Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/Jz0lQL9qsRkTs_UkCWHRIpNdzKc.roa
File: Jz0lQL9qsRkTs_UkCWHRIpNdzKc.roa (raw, json)
Hash identifier: 0jk0/8R1YPl04ZDwp0Jm42jcQEPsubACOIYS8Hsnozs=
Subject key identifier: 27:3D:25:40:BF:6A:B1:19:13:B3:F5:24:09:61:D1:22:93:5D:CC:A7
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 09B6F1DC
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/Jz0lQL9qsRkTs_UkCWHRIpNdzKc.roa
Signing time: Sat 01 Jan 2022 13:55:43 +0000
ROA not before: Sat 01 Jan 2022 13:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59799
IP address blocks: 185.71.24.0/22 maxlen: 24
2a01:b280::/36 maxlen: 36
2a0a:fd80:5000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162984412 (0x9b6f1dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Jan 1 13:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=273d2540bf6ab11913b3f5240961d122935dcca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:5a:15:67:a3:75:84:c1:35:c9:a7:18:af:
9e:8c:32:8d:67:f3:73:0d:07:b1:41:a9:38:d9:a5:
3c:9c:26:11:a3:b3:4d:34:38:c0:e8:47:96:a8:b7:
76:f8:b2:c1:e9:7b:03:0a:6b:fd:ba:25:9f:95:cf:
7e:27:ab:5c:40:ce:7d:90:48:10:66:a0:b8:b4:c2:
9a:d7:71:f4:3b:ae:a0:95:e6:55:d4:c8:4a:f8:ba:
e7:3f:6a:4d:b4:95:f1:5a:1f:02:d1:69:32:c2:b8:
09:30:cb:dd:22:e7:f7:d7:1a:f2:10:5d:15:58:8b:
99:51:3b:89:c5:33:92:93:7e:90:62:2d:a3:ed:f0:
56:72:18:f8:d6:d7:b3:07:e9:0e:e7:89:87:a6:5c:
57:25:6d:31:67:1f:7d:6b:97:c4:96:e5:3b:01:f0:
4d:26:05:89:9e:75:8f:99:ff:c4:00:b8:03:00:4b:
cb:47:d5:a3:bf:6d:a9:db:78:57:cb:10:1b:be:30:
cf:43:7c:dc:96:b3:62:1a:5f:1d:26:a5:b5:79:15:
85:b2:40:06:71:c3:44:1c:c5:2a:48:31:1c:9c:1a:
80:76:3e:d6:67:9e:e0:0a:c2:b7:3f:7b:59:72:3b:
cf:6d:0d:df:08:f9:56:b9:d1:3b:54:01:02:1e:e1:
f2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:3D:25:40:BF:6A:B1:19:13:B3:F5:24:09:61:D1:22:93:5D:CC:A7
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/Jz0lQL9qsRkTs_UkCWHRIpNdzKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.24.0/22
IPv6:
2a01:b280::/36
2a0a:fd80:5000::/36
Signature Algorithm: sha256WithRSAEncryption
9b:cb:9f:42:ce:52:6a:f6:98:c5:e9:0a:e1:d4:c3:5a:66:42:
ef:01:96:13:a8:e0:46:85:aa:6d:b3:7c:8e:d5:12:ba:4a:b9:
ca:5f:85:99:4b:62:6c:37:32:8a:1e:80:d3:1f:85:e1:98:e7:
62:19:64:81:d6:f0:7c:c2:dd:d5:e4:e2:70:f6:03:a9:ff:bf:
d1:65:63:80:b7:b0:4b:fd:aa:f2:34:a5:da:3d:08:21:46:84:
60:c5:1a:50:33:45:91:60:66:c4:43:88:b8:1a:a2:3f:bb:c9:
cd:57:f9:a2:7b:55:12:1d:5c:76:56:6b:90:57:cc:62:34:ab:
c3:ea:ed:99:30:17:36:df:db:e3:fa:79:37:19:dc:7e:a7:50:
01:76:98:4b:0f:86:31:a6:01:ea:d7:9e:e4:8c:fb:af:92:d7:
d4:d6:10:5e:75:54:8d:eb:b0:d4:b6:ed:80:bd:a6:35:ed:e9:
70:aa:1b:9a:3b:66:02:5f:f7:fc:ff:aa:47:c0:91:a4:7e:f8:
fd:42:e8:45:76:a1:2c:ea:d7:0d:3f:e5:c5:15:71:be:53:f8:
6e:10:c5:61:05:40:ee:5f:06:cb:22:f1:6a:4f:ef:17:de:39:
a5:1a:c1:7c:9c:09:f2:f6:96:90:f8:ee:19:a4:12:36:a8:a6:
2e:ca:3c:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:17 2024 by rpki-client on console-fra.rpki-client.org