Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/JGFbUrqDVlr547PUEhvfTmrQObw.roa
File: JGFbUrqDVlr547PUEhvfTmrQObw.roa (raw, json)
Hash identifier: dygA6KpPy7hotvllbFakQwCbKzyMaKaSomDNzsIXC0A=
Subject key identifier: 24:61:5B:52:BA:83:56:5A:F9:E3:B3:D4:12:1B:DF:4E:6A:D0:39:BC
Certificate issuer: /CN=97893182b16718983bc008c8d087f8ddca3d8614
Certificate serial: 0183F07264D49F9978F74D191BE81B880650
Authority key identifier: 97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/JGFbUrqDVlr547PUEhvfTmrQObw.roa
Signing time: Wed 19 Oct 2022 13:32:52 +0000
ROA not before: Wed 19 Oct 2022 13:32:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198018
IP address blocks: 185.177.131.0/24 maxlen: 24
185.177.129.0/24 maxlen: 24
194.153.186.0/24 maxlen: 24
2a0b:1306:7::/48 maxlen: 48
2a0b:1301::/34 maxlen: 34
2a0b:1301:4000::/34 maxlen: 34
2a0b:1306:2::/48 maxlen: 48
2a0b:1306:1::/48 maxlen: 48
2a0b:1306:c::/48 maxlen: 48
2a0b:1301:8000::/48 maxlen: 48
2a0b:1301:8001::/48 maxlen: 48
2a0b:1306:8::/48 maxlen: 48
2a0b:1306:4::/48 maxlen: 48
2a0b:1300::/34 maxlen: 34
2a0b:1306:6::/48 maxlen: 48
2a0b:1300:8000::/48 maxlen: 48
2a0b:1306::/48 maxlen: 48
2a0b:1306:400::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:72:64:d4:9f:99:78:f7:4d:19:1b:e8:1b:88:06:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97893182b16718983bc008c8d087f8ddca3d8614
Validity
Not Before: Oct 19 13:32:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24615b52ba83565af9e3b3d4121bdf4e6ad039bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:64:e4:a9:01:86:df:0e:9a:53:bc:e4:e2:44:
8f:ea:80:50:50:55:08:fb:78:5b:50:00:32:33:83:
81:15:ac:b3:2b:ec:59:4c:b6:50:da:b0:8b:ee:e4:
50:54:71:e1:2c:15:37:46:71:c1:7e:ae:b7:b6:2c:
f3:71:91:d2:95:23:47:de:2b:c9:8c:91:35:e1:80:
e2:db:2f:52:20:0e:30:36:f8:05:2a:6d:87:47:a5:
a0:b3:52:fa:4d:47:ba:c0:b4:fb:64:c9:ab:ca:c0:
2e:e8:a0:b8:2b:69:bd:a3:86:75:00:79:c8:21:d1:
e2:23:c5:bb:fe:ec:ef:51:65:7c:51:58:b5:fe:9e:
d5:f9:62:d2:4d:c5:72:26:fe:59:29:b1:4d:bc:b9:
d1:83:4d:71:75:52:15:9c:39:5a:5f:c4:3d:5b:97:
0c:76:ae:ac:df:69:01:70:0c:d7:e3:a5:6b:16:3a:
72:09:3c:31:03:4a:c1:10:d7:27:e0:dc:3f:81:c9:
61:ca:61:1d:b9:95:e2:f9:f6:ab:ad:81:96:c3:2b:
06:cc:4a:d8:34:c9:ba:cd:a8:6a:8d:77:70:da:17:
a2:d7:1e:a2:bd:42:17:8f:8c:fb:f5:e5:23:a4:86:
83:8f:c9:09:62:60:e6:0b:cd:7c:c2:45:11:f8:8c:
d4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:61:5B:52:BA:83:56:5A:F9:E3:B3:D4:12:1B:DF:4E:6A:D0:39:BC
X509v3 Authority Key Identifier:
keyid:97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/JGFbUrqDVlr547PUEhvfTmrQObw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/l4kxgrFnGJg7wAjI0If43co9hhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.129.0/24
185.177.131.0/24
194.153.186.0/24
IPv6:
2a0b:1300::/34
2a0b:1300:8000::/48
2a0b:1301::-2a0b:1301:8001:ffff:ffff:ffff:ffff:ffff
2a0b:1306::-2a0b:1306:2:ffff:ffff:ffff:ffff:ffff
2a0b:1306:4::/48
2a0b:1306:6::-2a0b:1306:8:ffff:ffff:ffff:ffff:ffff
2a0b:1306:c::/48
2a0b:1306:400::/48
Signature Algorithm: sha256WithRSAEncryption
89:cb:e0:92:26:cd:25:05:6b:a4:cc:1a:33:c0:20:24:3e:79:
9a:7b:68:a7:01:0b:61:5a:e8:0b:6e:f8:87:f2:54:64:9e:04:
a6:37:19:a9:60:c9:ae:b2:94:0c:2f:7e:f3:1e:30:4c:b2:f1:
16:7b:7b:fd:dd:5a:fb:07:29:65:c5:c0:2e:b2:07:f3:56:ab:
c1:ad:b2:45:e5:3c:fe:e6:62:06:82:0e:3b:8f:81:fd:8b:13:
4d:1c:b1:38:94:33:3e:a8:bf:3d:80:27:6f:bb:72:6b:ac:94:
37:cb:69:60:01:68:0b:e4:b5:10:a8:b6:94:fb:ee:9b:e3:40:
17:f9:3e:ac:25:4a:05:9e:3a:ab:09:73:5a:bf:ed:91:a7:54:
ef:84:f3:8e:ee:87:4d:a0:88:49:27:90:97:15:84:55:4e:9d:
50:56:45:2d:31:3f:f0:d8:b9:c1:5b:07:2e:04:9f:ae:45:17:
34:69:cc:37:72:9d:6b:64:c5:12:1e:65:e0:32:00:0b:68:21:
da:85:13:62:a9:4c:c2:bf:4b:14:3a:91:1b:ba:b6:33:be:f3:
6f:0a:eb:6d:0f:38:d2:32:18:0e:99:a2:88:7d:7c:f3:f6:f4:
53:e3:16:16:08:cb:0d:80:89:28:ff:9a:08:28:32:be:c2:4c:
94:66:3a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:38 2025 by rpki-client