Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/JjbKIWAFGdDuyrdwx6yiN7JK3lc.roa
File: JjbKIWAFGdDuyrdwx6yiN7JK3lc.roa (raw, json)
Hash identifier: 8KWlwgEA37BZxNFv8f1+DeaB4B+HWBXD22FkkhBp2bk=
Subject key identifier: 26:36:CA:21:60:05:19:D0:EE:CA:B7:70:C7:AC:A2:37:B2:4A:DE:57
Certificate issuer: /CN=35135b81b6c1edd2f6f5bc1c608a5fc9fe926474
Certificate serial: 109DD3C6
Authority key identifier: 35:13:5B:81:B6:C1:ED:D2:F6:F5:BC:1C:60:8A:5F:C9:FE:92:64:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRNbgbbB7dL29bwcYIpfyf6SZHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/JjbKIWAFGdDuyrdwx6yiN7JK3lc.roa
Signing time: Sat 01 Jan 2022 13:06:15 +0000
ROA not before: Sat 01 Jan 2022 13:06:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57366
IP address blocks: 178.215.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278778822 (0x109dd3c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35135b81b6c1edd2f6f5bc1c608a5fc9fe926474
Validity
Not Before: Jan 1 13:06:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2636ca21600519d0eecab770c7aca237b24ade57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:76:ab:89:f2:96:78:f1:d1:fe:84:d4:71:
8d:df:37:c1:0b:58:b2:ba:75:34:a2:dc:bb:07:57:
7a:c7:59:d1:f4:63:86:49:e0:9a:ff:08:59:45:f5:
95:e4:23:2d:4e:3f:e3:12:29:1f:10:80:f2:be:c4:
62:6f:83:f1:8b:6d:da:d4:bd:bf:4e:58:06:b9:fd:
3d:89:34:7a:a6:c2:bc:13:43:8c:e1:1d:fb:a2:4f:
3b:35:64:e5:84:5e:41:9d:a3:38:2a:14:61:83:70:
0b:0e:e3:fd:83:9c:9f:88:ea:44:82:75:19:53:0b:
65:07:32:fe:eb:be:50:3d:0f:13:7a:1f:38:66:41:
52:3e:42:78:73:52:70:71:db:6c:fa:ad:4a:a3:40:
4e:ae:c7:1f:b1:0f:3e:0c:b8:98:12:f3:19:8d:c2:
47:41:cb:ec:7a:e5:58:13:b6:b8:86:c4:81:60:5b:
dc:12:3c:14:8a:ce:4a:e4:ad:44:bb:6f:f2:59:14:
73:f3:c2:3e:d7:9d:d7:ae:56:86:20:ac:ac:4b:bc:
8a:97:9b:98:d3:b0:36:85:55:64:15:9d:b3:31:b6:
26:d6:61:0e:ea:4d:06:ea:c2:d5:49:5b:d6:79:4e:
3d:7d:a3:3a:92:0d:01:b6:4f:33:8c:4d:dd:aa:f7:
98:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:36:CA:21:60:05:19:D0:EE:CA:B7:70:C7:AC:A2:37:B2:4A:DE:57
X509v3 Authority Key Identifier:
keyid:35:13:5B:81:B6:C1:ED:D2:F6:F5:BC:1C:60:8A:5F:C9:FE:92:64:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRNbgbbB7dL29bwcYIpfyf6SZHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/JjbKIWAFGdDuyrdwx6yiN7JK3lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d0a0a0-d25a-4746-9139-a71456df9997/1/NRNbgbbB7dL29bwcYIpfyf6SZHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.215.3.0/24
Signature Algorithm: sha256WithRSAEncryption
71:99:8e:6a:b3:01:79:0d:1a:bd:95:bf:17:cc:76:40:63:2d:
b1:2e:22:ab:07:12:5a:7c:8a:cc:d7:2c:de:c0:1e:c8:f7:9f:
c6:ad:64:a5:78:e6:bc:e9:16:02:25:b0:ad:9f:fc:17:ae:4f:
4e:bc:0f:68:77:c4:3b:80:e0:ef:ec:97:24:8c:5d:c9:cd:3a:
ca:7c:1b:da:18:6b:aa:2d:c5:7d:06:8f:6a:60:47:84:f4:74:
78:fc:79:05:ab:a5:0c:a8:0e:eb:01:93:b3:f4:03:07:fc:29:
93:ac:ec:c6:de:78:a4:8e:c2:d9:c2:76:ff:c1:ca:4d:cc:62:
8c:f1:88:85:66:56:02:85:91:e3:b8:d6:01:39:85:fb:b6:c4:
49:2b:e2:4c:28:c8:5d:3e:8e:89:b5:1f:4c:cf:2e:71:4c:aa:
33:4b:92:92:68:24:7c:17:24:05:1a:fe:02:92:81:58:2e:44:
97:40:ba:2c:7b:c6:b9:48:1e:70:9a:f7:36:36:69:e9:86:01:
c7:eb:f8:45:63:57:ce:78:93:78:ec:1a:24:66:5d:53:aa:61:
4b:2b:3c:34:ce:8c:8a:9c:e2:7f:a4:71:1b:3a:18:1b:dc:af:
51:39:3c:37:4e:9d:88:a2:76:73:37:91:56:26:b3:d3:c1:aa:
56:14:5d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:54 2024 by rpki-client on console-ams.rpki-client.org