Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/jt-NaCWPUWFgi4J61qGSzd5T_eY.roa
File: jt-NaCWPUWFgi4J61qGSzd5T_eY.roa (raw, json)
Hash identifier: yjBMZxFyobRCZzm/BO0JwYGlcU1K2eSJvc5K81/U2q8=
Subject key identifier: 8E:DF:8D:68:25:8F:51:61:60:8B:82:7A:D6:A1:92:CD:DE:53:FD:E6
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33E2D7E9
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/jt-NaCWPUWFgi4J61qGSzd5T_eY.roa
Signing time: Sat 01 Jan 2022 04:55:35 +0000
ROA not before: Sat 01 Jan 2022 04:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205782
IP address blocks: 194.27.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870504425 (0x33e2d7e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8edf8d68258f5161608b827ad6a192cdde53fde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:98:b8:14:75:ab:de:47:25:c3:aa:4c:c9:b2:
3e:59:3c:a4:0b:a0:7f:d4:d9:98:bf:d3:2b:97:73:
0f:7a:f1:cd:e1:f3:53:b2:d4:69:21:50:e3:c5:75:
0e:13:0d:93:07:78:7f:83:a7:24:f2:ba:34:14:93:
0a:5f:26:a1:02:7e:7f:60:a6:22:7a:38:65:c7:15:
19:ed:59:c8:52:4d:89:04:b2:ee:6d:f7:6f:ff:99:
bc:74:89:c1:38:80:7e:bc:51:48:c5:27:97:9d:f0:
02:2e:df:60:e1:c4:0b:69:34:b6:c6:7e:1e:f5:54:
d1:df:52:2f:ce:06:81:4a:c9:d5:d2:d6:25:54:68:
a9:04:0b:cc:39:ef:24:ff:e4:bd:f1:4c:fd:24:2f:
66:97:b2:e8:2c:b4:76:40:f4:ea:27:2e:f5:91:7d:
a6:3d:27:3b:aa:c4:dc:a3:a9:89:d7:48:c8:ee:35:
8d:e4:36:5c:4b:3f:4f:33:43:09:39:41:55:e1:00:
74:85:9f:38:5a:4d:9c:49:09:4d:59:2f:50:3c:93:
3f:0f:56:f4:a5:86:b6:50:7a:4e:49:e5:fb:0e:6d:
bb:1d:43:b1:5c:eb:8f:88:6d:7d:0d:0b:99:f8:e5:
cc:c0:25:fc:17:4d:9c:1a:50:8e:45:9d:77:89:eb:
6a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:DF:8D:68:25:8F:51:61:60:8B:82:7A:D6:A1:92:CD:DE:53:FD:E6
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/jt-NaCWPUWFgi4J61qGSzd5T_eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.27.222.0/24
Signature Algorithm: sha256WithRSAEncryption
40:46:43:5c:06:21:f4:73:32:a8:e9:dc:d2:46:f2:09:e6:bd:
18:13:5c:37:22:1d:f4:f3:c3:47:87:ba:02:ee:1c:4f:0b:57:
9c:3b:81:e1:f2:46:99:40:c4:eb:d9:0c:1b:11:65:54:f2:2c:
95:0a:bd:f6:61:80:09:7d:9c:b3:ba:50:7f:7e:f5:7d:7b:2e:
be:08:29:3b:dc:43:f1:84:d2:46:b8:a8:9f:32:fc:5e:4e:bc:
ac:39:26:fd:55:3b:dd:0b:2c:73:3b:c6:c8:39:54:50:46:2a:
f8:02:46:8a:10:38:28:f8:12:76:ec:fe:8e:51:20:17:78:77:
89:e2:83:ed:85:70:c5:bb:1b:d7:e9:03:62:61:94:d8:91:5c:
47:36:22:ec:26:c7:65:2d:07:58:c6:53:b1:f2:ff:85:00:71:
80:43:99:1d:62:6c:af:ef:4d:cf:1d:e7:5b:af:1b:fd:32:49:
42:4f:06:ea:30:60:fb:40:b2:66:cb:cf:ab:16:79:f5:2d:0e:
b9:15:53:1d:4d:00:f7:89:e1:0c:b2:63:ec:7e:a2:32:a4:b8:
7a:28:f6:f7:8f:f4:ee:35:61:e1:e2:2b:e2:ed:10:fd:80:0e:
7d:a7:7a:e8:d2:af:34:a3:9d:c1:53:29:38:d3:19:e2:d0:c1:
45:f4:3d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org