Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/JNksMJJ3YDVxLdH4FJbOgO5xgvo.roa
File: JNksMJJ3YDVxLdH4FJbOgO5xgvo.roa (raw, json)
Hash identifier: HGiEZYQNi4/itJE+7Z5oMYIqvxcVwkUJyV64BRE/+gA=
Subject key identifier: 24:D9:2C:30:92:77:60:35:71:2D:D1:F8:14:96:CE:80:EE:71:82:FA
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42A2EFBC
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/JNksMJJ3YDVxLdH4FJbOgO5xgvo.roa
Signing time: Sat 01 Jan 2022 06:05:02 +0000
ROA not before: Sat 01 Jan 2022 06:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35177
IP address blocks: 178.35.192.0/19 maxlen: 19
85.173.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117974460 (0x42a2efbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24d92c3092776035712dd1f81496ce80ee7182fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e4:45:39:8d:5f:da:3a:fd:ce:17:2a:a3:5e:
dc:2a:24:e7:35:b6:85:65:93:11:a8:c1:4c:e9:91:
6a:26:ec:f9:73:c7:31:d5:dd:14:17:3d:c5:5b:ba:
35:b7:ac:b1:68:5a:6f:0e:59:01:7e:a1:7c:3f:4c:
ae:79:41:b1:e9:f6:1d:68:7b:d9:c9:d1:f1:8b:bc:
61:e0:a6:18:58:55:b8:f5:dc:c1:e1:6f:0c:20:57:
3c:3b:e5:4c:db:18:0b:a9:b4:cf:77:8e:6a:b4:22:
45:7e:f3:56:a1:4b:b9:1a:4b:f1:5a:10:b2:a8:59:
05:4b:c3:02:6d:e8:4e:00:52:6b:6b:41:ac:e5:ce:
a9:bd:fa:db:67:c9:c2:ca:39:e8:cc:4d:62:a6:5c:
f8:a5:23:a7:be:0c:3f:ac:29:57:8e:10:dd:58:10:
3f:dd:33:e9:65:44:8c:b7:a8:3b:c3:15:6b:99:02:
28:fe:18:8d:83:23:cb:cc:1a:0a:89:95:5d:35:d3:
c1:dd:23:60:f1:6b:84:89:3d:70:90:fb:49:7f:62:
fd:a6:4e:8d:d4:96:26:3b:bb:d7:00:4a:50:e2:c7:
6d:ea:b0:62:7b:25:9a:d4:67:62:09:8f:13:2e:56:
70:e1:06:11:47:f7:36:14:b7:ea:48:79:7d:08:23:
fa:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D9:2C:30:92:77:60:35:71:2D:D1:F8:14:96:CE:80:EE:71:82:FA
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/JNksMJJ3YDVxLdH4FJbOgO5xgvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.173.136.0/21
178.35.192.0/19
Signature Algorithm: sha256WithRSAEncryption
4f:c2:21:63:a9:10:1e:ec:bf:59:c8:f0:d6:95:fa:b7:18:48:
33:1a:e3:21:29:e1:5f:bc:a9:e0:37:da:16:ee:67:ec:ed:7d:
30:b6:3b:97:7b:34:4b:d9:5f:cf:9b:ee:f0:ea:89:30:d5:d9:
3e:16:54:b6:60:eb:c0:b6:b2:a8:68:f4:b6:6b:ff:5f:69:fd:
7f:80:63:c0:7b:b7:90:49:8a:cf:d6:85:24:52:b3:f7:d0:3b:
64:ce:43:60:f1:6d:72:69:70:69:60:01:4d:fc:ec:30:f3:c1:
75:61:18:4c:dc:0b:3f:57:25:1a:5f:00:5f:0d:d8:11:72:48:
11:5d:c2:ef:c0:35:fc:92:b7:7e:40:47:60:aa:ff:6d:a3:1b:
1f:59:1b:d9:a0:d7:cc:44:51:e8:37:f7:bb:54:b8:38:6d:22:
d9:f2:5f:ef:04:ca:ae:2b:94:52:d4:36:5b:14:47:4a:8e:5f:
f7:6e:f1:ee:17:ba:bd:c7:da:af:4c:f5:6d:1c:05:bc:52:27:
4c:3a:c9:43:35:73:79:b1:0a:14:fe:ec:a9:63:c2:ff:c2:56:
79:e1:6d:85:e2:4c:70:98:00:e7:7b:63:5f:0e:8e:7d:ed:d7:
01:7d:92:17:c1:4a:df:75:2d:16:8f:4b:dc:44:a6:57:e3:5a:
1a:41:cf:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org