Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/jgB4IxVNnc4uPgbnTlrNt2RnrpQ.roa
File: jgB4IxVNnc4uPgbnTlrNt2RnrpQ.roa (raw, json)
Hash identifier: j9Tw/+X21/hO5pti3m36D39zG0AbPpP70uA+kT5DiKY=
Subject key identifier: 8E:00:78:23:15:4D:9D:CE:2E:3E:06:E7:4E:5A:CD:B7:64:67:AE:94
Certificate issuer: /CN=2bcee4d9523f15291c57675fd26dc950a7cd5550
Certificate serial: 0E4D71F0
Authority key identifier: 2B:CE:E4:D9:52:3F:15:29:1C:57:67:5F:D2:6D:C9:50:A7:CD:55:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K87k2VI_FSkcV2df0m3JUKfNVVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/jgB4IxVNnc4uPgbnTlrNt2RnrpQ.roa
Signing time: Sat 01 Jan 2022 02:55:50 +0000
ROA not before: Sat 01 Jan 2022 02:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206606
IP address blocks: 185.177.160.0/22 maxlen: 22
2a0a:3e80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239956464 (0xe4d71f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bcee4d9523f15291c57675fd26dc950a7cd5550
Validity
Not Before: Jan 1 02:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e007823154d9dce2e3e06e74e5acdb76467ae94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:df:1a:e9:ca:1b:2e:98:d4:92:b2:1c:37:c5:
34:83:27:67:8f:79:b7:a4:7f:4f:4c:cd:f2:c3:6b:
00:0f:31:d2:3d:b2:f8:a8:50:15:c4:f3:f0:ef:33:
58:3a:55:d0:fa:e8:e6:63:36:aa:24:f7:8d:7b:9b:
a1:18:b6:5d:47:0b:36:cd:1c:27:3a:53:97:32:53:
47:0f:23:fd:41:88:6d:ab:e3:44:30:cd:dd:e0:a0:
e2:22:16:67:15:80:4f:ae:b0:b1:ee:2d:59:26:6c:
52:bc:52:7e:c2:78:74:1a:71:1f:74:81:48:56:7f:
ad:c9:a4:0a:83:15:5e:fd:e7:5d:fe:d7:90:67:f0:
41:6d:7c:ba:97:dd:90:58:ba:07:fc:80:c1:49:6e:
db:3f:0d:18:20:b8:b8:fd:37:03:71:0b:cc:70:52:
ee:5a:da:08:11:2d:ce:d9:21:d2:b2:d8:3c:19:78:
55:40:e2:3c:85:ca:28:f6:cc:4f:98:bf:87:e3:b7:
69:36:76:2b:b1:14:44:2b:69:f8:c8:24:c3:07:32:
1a:7c:43:5b:ac:dc:70:57:5e:34:d6:88:28:40:51:
99:bf:1f:59:9a:fe:24:93:b4:71:ed:1b:52:29:1d:
8c:2a:98:72:63:d3:2f:92:52:90:59:52:9a:1c:d7:
6b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:00:78:23:15:4D:9D:CE:2E:3E:06:E7:4E:5A:CD:B7:64:67:AE:94
X509v3 Authority Key Identifier:
keyid:2B:CE:E4:D9:52:3F:15:29:1C:57:67:5F:D2:6D:C9:50:A7:CD:55:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K87k2VI_FSkcV2df0m3JUKfNVVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/jgB4IxVNnc4uPgbnTlrNt2RnrpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8bbc27-2088-4cc9-b8d3-a03169d68a19/1/K87k2VI_FSkcV2df0m3JUKfNVVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.160.0/22
IPv6:
2a0a:3e80::/29
Signature Algorithm: sha256WithRSAEncryption
b1:49:1d:57:46:4b:19:f2:7c:ff:4a:5a:67:b1:cc:a3:78:e2:
e6:fa:52:ef:67:78:7d:1d:3b:78:7c:47:ab:b1:8d:8d:03:29:
ca:bd:a4:0d:6d:56:5f:e0:6e:88:d7:af:b6:bc:55:86:b9:c7:
a0:d0:28:ee:ef:2f:24:7a:2c:88:b0:35:f9:ef:bf:80:e1:a3:
28:a1:b1:ac:9d:b7:9d:e4:d7:90:fe:d6:94:8f:27:ae:f9:f4:
a9:80:30:d9:be:2f:e5:2d:15:bc:df:ea:e4:d5:82:74:91:f5:
e5:f4:06:e1:53:7e:ce:e4:99:a9:23:14:a0:52:c8:05:87:77:
2c:c9:17:10:02:7e:77:fd:b4:97:5f:bd:32:24:0e:22:03:e1:
4a:34:cb:34:e3:3a:0d:a2:d4:60:77:f5:d8:91:b9:e0:45:42:
86:9e:3a:86:c7:56:86:f2:7d:53:30:68:b3:a2:da:76:62:1e:
dc:9b:b7:b9:7c:cb:1a:7c:4b:c3:80:c1:e1:9a:6e:f6:0b:47:
b6:14:6e:9f:9b:f2:31:5e:7c:b9:9b:e6:b8:84:e8:3f:97:87:
cf:5e:48:c8:cf:d9:80:a4:fd:3f:ec:97:d4:93:bb:93:a4:60:
0d:5a:72:e8:cb:e0:fd:0b:7b:4f:c3:b4:6f:2e:d8:75:de:98:
97:61:65:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:55 2024 by rpki-client on console-fra.rpki-client.org