Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/JC8P6TZIQVz0V5OwQCP5n5vd0No.roa
File: JC8P6TZIQVz0V5OwQCP5n5vd0No.roa (raw, json)
Hash identifier: zi8P1HUpG6HOJmxmPg2VcsqZsGLY1iq7uAoMCc/+9dE=
Subject key identifier: 24:2F:0F:E9:36:48:41:5C:F4:57:93:B0:40:23:F9:9F:9B:DD:D0:DA
Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Certificate serial: 01827770E3BDED3F1086E84B5D4B654087F8
Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/JC8P6TZIQVz0V5OwQCP5n5vd0No.roa
Signing time: Sun 07 Aug 2022 08:34:23 +0000
ROA not before: Sun 07 Aug 2022 08:34:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211145
IP address blocks: 185.244.177.0/24 maxlen: 24
185.244.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:77:70:e3:bd:ed:3f:10:86:e8:4b:5d:4b:65:40:87:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Validity
Not Before: Aug 7 08:34:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=242f0fe93648415cf45793b04023f99f9bddd0da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:7a:62:1d:6a:3a:24:dc:54:53:7a:e9:0f:
48:88:ff:29:95:96:f8:cf:8a:77:13:ee:e4:b6:be:
40:a3:ad:87:95:e2:71:64:c5:43:db:f8:40:1d:13:
f6:8e:1b:e7:25:a4:22:b9:7b:1e:f8:ac:47:bb:82:
93:95:ea:fe:e3:e3:8a:ea:f8:96:70:bc:2e:9e:9c:
8b:54:64:ca:17:03:82:71:1b:76:35:6d:13:32:d3:
6f:f8:5a:36:43:87:ee:b1:ef:ee:43:b3:c8:48:9e:
57:e6:bb:56:35:25:d2:a1:0c:4d:4d:2e:20:78:33:
4e:d0:df:28:ea:f2:1d:b3:ba:e2:6a:74:9f:27:a8:
76:cf:9a:27:4c:bd:8a:c7:ab:cb:94:54:31:c9:d4:
8c:21:a5:f1:24:85:5d:69:1e:79:be:f7:10:da:50:
a9:54:7d:19:0c:63:74:b6:16:61:22:84:89:16:ff:
8b:2b:54:b6:68:f4:f6:32:5c:08:96:4e:06:2f:4e:
4a:91:af:57:ed:6b:6a:d4:33:ee:63:06:14:5e:1f:
30:fb:32:48:49:8c:0f:d0:ce:c0:c6:22:07:47:e9:
74:1b:fb:19:f0:c7:0f:05:d9:cb:d0:e3:1a:b6:a3:
35:6f:17:5e:1d:3b:24:ac:cb:5e:60:88:db:ff:f3:
9e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:2F:0F:E9:36:48:41:5C:F4:57:93:B0:40:23:F9:9F:9B:DD:D0:DA
X509v3 Authority Key Identifier:
keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/JC8P6TZIQVz0V5OwQCP5n5vd0No.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.176.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:18:9b:19:7c:74:75:c2:29:fd:6c:0d:a0:dc:a9:a7:7a:1a:
af:da:c7:6a:56:81:a6:e7:8c:58:6d:10:b5:d0:3f:8a:da:a2:
33:c5:ce:96:23:a8:88:6a:74:26:e4:f8:31:f0:cf:87:2e:d1:
3e:b5:40:fc:3f:a5:8a:43:89:ff:63:2c:b8:1d:43:18:6f:ab:
66:50:f5:ce:8b:04:10:46:47:8c:73:89:6d:ce:4c:ca:b9:09:
b6:3d:b4:c4:57:99:56:a9:a3:20:66:78:93:1b:6d:8d:61:e7:
92:81:61:b4:74:e0:bb:d0:4b:15:19:68:6d:91:ea:d0:1c:05:
e7:bf:5e:7a:00:54:a6:15:42:a9:08:a8:a8:9c:44:e1:ea:eb:
9c:8d:3c:96:7c:41:79:b4:40:26:51:28:1c:1c:fd:9e:3a:57:
2b:a1:2f:74:c6:f0:a6:a7:ca:40:17:79:57:8d:6c:23:e4:8f:
9d:97:01:73:53:4d:5d:1b:32:83:2e:75:2e:4f:fb:90:e9:44:
d7:f3:04:e7:ae:a1:af:54:df:bf:5e:15:13:aa:ae:70:42:df:
7f:55:d8:21:94:88:dd:41:ad:25:85:df:cd:39:b5:c1:74:30:
9c:d2:0e:b5:a9:f0:64:44:c5:1e:ce:93:2b:82:48:b4:c2:ba:
67:5c:52:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org