Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/J_QQERdgb-nywcwxq1NZD2AGBaI.roa
File: J_QQERdgb-nywcwxq1NZD2AGBaI.roa (raw, json)
Hash identifier: 0O8Pvl9LsbUBdLCmMTp9jzNLnmgrpkCrmGnSsHQSItI=
Subject key identifier: 27:F4:10:11:17:60:6F:E9:F2:C1:CC:31:AB:53:59:0F:60:06:05:A2
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 07E0857F
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/J_QQERdgb-nywcwxq1NZD2AGBaI.roa
Signing time: Sat 01 Jan 2022 15:02:34 +0000
ROA not before: Sat 01 Jan 2022 15:02:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 82.115.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132154751 (0x7e0857f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 1 15:02:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27f4101117606fe9f2c1cc31ab53590f600605a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:75:5d:25:0a:73:ae:9f:fa:10:2c:c4:50:cd:
f0:02:50:97:f9:66:7b:85:8d:0a:32:a5:fb:25:80:
fb:88:53:e9:81:4d:a6:e2:22:ae:8d:ef:78:53:c9:
d7:7e:77:c8:9f:b8:6f:58:44:c7:cf:09:39:70:7a:
fb:02:b2:77:29:66:e5:47:20:16:9d:4a:b9:d4:21:
35:25:e4:eb:04:9d:2b:68:0a:78:b5:62:03:6f:31:
83:de:21:8f:54:05:15:15:50:17:d2:b8:46:00:96:
44:ad:44:73:3e:0e:51:d4:de:4d:e3:f8:59:37:57:
6a:f6:2d:e1:c3:6b:e6:fd:56:69:4b:d3:2d:14:3d:
0b:a3:14:70:17:32:52:9c:7e:ed:31:60:fc:10:65:
ee:3d:db:50:b8:a9:7f:ae:18:0e:02:b3:18:84:c3:
5b:d5:98:25:10:bc:b8:07:c9:9e:60:6b:74:9a:97:
a0:e1:ce:9b:c5:2e:4f:b4:90:b4:da:d7:0e:c5:97:
72:bb:c2:e7:f1:95:ea:b4:e8:6c:53:d4:a6:17:73:
dd:9c:79:77:63:33:73:b5:15:c2:19:a9:e3:5b:86:
e3:72:42:aa:e3:37:a4:51:fa:72:37:df:e3:8a:79:
43:59:6d:44:63:c5:06:95:9e:f8:93:73:2b:30:03:
02:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F4:10:11:17:60:6F:E9:F2:C1:CC:31:AB:53:59:0F:60:06:05:A2
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/J_QQERdgb-nywcwxq1NZD2AGBaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:b8:d0:35:d9:4d:8d:69:3b:a1:98:2d:6c:2f:d9:ac:d3:a6:
a3:95:d9:b4:f6:da:53:a5:98:dc:04:6d:8b:61:f5:15:4e:a6:
f5:6d:cc:ff:49:f7:c3:9b:15:08:cf:6c:46:5a:56:e6:33:00:
37:f6:00:82:b4:e6:5a:aa:40:2a:43:0b:1c:21:ab:f4:42:80:
0b:f3:1c:30:6e:79:f6:5c:c4:8b:6c:f0:44:f5:79:6e:12:a1:
63:5b:e8:f8:b9:d8:49:e2:1c:c9:4d:fd:a8:db:12:11:9b:2a:
84:85:b7:14:7f:e9:cf:3d:a7:84:9a:f4:94:40:28:de:b1:ed:
e2:1b:8d:bf:42:bd:40:03:18:b4:41:31:9d:77:fe:95:49:5f:
79:56:f4:c8:63:61:10:93:e5:bd:09:22:9d:51:e4:cd:25:94:
c1:bd:81:93:5a:97:97:73:8c:d0:a8:8c:c0:e8:53:8d:aa:a6:
ca:ca:00:35:b2:c1:9a:4e:67:10:49:fb:2d:4e:ff:ab:b9:ec:
57:05:58:d4:48:49:65:f3:6e:29:cf:49:f3:d9:fb:d3:aa:c2:
32:92:d3:b1:f9:64:b1:90:a6:66:e9:9e:ed:96:f7:6c:c8:97:
bf:fc:ae:00:b2:45:9c:b8:3d:f3:aa:6e:80:cc:5f:af:9f:71:
ad:64:f3:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org