Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/jbXyv-Ysv_Lzf3ytO6sFxFm0fTU.roa
File: jbXyv-Ysv_Lzf3ytO6sFxFm0fTU.roa (raw, json)
Hash identifier: 0U2xoAakN0YxMS7MjC5ufA2EBHx5tLiQ9iQE/TQc8QY=
Subject key identifier: 8D:B5:F2:BF:E6:2C:BF:F2:F3:7F:7C:AD:3B:AB:05:C4:59:B4:7D:35
Certificate issuer: /CN=1d4404c8392e82d4b7029b69cb6ee290b9b42c00
Certificate serial: 1021E9CF
Authority key identifier: 1D:44:04:C8:39:2E:82:D4:B7:02:9B:69:CB:6E:E2:90:B9:B4:2C:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUQEyDkugtS3Aptpy27ikLm0LAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/jbXyv-Ysv_Lzf3ytO6sFxFm0fTU.roa
Signing time: Sat 01 Jan 2022 09:53:50 +0000
ROA not before: Sat 01 Jan 2022 09:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201453
IP address blocks: 185.112.78.0/24 maxlen: 24
185.112.76.0/22 maxlen: 22
185.112.77.0/24 maxlen: 24
185.112.76.0/24 maxlen: 24
185.112.79.0/24 maxlen: 24
2a06:6382::/32 maxlen: 32
2a06:6386::/32 maxlen: 32
2a06:6387::/32 maxlen: 32
2a06:6381::/32 maxlen: 32
2a06:6384::/32 maxlen: 32
2a06:6380::/32 maxlen: 32
2a06:6383::/32 maxlen: 32
2a06:6385::/32 maxlen: 32
2a06:6380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270657999 (0x1021e9cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d4404c8392e82d4b7029b69cb6ee290b9b42c00
Validity
Not Before: Jan 1 09:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8db5f2bfe62cbff2f37f7cad3bab05c459b47d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0d:6b:ca:8b:71:1a:7f:af:47:16:27:13:77:
ed:b8:40:e7:48:ce:c6:f0:71:8c:6b:ad:bb:07:10:
c2:ea:ea:35:50:53:bb:e3:b0:92:2b:53:67:5c:c8:
14:15:9b:8e:79:04:4b:5c:07:3c:a9:2c:14:1e:30:
9d:91:57:13:a8:6a:28:d7:5e:67:0c:eb:8d:8a:3e:
5c:2c:36:6d:2f:7e:5c:6f:81:71:31:66:69:f2:b0:
6c:25:11:ec:7e:7f:c1:af:ce:aa:d6:61:8f:49:4d:
37:79:fa:93:b6:8e:eb:9c:88:d0:f7:48:f3:6a:01:
1c:85:0d:10:2c:fb:a4:aa:3e:99:20:c7:a1:30:ed:
c6:ff:f7:50:a2:61:c2:19:9a:4a:ca:fe:ca:c9:71:
b7:df:3b:a6:6b:9f:58:50:b1:93:a8:07:d9:b5:5e:
62:5e:8c:4f:d2:d0:d2:3b:fe:e6:f2:3c:77:40:a0:
e8:8c:a5:19:49:7a:8d:dd:08:4e:e2:bb:b5:11:01:
c5:64:b9:97:e0:d4:61:ce:bb:f3:86:63:f9:c7:93:
91:31:26:74:a7:82:57:27:d9:31:83:97:eb:e2:16:
18:1b:ae:95:e1:92:8d:1f:51:6e:7b:a9:a0:c0:8d:
f3:46:ad:fe:f5:e1:95:74:e1:6a:68:0d:e8:40:16:
35:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B5:F2:BF:E6:2C:BF:F2:F3:7F:7C:AD:3B:AB:05:C4:59:B4:7D:35
X509v3 Authority Key Identifier:
keyid:1D:44:04:C8:39:2E:82:D4:B7:02:9B:69:CB:6E:E2:90:B9:B4:2C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUQEyDkugtS3Aptpy27ikLm0LAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/jbXyv-Ysv_Lzf3ytO6sFxFm0fTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/HUQEyDkugtS3Aptpy27ikLm0LAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.76.0/22
IPv6:
2a06:6380::/29
Signature Algorithm: sha256WithRSAEncryption
a1:66:66:33:8f:25:15:bc:12:2d:09:10:36:a2:95:88:61:5e:
f2:50:7c:05:64:15:06:1b:37:0c:1a:d2:e3:6f:2c:26:10:8a:
00:43:cb:10:7f:99:44:e3:20:5f:1a:7d:f9:78:61:45:0b:c5:
bf:03:d2:6c:52:fd:2e:f7:69:20:99:1d:2c:3f:49:d2:0e:b1:
08:38:0f:e7:19:7c:0c:46:77:bf:b2:55:81:6d:40:d2:0e:fc:
20:c6:1a:b1:c4:89:0b:ad:65:4f:41:0b:ec:c4:d2:10:77:d1:
82:f8:47:f6:a6:f3:11:76:77:3c:95:84:1d:92:a0:f3:6f:0a:
54:f1:87:3e:7d:d7:7b:85:7b:c9:1a:57:80:b5:4a:e2:85:7c:
08:60:fe:30:f3:b8:08:44:b8:18:f5:e6:74:c5:d5:d2:6c:9b:
14:fe:ad:5c:f3:c4:5f:f9:50:38:e9:5f:38:07:95:29:55:31:
b1:eb:e2:c1:7a:13:ed:96:c5:1b:03:11:c9:45:0d:fa:98:48:
ef:c9:92:41:bd:e2:0e:59:81:5d:61:7d:5d:0a:dc:55:e1:46:
5f:07:40:f6:f9:29:8c:55:68:ab:b4:5a:91:9a:0b:1a:a3:a3:
fd:11:fa:22:b4:87:c2:c5:f6:d5:57:79:59:05:7a:95:0e:5c:
cf:a6:bb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org