Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/2a591c-3c4a-4288-be91-c39adb98f429/1/jrUheEijinJNqRas54bpoicMRsI.roa
File: jrUheEijinJNqRas54bpoicMRsI.roa (raw, json)
Hash identifier: UE3LJADgYx0u+dcPNNPVyAfoIKfxbr+166QUNy2e87Y=
Subject key identifier: 8E:B5:21:78:48:A3:8A:72:4D:A9:16:AC:E7:86:E9:A2:27:0C:46:C2
Certificate issuer: /CN=ec6d47b47e05b13d058b1cb42529a7c1866dcdf2
Certificate serial: 017C445F
Authority key identifier: EC:6D:47:B4:7E:05:B1:3D:05:8B:1C:B4:25:29:A7:C1:86:6D:CD:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7G1HtH4FsT0Fixy0JSmnwYZtzfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/2a591c-3c4a-4288-be91-c39adb98f429/1/jrUheEijinJNqRas54bpoicMRsI.roa
Signing time: Sat 01 Jan 2022 15:58:29 +0000
ROA not before: Sat 01 Jan 2022 15:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50624
IP address blocks: 185.23.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24921183 (0x17c445f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6d47b47e05b13d058b1cb42529a7c1866dcdf2
Validity
Not Before: Jan 1 15:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eb5217848a38a724da916ace786e9a2270c46c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4c:45:f8:4a:94:fe:61:95:0b:b1:a5:ba:76:
50:a4:f0:3d:b0:dd:60:d2:38:c3:7e:f7:d3:10:22:
11:c4:80:fe:3a:2d:27:60:bf:03:a8:e6:04:fe:94:
7c:59:7b:56:b6:2f:5a:39:4d:f6:d2:08:39:3b:39:
4d:8b:b4:73:7f:3e:e8:3f:cb:44:b7:a2:76:64:fc:
57:2c:01:4d:30:19:22:58:f5:5c:07:ba:40:be:0b:
e5:46:c0:2e:05:21:0e:6d:fe:52:b1:b3:8a:c2:48:
a5:0b:49:d5:8e:92:9d:4f:55:1f:b9:2e:5c:a7:48:
5e:49:80:63:93:58:a8:b8:ad:21:87:29:9e:6c:ed:
c1:b3:eb:f4:48:78:2e:cb:02:dc:99:62:34:5f:0e:
2f:44:d5:4c:01:ac:7d:ce:3a:d0:69:48:f0:30:cf:
f9:86:a0:7a:d1:52:f5:6d:d4:f8:3b:6c:d3:9d:4f:
9e:1e:6f:e5:55:51:eb:db:a8:94:7c:35:e3:bd:6d:
2d:05:85:15:54:fd:de:49:c4:d0:2f:49:f8:4e:62:
64:20:8f:c1:4a:4b:40:6b:16:73:c4:bf:2a:41:6f:
2f:e4:b8:19:a0:58:7c:c2:99:81:a8:f2:f7:2b:f5:
e1:ae:0f:a3:e9:3f:70:ea:bf:77:3c:79:a0:ab:39:
92:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B5:21:78:48:A3:8A:72:4D:A9:16:AC:E7:86:E9:A2:27:0C:46:C2
X509v3 Authority Key Identifier:
keyid:EC:6D:47:B4:7E:05:B1:3D:05:8B:1C:B4:25:29:A7:C1:86:6D:CD:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7G1HtH4FsT0Fixy0JSmnwYZtzfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/2a591c-3c4a-4288-be91-c39adb98f429/1/jrUheEijinJNqRas54bpoicMRsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/2a591c-3c4a-4288-be91-c39adb98f429/1/7G1HtH4FsT0Fixy0JSmnwYZtzfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.188.0/24
Signature Algorithm: sha256WithRSAEncryption
91:96:b7:db:54:67:0a:8c:8e:51:d6:e7:bd:68:c2:53:3a:71:
45:7a:1b:92:d2:35:97:62:98:5e:9e:ae:b6:00:ae:46:2f:bd:
cd:8a:8d:ad:05:d9:de:6a:93:41:92:a7:bc:9d:61:7e:b4:5a:
9c:a9:c1:88:5a:0a:a8:b5:5f:5b:f7:85:11:e7:05:fd:7c:75:
ad:5d:a0:bf:2c:c2:61:0c:2d:0c:0b:3c:28:65:66:61:d8:bd:
2a:d2:17:13:de:50:cf:aa:03:73:1f:b8:50:ad:af:8f:28:13:
82:70:ca:0c:c0:0e:b2:f0:1e:be:81:cb:71:41:8a:78:f5:84:
e9:0f:c6:24:5d:bd:90:f5:5f:59:47:38:48:f1:2c:7f:15:28:
66:27:29:43:4d:fa:36:6a:53:43:1a:ee:71:78:4c:47:09:12:
6d:f8:b0:96:07:1c:ad:22:94:a8:f1:a2:52:9b:42:71:2b:10:
04:3f:c2:e0:de:a0:e3:54:e5:c1:b0:3c:b2:09:9d:e1:1f:2e:
68:cd:19:f8:6e:86:44:23:ff:a6:0e:b1:74:97:ef:96:74:09:
1c:79:3a:80:f1:49:40:f9:22:90:9a:60:ea:c1:3c:88:6d:95:
98:df:c8:fc:5e:16:91:5e:a7:84:ce:de:bc:a2:c0:82:14:34:
ba:d4:f3:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:04 2024 by rpki-client on console-ams.rpki-client.org