Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jmyXZ4nfJcsbBTBzrD4F6fyfbt8.roa
File: jmyXZ4nfJcsbBTBzrD4F6fyfbt8.roa (raw, json)
Hash identifier: hLTMmLVQf3GCzEuYfpLB12qK/56P7a/UDj47sai+TUs=
Subject key identifier: 8E:6C:97:67:89:DF:25:CB:1B:05:30:73:AC:3E:05:E9:FC:9F:6E:DF
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F38236
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jmyXZ4nfJcsbBTBzrD4F6fyfbt8.roa
Signing time: Sat 01 Jan 2022 13:06:24 +0000
ROA not before: Sat 01 Jan 2022 13:06:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31600
IP address blocks: 213.135.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351502902 (0x14f38236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e6c976789df25cb1b053073ac3e05e9fc9f6edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:25:d2:ce:fc:45:a4:2f:b6:8e:5e:1f:8a:e6:
6f:47:f3:df:3b:a5:59:62:d7:f2:5c:e8:c7:ba:ca:
83:91:db:53:e2:96:dc:47:4d:84:9d:50:07:55:f0:
64:40:0e:4d:f6:87:18:c5:b3:74:81:f8:83:2b:34:
a4:09:c0:79:e8:54:47:04:98:ab:5e:1a:9f:a3:f2:
50:3f:f3:f7:e7:6d:62:7f:a9:f9:59:a7:ec:b7:27:
bc:55:16:10:45:5c:fc:53:42:a8:78:f4:24:e4:ff:
f7:fe:f7:51:bc:3a:b1:13:00:5a:1f:81:9b:04:42:
95:08:19:6f:5d:f0:64:20:74:a4:9c:a1:d7:d6:96:
b9:3a:b0:6a:a1:60:cb:df:77:f5:49:40:68:ad:7a:
6d:1e:42:94:a8:26:3d:49:ab:3f:6b:e1:5c:c5:e4:
e2:c8:4f:78:b3:6c:f8:a3:b6:59:30:b0:04:7d:64:
11:aa:29:63:16:21:19:fb:29:1a:46:28:00:e1:1e:
69:88:e9:14:99:ab:48:b5:c6:f9:a1:af:91:d2:b2:
92:04:3f:cd:41:24:ef:ce:a8:3b:aa:02:bb:fb:4b:
92:c0:66:32:79:35:e0:5f:8b:90:7e:32:5e:86:d1:
07:a0:4e:be:fa:84:fb:f3:a3:fc:a1:2b:a0:d5:f2:
e3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6C:97:67:89:DF:25:CB:1B:05:30:73:AC:3E:05:E9:FC:9F:6E:DF
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jmyXZ4nfJcsbBTBzrD4F6fyfbt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.66.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:fd:e6:16:a0:4e:a9:76:86:63:e7:64:5e:c0:38:95:d9:e5:
76:32:16:3c:93:18:73:68:54:cd:2d:52:ef:a4:df:98:bf:3c:
0b:e5:27:60:b6:d5:e9:0c:13:ab:5c:a8:4d:99:87:91:ae:cd:
48:1f:12:4a:ec:00:79:8f:a4:e2:da:88:bd:d7:ca:c6:f6:3b:
07:f6:0b:3e:84:5e:2f:97:bb:9c:5f:a4:50:ea:9a:c3:07:24:
24:9f:60:bc:1d:7e:e1:a0:db:b9:d8:31:7f:6d:4d:44:4f:ba:
e7:42:13:de:e0:fd:9a:04:d8:9a:70:69:f7:ee:e0:22:61:77:
44:91:1f:6d:23:4d:4f:65:f6:26:b8:3d:5a:1a:1f:a5:e1:99:
98:e8:87:6a:6b:21:a7:ba:8d:43:f2:9e:ca:0c:02:a4:d4:e1:
e0:8f:32:e2:4f:18:35:17:2b:c2:5f:34:1d:06:b6:da:d6:1f:
f8:ad:9e:1a:a7:e7:2f:36:1f:16:4e:6e:b9:b6:8a:40:85:b1:
26:fb:68:85:4f:06:a1:bc:3c:da:6b:83:09:70:da:78:c6:0a:
66:f6:35:01:47:c0:b7:06:79:f7:3c:90:3b:e1:25:e1:0b:09:
d3:c7:35:0b:be:b7:f5:aa:a3:c3:ea:8c:ba:59:24:b3:f5:4e:
c3:57:d7:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org