Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/JQb_nFryWVDDVmkDUiIKrcI9WYE.roa
File: JQb_nFryWVDDVmkDUiIKrcI9WYE.roa (raw, json)
Hash identifier: Qg73+GDaY4vLVgRX3SDICoI+pevYqQDubknb2h8FVrs=
Subject key identifier: 25:06:FF:9C:5A:F2:59:50:C3:56:69:03:52:22:0A:AD:C2:3D:59:81
Certificate issuer: /CN=0620eadb2e1562b4e2e4f480772c36887a777f24
Certificate serial: 0182689135EFF7AE8C5B8049DF6B099EF775
Authority key identifier: 06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/JQb_nFryWVDDVmkDUiIKrcI9WYE.roa
Signing time: Thu 04 Aug 2022 11:15:23 +0000
ROA not before: Thu 04 Aug 2022 11:15:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42910
IP address blocks: 217.195.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:68:91:35:ef:f7:ae:8c:5b:80:49:df:6b:09:9e:f7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0620eadb2e1562b4e2e4f480772c36887a777f24
Validity
Not Before: Aug 4 11:15:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2506ff9c5af25950c356690352220aadc23d5981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1e:9b:02:6f:51:38:7e:d0:d5:fa:9e:c6:83:
51:23:0a:47:0e:a3:9c:f3:7e:25:84:3f:b3:a5:ef:
3f:7f:e9:14:91:c1:f4:52:16:c3:2b:f3:05:44:b0:
0d:78:42:95:f0:06:c4:0d:1b:78:48:37:1f:fe:04:
cf:74:45:01:bc:90:4e:26:d5:1a:c6:e0:f9:e8:29:
8a:f4:83:1e:f0:eb:12:14:da:32:2c:26:b0:c6:a7:
28:57:e9:4c:b1:6f:19:2d:68:2d:61:ed:fe:79:e0:
ef:21:20:cb:00:f7:9b:94:a4:f2:dc:d7:e6:8a:29:
54:40:10:db:bf:2c:47:cc:ce:f8:e6:e5:d6:11:46:
00:be:38:03:c9:a1:a9:fb:d2:69:ba:52:42:7e:5c:
4a:32:cc:e9:4b:d5:d1:81:d8:f8:a6:25:11:32:db:
b3:3a:62:74:4a:75:ef:0a:9d:ad:34:c6:14:d1:97:
46:61:81:dd:e3:59:c0:f3:87:3e:36:f2:86:04:bd:
04:07:96:31:57:fb:58:d1:12:fa:d7:5a:fb:87:7d:
4d:ea:37:f5:da:e3:a2:37:c0:19:42:59:5c:b8:a6:
56:07:54:c0:64:95:2b:e7:93:cc:0a:c9:bd:42:96:
21:67:da:40:f9:25:ec:55:25:ff:41:47:32:41:18:
3f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:06:FF:9C:5A:F2:59:50:C3:56:69:03:52:22:0A:AD:C2:3D:59:81
X509v3 Authority Key Identifier:
keyid:06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/JQb_nFryWVDDVmkDUiIKrcI9WYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.195.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c5:dc:06:6b:7e:64:a3:e3:ff:20:cd:64:72:e2:4f:7a:e3:
4a:e0:a8:16:92:76:54:7e:be:48:63:45:b3:d5:dd:22:24:db:
55:9b:d1:6a:b5:6d:1f:6d:7d:d6:a4:a4:3e:85:3f:84:ac:64:
22:20:cc:33:e9:c2:2e:73:44:e3:cf:16:4d:90:55:fa:18:ee:
86:37:ba:29:aa:56:e4:68:27:ea:c8:b9:01:d1:82:bb:e2:8d:
04:3c:b9:ae:6e:2a:9c:62:a7:9a:e0:ba:33:22:4a:43:8a:17:
2c:75:c6:8d:5d:05:21:10:d9:f4:aa:78:a6:ab:85:20:21:fb:
6f:8a:7b:59:93:9c:96:fc:50:21:20:fd:2a:e1:f2:f9:bc:e3:
23:fc:f3:bc:5c:8e:b9:00:3a:ed:08:31:79:dc:e2:6c:6f:ff:
a4:8f:db:b2:7c:bc:66:be:e5:b2:e7:d0:02:d0:23:4f:d2:e2:
44:66:ef:f0:62:cd:b9:11:3c:3e:5c:35:07:c2:6f:31:16:01:
61:9a:26:b1:3b:97:92:79:59:64:8d:70:4c:82:ce:c8:d1:7c:
b1:4b:66:91:f0:cf:a9:de:69:85:da:f0:9e:92:ac:50:31:83:
4d:4b:50:c7:cf:2e:41:94:f0:43:51:1b:3e:1e:33:3a:e8:f0:
d3:bc:eb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:33 2024 by rpki-client on console-ams.rpki-client.org