Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/758203-d529-48a7-98f4-e51a90907226/1/JPzdAKBwqWASE2w53JZ0zAzcI1A.roa
File: JPzdAKBwqWASE2w53JZ0zAzcI1A.roa (raw, json)
Hash identifier: 7mE/cZwh5In5XODuCgsVilFZr/toBKtZ+mNZYUcLxac=
Subject key identifier: 24:FC:DD:00:A0:70:A9:60:12:13:6C:39:DC:96:74:CC:0C:DC:23:50
Certificate issuer: /CN=360c5935e51fe706c2447519d9b5f95ae363c186
Certificate serial: 02A92EEA
Authority key identifier: 36:0C:59:35:E5:1F:E7:06:C2:44:75:19:D9:B5:F9:5A:E3:63:C1:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgxZNeUf5wbCRHUZ2bX5WuNjwYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/758203-d529-48a7-98f4-e51a90907226/1/JPzdAKBwqWASE2w53JZ0zAzcI1A.roa
Signing time: Sat 01 Jan 2022 07:56:58 +0000
ROA not before: Sat 01 Jan 2022 07:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211964
IP address blocks: 195.128.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44642026 (0x2a92eea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=360c5935e51fe706c2447519d9b5f95ae363c186
Validity
Not Before: Jan 1 07:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24fcdd00a070a96012136c39dc9674cc0cdc2350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:01:f7:70:cc:ee:94:7f:9f:91:f6:2f:71:3a:
eb:db:3e:c9:28:f3:42:dc:1e:af:fa:dd:61:c9:ec:
9f:5b:5d:54:8a:3b:92:7d:4a:16:26:2f:70:06:74:
3f:05:e1:b4:00:46:d5:a5:7a:64:06:77:ee:5c:08:
91:71:62:93:e1:b7:92:ba:5f:0f:ba:31:1b:6f:89:
5b:28:88:ba:9a:50:a7:4e:55:23:11:cb:d7:f0:73:
c6:2f:44:10:10:dc:a1:bb:0a:79:17:99:76:75:ec:
4f:b5:3c:9e:9d:ca:39:af:ea:6c:c4:a5:47:47:68:
95:77:60:9f:be:3a:6e:65:d5:c5:fd:69:3b:1c:9a:
74:c9:17:41:63:7b:df:4d:bb:a1:c6:78:70:e1:0d:
38:21:30:5b:0c:20:b5:4e:9d:d3:7b:13:5d:9b:f1:
a8:74:fd:f6:2a:75:13:31:50:bd:1f:84:f4:c0:e6:
f8:c8:78:51:79:69:b2:9c:60:f7:d1:3c:91:a1:f7:
b2:2a:1c:3b:d8:34:6a:63:5f:aa:bd:08:43:1a:5b:
22:23:e4:4e:48:97:f0:5e:65:69:30:e9:7d:a1:1c:
99:54:c0:d4:14:d9:35:b1:fe:9f:09:ee:51:f7:34:
7e:4a:d3:7f:1f:8a:08:15:32:75:33:af:1e:0a:a5:
56:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FC:DD:00:A0:70:A9:60:12:13:6C:39:DC:96:74:CC:0C:DC:23:50
X509v3 Authority Key Identifier:
keyid:36:0C:59:35:E5:1F:E7:06:C2:44:75:19:D9:B5:F9:5A:E3:63:C1:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgxZNeUf5wbCRHUZ2bX5WuNjwYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/758203-d529-48a7-98f4-e51a90907226/1/JPzdAKBwqWASE2w53JZ0zAzcI1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/758203-d529-48a7-98f4-e51a90907226/1/NgxZNeUf5wbCRHUZ2bX5WuNjwYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.35.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c2:14:ef:b3:aa:f4:48:3d:84:6d:8d:1b:e2:61:ce:99:95:
77:f3:0e:7f:4d:2b:7b:ac:3f:c8:48:88:9a:9d:3c:08:45:7d:
de:45:c2:b1:d2:3d:22:5d:ef:45:6e:33:a5:a1:b7:5e:50:5b:
28:eb:c3:99:8b:22:65:82:0b:a2:c5:66:af:50:ea:ad:14:dd:
c9:23:40:07:99:a1:c9:8e:8a:8d:a1:c1:8c:f0:60:6c:c0:14:
85:e6:8d:4c:94:50:ae:d1:12:ad:18:ba:b2:c9:2b:f1:57:01:
fc:ca:97:13:00:9d:7e:26:82:5e:f0:1b:c0:15:cf:af:45:fa:
5d:48:b4:29:4b:9b:77:1b:94:ea:1c:ac:59:c9:43:04:73:fc:
9c:09:52:21:3e:7b:3c:e6:87:20:e5:80:6f:3d:43:74:14:08:
e4:9e:5f:e3:79:7f:2a:ad:8a:0d:2a:8a:ed:56:8e:85:5f:de:
fa:d0:42:7e:bd:bd:e5:43:5b:d6:52:8b:90:52:44:31:bb:6b:
18:0b:19:fe:19:21:2c:15:b2:32:c2:2c:e8:0b:0f:5e:37:87:
c5:53:5e:7a:b0:cc:48:f5:be:5b:54:b4:f4:c8:81:27:60:d3:
6d:88:31:f4:17:20:79:7f:f7:59:8d:66:86:91:48:4d:64:16:
47:19:7b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org