Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/JL_B9XVnfsI4DVcuWcEP4qO2drQ.roa
File: JL_B9XVnfsI4DVcuWcEP4qO2drQ.roa (raw, json)
Hash identifier: IYmbHbqXgwSLEy1Uyw0bvbgiosh1+b4iCnnObRt4Sfk=
Subject key identifier: 24:BF:C1:F5:75:67:7E:C2:38:0D:57:2E:59:C1:0F:E2:A3:B6:76:B4
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 01853D9B6ECCE4C14A54E126369B749BF9D0
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/JL_B9XVnfsI4DVcuWcEP4qO2drQ.roa
Signing time: Fri 23 Dec 2022 06:11:14 +0000
ROA not before: Fri 23 Dec 2022 06:11:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10557
IP address blocks: 185.131.54.0/24 maxlen: 24
185.131.53.0/24 maxlen: 24
185.131.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3d:9b:6e:cc:e4:c1:4a:54:e1:26:36:9b:74:9b:f9:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Dec 23 06:11:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24bfc1f575677ec2380d572e59c10fe2a3b676b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0f:e3:73:5d:12:0e:9f:17:ea:19:80:11:f2:
fb:3b:e5:4f:2f:e3:d7:a4:00:a9:1b:0d:d9:27:97:
4a:5c:51:ef:44:4b:0a:5d:2c:1f:e0:1b:1c:33:ed:
05:81:db:83:7e:da:bd:f7:c1:92:31:a6:b9:21:4f:
1e:f7:57:4c:b7:89:0d:ad:09:19:85:f4:fa:9b:75:
06:7f:f6:18:8d:ce:82:90:ec:aa:5c:9a:c2:d9:b0:
bb:6f:90:68:d1:8f:4b:02:ed:c2:4f:37:c7:be:60:
58:10:cd:3b:17:c3:3d:79:83:82:f7:f8:24:c0:4c:
72:e2:a4:7f:16:7b:fa:44:66:6f:85:11:19:17:41:
be:7e:3b:94:ac:b7:b7:18:1d:04:d7:d2:0f:e9:b6:
65:58:fe:0f:3d:13:d6:d7:b5:a3:73:04:73:7d:28:
c2:2e:3c:f3:36:9a:32:e7:75:f1:28:a5:e4:f9:73:
bb:3b:43:7d:f1:ee:8c:73:18:74:f0:88:fd:22:b0:
ca:4c:1c:1b:83:50:50:45:c5:02:cf:01:03:3d:7c:
38:b5:4f:6e:e1:da:05:8e:39:99:bc:4b:d4:9b:5f:
52:99:fd:c6:fd:4b:ae:95:c9:35:62:16:10:0e:b1:
f9:7e:55:5c:89:08:71:28:4d:24:53:b1:31:57:3b:
82:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BF:C1:F5:75:67:7E:C2:38:0D:57:2E:59:C1:0F:E2:A3:B6:76:B4
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/JL_B9XVnfsI4DVcuWcEP4qO2drQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.53.0-185.131.55.255
Signature Algorithm: sha256WithRSAEncryption
87:ce:57:b6:2e:59:e5:9a:01:7c:82:ee:01:bc:71:f8:ab:1d:
0c:9a:42:3a:5b:bb:a3:91:8d:36:30:fc:d9:48:47:2f:b3:08:
61:77:c0:85:8f:c4:bb:1b:35:29:09:62:b6:37:59:20:43:74:
b7:85:94:18:05:f2:25:4e:4a:e9:07:2f:77:c5:e7:a1:2c:65:
87:ad:e8:e4:c7:4c:d1:1d:12:e5:5b:28:75:05:4e:e5:bb:16:
58:0f:6d:79:91:fa:33:da:33:61:08:3d:d7:49:6e:dd:12:0f:
82:c3:9a:45:7a:4b:81:79:0b:23:c5:52:6c:90:e6:91:67:e9:
72:da:d6:ec:10:18:c7:ab:22:71:50:3b:7f:b1:79:8b:02:55:
3d:c5:0b:00:87:a3:7f:27:7a:27:cd:d1:13:b6:c7:6f:35:2e:
d1:7e:bd:3d:5b:c0:1b:b8:dd:e6:b5:3c:ab:16:4a:af:c8:52:
2d:56:a0:93:2c:6d:9b:95:7d:98:fe:ac:4c:3b:6c:e1:37:16:
db:1c:fb:9f:2a:24:00:74:c2:dd:5d:b5:1c:c6:12:75:71:ad:
bd:a6:76:18:98:9d:00:9e:78:2a:f6:14:0f:e0:6d:88:80:80:
63:02:f8:73:0f:6f:db:03:99:86:50:70:58:3f:69:de:e8:79:
a7:63:6d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org