Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ad4e87-5b28-42d7-9748-4ab498b596a3/1/ji15ZNCsgLgD_4fzTDSydtjG3j4.roa
File: ji15ZNCsgLgD_4fzTDSydtjG3j4.roa (raw, json)
Hash identifier: S7TbJV4UmijNVX+rINIVfAukQxB599GO8dTMANTlGJU=
Subject key identifier: 8E:2D:79:64:D0:AC:80:B8:03:FF:87:F3:4C:34:B2:76:D8:C6:DE:3E
Certificate issuer: /CN=4c40c7111c2916a5f5adaf1e5050a940c26b2378
Certificate serial: 0CA40289
Authority key identifier: 4C:40:C7:11:1C:29:16:A5:F5:AD:AF:1E:50:50:A9:40:C2:6B:23:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEDHERwpFqX1ra8eUFCpQMJrI3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ad4e87-5b28-42d7-9748-4ab498b596a3/1/ji15ZNCsgLgD_4fzTDSydtjG3j4.roa
Signing time: Sat 01 Jan 2022 09:54:37 +0000
ROA not before: Sat 01 Jan 2022 09:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49010
IP address blocks: 185.147.144.0/22 maxlen: 22
91.236.210.0/23 maxlen: 23
2a0a:5400::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212075145 (0xca40289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c40c7111c2916a5f5adaf1e5050a940c26b2378
Validity
Not Before: Jan 1 09:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e2d7964d0ac80b803ff87f34c34b276d8c6de3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:00:a0:bc:07:eb:96:6e:1f:bd:5a:b8:5e:7f:
dd:bb:4e:48:95:e8:b7:18:21:3a:7d:c9:7c:d2:01:
b7:51:ea:ec:90:b8:28:25:8f:38:c5:a5:b7:61:e9:
45:fb:ee:75:93:ac:b6:84:12:a6:e6:33:de:e4:cb:
a1:06:fe:43:1f:37:d6:c0:08:b6:76:5b:bc:15:79:
39:82:90:25:6a:0b:b5:17:c0:3f:73:bd:19:54:52:
80:a6:39:d0:e1:8e:99:26:a2:c1:b7:16:64:1b:12:
10:71:ca:c9:17:a1:23:d6:86:70:99:96:99:ce:9d:
48:90:7b:83:d1:45:8c:cc:c9:77:c5:ba:1e:16:78:
b9:e2:ce:d7:48:6f:bf:b2:8b:c6:fe:5a:b7:2a:3b:
19:c3:42:ae:59:07:b9:6e:ed:e0:f2:bf:91:05:41:
2d:96:f0:af:3e:42:7a:f5:6a:bc:8e:a0:44:9d:cd:
ee:a7:c9:18:c5:e9:97:ca:87:29:8a:d0:fd:8d:a8:
e6:51:50:60:8b:2d:d4:ad:02:3a:95:c4:45:07:a6:
33:1e:69:ea:60:1a:54:49:65:cd:62:78:de:c1:af:
ba:e8:ed:ab:de:ac:e2:f1:55:c5:05:87:b8:28:23:
5a:4e:ed:78:76:95:38:92:aa:9d:9b:7b:fb:8a:65:
f2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:2D:79:64:D0:AC:80:B8:03:FF:87:F3:4C:34:B2:76:D8:C6:DE:3E
X509v3 Authority Key Identifier:
keyid:4C:40:C7:11:1C:29:16:A5:F5:AD:AF:1E:50:50:A9:40:C2:6B:23:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEDHERwpFqX1ra8eUFCpQMJrI3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ad4e87-5b28-42d7-9748-4ab498b596a3/1/ji15ZNCsgLgD_4fzTDSydtjG3j4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ad4e87-5b28-42d7-9748-4ab498b596a3/1/TEDHERwpFqX1ra8eUFCpQMJrI3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.210.0/23
185.147.144.0/22
IPv6:
2a0a:5400::/29
Signature Algorithm: sha256WithRSAEncryption
84:9b:5c:81:f6:31:df:e9:86:cf:c0:46:d0:d6:60:85:57:0f:
d7:34:67:60:cf:8e:cb:77:ff:cf:d2:d1:d8:96:69:d7:be:e1:
f3:f4:04:26:3b:f3:4b:f8:ed:0a:43:11:d0:89:e3:ea:0a:9a:
96:9c:b3:fd:ce:9d:08:49:82:bd:89:d8:11:c6:62:e0:20:39:
a7:d5:f1:e7:d3:d9:2c:6e:d1:f6:08:69:24:54:f1:44:4a:51:
be:59:92:41:a9:97:76:c7:cb:d5:e2:67:a4:1e:8b:19:ee:23:
c7:b1:a3:76:01:68:f5:71:4f:e5:7c:38:26:76:74:d2:b9:df:
33:70:21:27:be:1f:1e:63:ed:f1:bf:3f:72:ed:55:a8:0a:62:
0b:12:44:06:d9:09:7b:c8:4e:52:49:94:36:6e:ab:89:11:45:
b1:6a:92:46:c6:ad:9d:48:1a:8a:a2:23:32:b8:3d:06:08:2d:
53:1c:32:9b:55:ee:0b:be:93:44:7b:a0:f0:6d:60:35:a3:d1:
c6:4a:ae:f5:5a:0e:bc:1b:de:b9:7b:27:7d:ea:f2:12:0e:1b:
8f:76:d2:50:f2:25:2a:be:35:f6:d1:10:69:18:98:41:04:18:
ba:98:1a:c3:68:e6:13:5c:b3:e2:ef:ad:a4:73:1c:a3:14:ec:
e2:c0:35:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:28 2024 by rpki-client on console-ams.rpki-client.org