Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/JOCAnl81dmqDypBJHAbWwktyFfo.roa
File: JOCAnl81dmqDypBJHAbWwktyFfo.roa (raw, json)
Hash identifier: DpS+C5u4qJhVxEW/LpP9MJdbHZm/RLpejuyAAJmrKm4=
Subject key identifier: 24:E0:80:9E:5F:35:76:6A:83:CA:90:49:1C:06:D6:C2:4B:72:15:FA
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 018B287062AF3E93D820383EC6C77A16835D
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/JOCAnl81dmqDypBJHAbWwktyFfo.roa
Signing time: Fri 13 Oct 2023 09:48:55 +0000
ROA not before: Fri 13 Oct 2023 09:48:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.23.6.0/24 maxlen: 24
45.134.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:70:62:af:3e:93:d8:20:38:3e:c6:c7:7a:16:83:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Oct 13 09:48:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24e0809e5f35766a83ca90491c06d6c24b7215fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b6:49:85:37:a0:a3:37:6d:49:81:48:f0:7e:
4a:76:74:cf:cf:21:10:e0:67:a9:0f:cb:3e:12:0f:
aa:2d:42:36:d4:a4:eb:c8:57:97:68:80:63:3a:91:
1b:c1:1c:61:56:87:e3:c4:e7:d3:78:5d:b7:cd:5b:
f6:8f:f7:7a:cd:58:ee:9c:bc:e7:c2:ba:8c:2c:86:
96:02:f2:c9:63:28:a6:6c:79:32:d3:44:b0:2c:0f:
ce:67:99:c2:ae:02:00:27:26:a7:e0:dd:a8:73:98:
2d:7e:0d:8a:a1:13:a0:91:1e:e9:f1:f4:6a:7d:97:
b4:7d:26:ff:ed:07:80:16:a2:53:09:b0:73:88:f0:
a7:50:f5:c5:d7:4e:29:9d:9f:23:27:07:df:88:00:
8a:ae:f1:b3:d6:d2:74:c8:63:0d:55:e4:92:ba:dd:
67:63:b6:48:c6:39:f7:e0:9e:ad:75:bc:5a:42:f9:
58:34:e6:dd:79:85:49:ae:46:46:03:67:31:6f:b2:
80:6d:cc:e1:7e:5b:63:47:93:30:1f:e0:e2:31:d7:
6b:43:c3:6a:16:46:fc:83:bd:3f:72:92:0b:9a:a8:
d0:55:c3:ac:31:b6:d2:58:12:27:f3:f4:55:10:36:
e6:eb:4d:5f:1b:26:d4:f8:73:85:6c:dd:b5:e3:4e:
33:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E0:80:9E:5F:35:76:6A:83:CA:90:49:1C:06:D6:C2:4B:72:15:FA
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/JOCAnl81dmqDypBJHAbWwktyFfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.9.0/24
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:16:71:10:a7:da:f1:75:dc:11:c6:ca:a4:c7:49:8b:ac:30:
c0:f1:ab:8b:7b:84:53:84:aa:b0:c3:e6:55:bb:03:57:83:65:
03:89:c3:53:f7:df:79:9f:c3:c3:86:86:42:22:b6:d7:db:a2:
a5:85:51:72:b3:1e:91:d4:eb:ae:72:47:b4:69:b3:fa:22:fe:
59:67:1b:29:df:7e:52:03:5b:e4:03:5c:fd:92:82:6a:54:d6:
83:00:43:c3:ef:d3:f5:9d:96:c9:db:15:c8:f9:66:f3:67:79:
61:04:f6:3f:4e:bb:23:b4:54:98:65:2a:2f:46:0d:f9:9b:4f:
7e:b5:74:0b:23:eb:30:c1:49:fc:81:6c:fd:51:0a:99:a1:32:
b0:8b:e5:26:12:b0:21:72:40:a7:1c:3d:17:a8:fb:56:d7:a4:
0b:10:c0:fe:68:70:d5:53:5a:fb:0e:32:93:51:f6:11:88:d5:
56:3b:bc:39:48:f6:50:cf:45:fb:58:15:21:30:2f:1d:42:90:
e4:2f:59:57:37:1e:bf:84:c9:13:34:d6:88:d8:17:8c:75:d5:
fd:0d:c3:16:4d:e1:ee:31:b2:0b:2d:42:64:79:34:46:0d:2f:
a4:64:5d:46:f1:bf:b5:56:54:68:d5:24:b9:84:ed:d4:60:6e:
9c:27:6f:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:23 2025 by rpki-client