Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/JqRguECV2g09Fj0asBD3tqb0dhE.roa
File: JqRguECV2g09Fj0asBD3tqb0dhE.roa (raw, json)
Hash identifier: tW6Bw4hMJ+AH6Tn25hn9m96wIANlq02f3TtkDTD43ig=
Subject key identifier: 26:A4:60:B8:40:95:DA:0D:3D:16:3D:1A:B0:10:F7:B6:A6:F4:76:11
Certificate issuer: /CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Certificate serial: 0E808E95
Authority key identifier: 5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/JqRguECV2g09Fj0asBD3tqb0dhE.roa
Signing time: Sat 01 Jan 2022 12:54:33 +0000
ROA not before: Sat 01 Jan 2022 12:54:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44901
IP address blocks: 185.196.101.0/24 maxlen: 24
185.196.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243306133 (0xe808e95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Validity
Not Before: Jan 1 12:54:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26a460b84095da0d3d163d1ab010f7b6a6f47611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:55:0a:0c:0d:f9:c6:ac:88:53:f6:0e:56:d7:
03:ef:44:2d:11:f4:df:e7:33:4d:d5:63:ed:ad:38:
07:c1:6f:2f:02:4a:54:1e:a7:58:c2:fd:b9:e3:e5:
23:a0:ab:b9:55:cf:17:63:65:78:6d:35:f5:17:ef:
c2:b4:11:67:99:82:d7:72:64:7f:36:8e:d6:06:7d:
5b:78:1e:2e:1f:33:3e:d4:f5:21:08:cb:c3:3e:2a:
06:59:3a:fe:28:66:81:b1:bc:c8:87:75:a7:37:a7:
06:9a:0d:95:ad:23:6b:01:10:98:84:66:48:7b:92:
69:89:ce:14:a1:36:0f:ad:cd:aa:1d:2a:96:5f:86:
d4:0f:26:76:92:bb:6b:32:93:27:4e:a4:1e:e3:8e:
2c:9d:ca:db:2e:85:c7:bc:d4:f3:5a:57:41:11:bf:
83:28:fa:95:f9:9a:b0:f6:1c:ca:57:d5:20:8e:59:
91:79:b7:f0:8e:be:99:3d:94:87:4d:0b:68:0d:99:
b9:b0:83:cf:a9:ea:54:de:84:a6:e4:a6:40:88:3c:
d2:60:b4:f2:b0:cc:9b:d6:e0:c6:ea:ab:dc:89:92:
2a:7b:2d:d1:c4:47:60:51:d4:5a:aa:3f:c5:08:92:
2b:02:36:71:3a:91:e8:9d:92:04:a8:b8:c9:b1:f0:
ee:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A4:60:B8:40:95:DA:0D:3D:16:3D:1A:B0:10:F7:B6:A6:F4:76:11
X509v3 Authority Key Identifier:
keyid:5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/JqRguECV2g09Fj0asBD3tqb0dhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/XOGq4Mk60EtymAgraL9qVPpovPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.101.0/24
185.196.103.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:d7:3a:f1:07:f5:8a:80:b2:dc:45:ae:ea:b2:13:a5:2d:ca:
d7:c1:ad:80:ae:3a:fc:ab:c2:83:2f:56:54:80:fa:55:64:34:
29:c1:15:16:cb:16:a5:55:21:b5:5b:bc:19:db:18:a2:94:e7:
78:d3:6a:8c:92:93:9f:a5:77:6a:85:0b:10:2e:19:cb:71:96:
7f:59:f6:81:97:c8:07:2a:2e:fc:25:9c:bb:01:d7:37:bc:4a:
91:f4:e2:9c:aa:3d:e9:6b:1d:fc:6e:a4:4d:3c:f7:d8:24:a4:
2c:8a:38:6a:97:1d:c1:98:84:2f:f9:0a:03:99:f3:dc:1c:a1:
ff:a5:23:ad:44:7a:b0:51:49:49:a5:5d:ef:97:a9:f0:80:7b:
6e:51:99:29:0d:da:ad:d2:0f:f7:87:9d:8a:6f:89:a4:01:1d:
92:ca:a2:32:69:4d:13:e6:87:5f:6b:a3:36:ff:c2:c6:41:4e:
50:22:9f:6e:00:7b:b4:8e:eb:48:88:c0:32:81:71:f6:e1:ba:
46:d5:72:06:08:0c:e1:38:96:2b:c1:b7:1e:d6:3f:3a:b0:f0:
89:99:20:c5:6c:12:23:7b:ec:fc:5d:f0:26:27:10:7c:ab:b5:
a6:65:5a:95:92:4b:f8:d0:f9:86:5f:03:07:e2:ae:fc:e0:9d:
29:d4:15:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:59 2024 by rpki-client on console-ams.rpki-client.org