:B1:B5:D4:3F:DE:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CioVfwBRX5W2313A1S6xtdQ_3lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/J1AtlAcKsBtkZWqypwdUqgjBgVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/3a39e9-3d40-46f8-bb0f-5ba43b118f75/1/CioVfwBRX5W2313A1S6xtdQ_3lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.12.0/23
Signature Algorithm: sha256WithRSAEncryption
70:9d:b7:8a:c6:99:bc:49:d5:20:c6:8f:95:9d:10:4d:08:a6:
1b:d1:20:06:20:ea:41:7d:51:7f:d7:26:52:d7:bb:83:40:9a:
dd:6e:8d:07:2e:78:1b:8b:86:b1:ad:df:a1:f8:c5:8d:0a:57:
f9:3a:d8:60:26:89:a4:64:8d:1e:53:a2:b4:bd:2c:27:52:3e:
2e:13:e0:c6:32:40:d6:2e:35:fe:8f:a1:45:08:2d:60:e1:d7:
56:fd:5a:87:ef:dc:b7:17:96:2c:1d:74:15:29:1b:82:62:5a:
d4:88:77:54:3e:18:4a:43:88:3f:c2:2c:35:7f:f7:d3:4c:23:
f8:fe:3d:5a:f7:ce:d9:6e:59:6a:a0:df:f9:18:70:c4:1b:98:
e8:9e:86:a0:c6:b6:bd:24:88:a9:3b:b7:11:36:d2:80:8a:6c:
bc:a5:27:b8:0d:91:73:6f:0c:0c:f6:f7:ef:7c:3e:13:89:a2:
5d:85:6a:c5:82:38:e0:e6:ae:b1:de:c8:1e:7f:a4:05:00:fe:
6e:f1:f1:48:dd:f8:67:2a:e0:8f:fe:ad:cf:17:27:dc:e3:ba:
34:df:0f:30:18:08:b5:58:70:91:a2:16:02:81:4c:7b:ec:8a:
bc:58:8d:d9:b4:61:ff:ee:d9:cc:ea:3a:f4:7b:0c:13:eb:c2:
11:ac:81:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:29 2024 by rpki-client on console-ams.rpki-client.org