Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/JWAvxQQvjFyeH5StKzv6uMITuaI.roa
File: JWAvxQQvjFyeH5StKzv6uMITuaI.roa (raw, json)
Hash identifier: 4Y9DQlqGVBBJol8Wi0P/9QBl6wj+iiV89dVcKdUsBcY=
Subject key identifier: 25:60:2F:C5:04:2F:8C:5C:9E:1F:94:AD:2B:3B:FA:B8:C2:13:B9:A2
Certificate issuer: /CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Certificate serial: 05F2BFD6
Authority key identifier: 78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/JWAvxQQvjFyeH5StKzv6uMITuaI.roa
Signing time: Sat 01 Jan 2022 02:01:49 +0000
ROA not before: Sat 01 Jan 2022 02:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25355
IP address blocks: 82.144.64.0/19 maxlen: 24
82.144.64.0/24 maxlen: 24
82.144.68.0/24 maxlen: 24
82.144.69.0/24 maxlen: 24
82.144.67.0/24 maxlen: 24
82.144.65.0/24 maxlen: 24
82.144.66.0/24 maxlen: 24
82.144.70.0/24 maxlen: 24
82.144.71.0/24 maxlen: 24
82.144.77.0/24 maxlen: 24
82.144.78.0/24 maxlen: 24
82.144.75.0/24 maxlen: 24
82.144.76.0/24 maxlen: 24
82.144.74.0/24 maxlen: 24
82.144.72.0/24 maxlen: 24
82.144.73.0/24 maxlen: 24
82.144.82.0/24 maxlen: 24
82.144.83.0/24 maxlen: 24
82.144.81.0/24 maxlen: 24
82.144.79.0/24 maxlen: 24
82.144.80.0/24 maxlen: 24
82.144.84.0/24 maxlen: 24
82.144.85.0/24 maxlen: 24
82.144.91.0/24 maxlen: 24
82.144.89.0/24 maxlen: 24
82.144.90.0/24 maxlen: 24
82.144.88.0/24 maxlen: 24
82.144.86.0/24 maxlen: 24
82.144.87.0/24 maxlen: 24
82.144.95.0/24 maxlen: 24
82.144.93.0/24 maxlen: 24
82.144.94.0/24 maxlen: 24
82.144.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99794902 (0x5f2bfd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78b1dbe2faf2a6e7dfa574ce55190963015f1c53
Validity
Not Before: Jan 1 02:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25602fc5042f8c5c9e1f94ad2b3bfab8c213b9a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1c:0a:7b:43:f0:49:0e:e9:88:80:39:6b:d3:
a7:26:1b:7d:1d:d0:aa:48:59:b1:37:30:ac:f3:26:
48:d4:9d:4c:40:33:c4:05:36:1b:80:94:99:dd:74:
cc:4b:ef:9a:c3:0c:f4:b3:0c:ab:49:43:38:db:2b:
84:e2:f1:80:65:f5:00:73:f2:87:45:8e:0a:2f:de:
6f:b0:18:a7:c8:9d:9e:8b:0f:12:39:46:47:11:4c:
32:b3:e7:f6:86:e4:af:a8:8a:9a:62:08:6c:47:8f:
00:59:81:4f:a1:81:d6:d7:75:83:f7:5d:27:e2:b9:
34:2f:12:48:90:7d:23:83:92:99:21:ae:d0:7e:82:
5f:a7:40:a4:18:38:fa:e8:27:52:07:43:bc:62:4b:
8e:32:f7:f0:01:32:31:8f:f2:ab:85:2c:b3:a4:b7:
97:db:c8:cc:e6:62:f8:7d:98:52:58:b8:2c:f7:ca:
50:c4:67:1b:86:12:b0:8e:25:6c:be:2b:ef:f1:27:
9c:e7:aa:2f:4b:ab:b3:04:cc:0d:d1:4f:f4:e3:3f:
16:91:d8:3a:a9:77:7b:cc:25:73:49:3f:ec:2d:4e:
1b:37:44:f5:4d:e0:10:56:20:1a:23:f4:d7:7f:99:
f2:b0:2e:6c:05:71:f6:60:17:81:fd:c1:a0:b1:15:
e3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:60:2F:C5:04:2F:8C:5C:9E:1F:94:AD:2B:3B:FA:B8:C2:13:B9:A2
X509v3 Authority Key Identifier:
keyid:78:B1:DB:E2:FA:F2:A6:E7:DF:A5:74:CE:55:19:09:63:01:5F:1C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLHb4vrypuffpXTOVRkJYwFfHFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/JWAvxQQvjFyeH5StKzv6uMITuaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/c666bf-c8d6-48ad-8076-c3fd9ae81012/1/eLHb4vrypuffpXTOVRkJYwFfHFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b3:9a:fa:fc:4a:8a:3e:17:32:c5:5a:8d:3f:c9:6d:f5:fc:3e:
56:6b:24:f2:cc:9f:21:35:34:62:e2:fd:17:91:ae:7f:35:6b:
35:f0:63:ee:59:53:32:40:e6:13:23:bf:80:6d:56:e8:e8:ba:
aa:30:90:3d:77:71:ae:57:08:6c:57:47:70:a0:da:b2:c6:15:
20:d6:06:58:c7:07:4c:19:7d:35:e5:d0:20:c6:bc:e0:ea:59:
df:c2:32:00:ed:d7:52:7a:37:5a:18:11:fc:b4:49:4b:15:9e:
2a:f0:1c:38:27:27:11:2b:56:0e:a8:b1:69:1e:bd:a7:ba:0e:
0e:bd:f5:81:75:dc:5e:98:4e:21:24:8f:6c:85:96:fe:9d:9a:
c4:3b:42:82:41:78:a5:94:53:00:b6:42:fe:63:48:f9:6a:31:
d4:72:3e:ba:e1:fc:bf:97:72:3b:cf:64:c4:59:1d:3a:a3:fe:
e8:c3:75:7e:6b:24:f2:6b:b4:90:18:d7:6c:26:73:19:41:2f:
46:95:02:cd:67:35:22:c9:a4:fa:a5:45:97:dd:a4:cb:3c:ea:
9f:5d:e9:05:0c:9f:20:99:09:53:9f:91:94:f4:43:32:8d:41:
e6:22:d6:28:d8:69:f5:c0:2e:e9:4a:91:0d:9e:32:06:dc:e1:
d3:71:a6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:15 2024 by rpki-client on console-fra.rpki-client.org