Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/JDJWbjMC2XqwCbrdp8wPiu5WQB0.roa
File: JDJWbjMC2XqwCbrdp8wPiu5WQB0.roa (raw, json)
Hash identifier: QtuJIzSRf6iS5l6OW2NSTBKanLLKDpIiqVoQWtP4opw=
Subject key identifier: 24:32:56:6E:33:02:D9:7A:B0:09:BA:DD:A7:CC:0F:8A:EE:56:40:1D
Certificate issuer: /CN=db9b939d7bca13b6d8ccf4d8e78676f3807a0ece
Certificate serial: 05FEDA70
Authority key identifier: DB:9B:93:9D:7B:CA:13:B6:D8:CC:F4:D8:E7:86:76:F3:80:7A:0E:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25uTnXvKE7bYzPTY54Z284B6Ds4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/JDJWbjMC2XqwCbrdp8wPiu5WQB0.roa
Signing time: Sat 01 Jan 2022 03:57:07 +0000
ROA not before: Sat 01 Jan 2022 03:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59989
IP address blocks: 185.97.94.0/24 maxlen: 24
185.97.93.0/24 maxlen: 24
185.97.92.0/24 maxlen: 24
185.97.95.0/24 maxlen: 24
185.97.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100588144 (0x5feda70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9b939d7bca13b6d8ccf4d8e78676f3807a0ece
Validity
Not Before: Jan 1 03:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2432566e3302d97ab009badda7cc0f8aee56401d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4d:5c:dd:42:9e:30:46:32:c1:5c:8b:34:c7:
c5:bc:b5:8c:e6:2d:6a:86:06:8a:10:c3:f6:fd:ef:
39:3c:13:18:85:ee:35:89:cb:6c:c7:24:d0:38:f7:
6a:8c:a9:7c:78:29:ca:6d:14:24:e9:b7:91:80:b7:
6a:ff:23:85:5f:1f:0e:6f:16:fc:f0:dd:e0:91:16:
30:78:5f:db:d5:8f:0b:33:f8:d7:6f:d9:47:7a:d3:
2c:00:e0:03:72:bd:eb:ab:cb:46:2a:4b:1d:df:06:
2a:46:1c:5c:04:7f:9b:f9:53:ab:0a:03:c3:56:62:
74:11:ab:c5:71:40:38:ec:8c:a3:dc:ed:af:28:e9:
f9:ab:5c:6a:fb:1b:92:8d:b7:bc:58:88:41:bc:5c:
b5:84:d3:13:75:5e:f7:6d:0e:2c:60:53:50:a6:8f:
3f:87:1f:8d:f9:6d:ee:15:1c:2d:fc:ce:87:55:f9:
ff:dc:06:f1:25:af:d1:8b:1b:5f:bb:78:41:6e:20:
01:ed:1d:20:bc:85:08:3f:e2:0f:db:2d:12:6f:35:
c5:c9:3b:b7:b9:e4:ca:dd:f6:32:38:f9:c9:d2:3d:
b2:d5:92:ea:20:aa:4d:f0:c1:fe:e9:4e:00:b3:68:
51:a3:db:90:7f:f8:4c:2c:68:c2:1d:20:3e:b7:3b:
8d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:32:56:6E:33:02:D9:7A:B0:09:BA:DD:A7:CC:0F:8A:EE:56:40:1D
X509v3 Authority Key Identifier:
keyid:DB:9B:93:9D:7B:CA:13:B6:D8:CC:F4:D8:E7:86:76:F3:80:7A:0E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25uTnXvKE7bYzPTY54Z284B6Ds4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/JDJWbjMC2XqwCbrdp8wPiu5WQB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/25uTnXvKE7bYzPTY54Z284B6Ds4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.92.0/22
Signature Algorithm: sha256WithRSAEncryption
34:58:ac:75:5e:e2:07:56:62:1d:24:ae:d9:13:97:97:1c:67:
1a:ba:65:d6:37:94:f8:ce:75:ca:bb:78:a4:da:40:39:7d:ac:
1b:90:3b:a3:7e:35:d9:c3:4b:bb:c3:0d:2b:90:61:e0:d5:6c:
da:18:7a:53:78:a5:20:a8:68:31:5a:cf:53:25:43:0d:76:f1:
fa:7a:26:b8:2a:b5:60:ae:86:9b:35:f2:f3:5e:92:00:a4:a1:
42:dc:f7:23:88:c9:ae:19:8d:b2:80:64:e7:f1:ca:bb:26:4e:
e2:f0:3b:8e:28:11:de:55:32:12:74:b3:2c:d0:1b:2c:81:df:
9d:fe:cd:ef:6f:0a:fd:8a:64:90:62:3f:aa:83:69:10:bd:b5:
48:f9:84:95:35:a8:17:89:2b:13:82:af:1c:d3:a7:04:af:5c:
7f:d0:f5:b4:b0:ec:fb:36:f2:c1:84:c3:27:3d:2b:04:89:24:
8e:a3:a3:71:03:2c:cc:23:f0:c2:16:5a:73:51:48:91:49:7c:
ca:03:30:32:66:26:8d:05:bf:1e:d6:c4:64:b4:f7:b7:80:2b:
e5:59:bd:e8:cf:27:d6:7e:35:63:9e:66:c9:1d:7a:70:57:31:
31:a3:a6:7e:a9:98:8d:fb:8e:13:db:c8:bf:93:07:88:d5:43:
11:ba:84:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:26 2023 by rpki-client on console-ams.rpki-client.org