Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/Jk9U-mY88wLNuxTvsFVxkgC5r84.roa
File: Jk9U-mY88wLNuxTvsFVxkgC5r84.roa (raw, json)
Hash identifier: xRWmUekdNVGxANOB28WOelQ6035xWTyKve8ehcHz9E0=
Subject key identifier: 26:4F:54:FA:66:3C:F3:02:CD:BB:14:EF:B0:55:71:92:00:B9:AF:CE
Certificate issuer: /CN=153d757b77067befd9446694748ad2b04e97b38c
Certificate serial: 166713E7
Authority key identifier: 15:3D:75:7B:77:06:7B:EF:D9:44:66:94:74:8A:D2:B0:4E:97:B3:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/Jk9U-mY88wLNuxTvsFVxkgC5r84.roa
Signing time: Sat 01 Jan 2022 06:59:19 +0000
ROA not before: Sat 01 Jan 2022 06:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201193
IP address blocks: 185.76.232.0/22 maxlen: 22
2a05:5dc0::/29 maxlen: 30
2a05:5dc4::/30 maxlen: 30
2a05:5dc0::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375854055 (0x166713e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=153d757b77067befd9446694748ad2b04e97b38c
Validity
Not Before: Jan 1 06:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=264f54fa663cf302cdbb14efb055719200b9afce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e6:ba:10:d9:4b:99:7d:d8:d6:1a:8f:db:15:
ff:3c:0e:26:07:08:a8:d3:70:0f:45:8b:77:81:e0:
8c:f5:3c:f3:75:e9:15:2a:a9:af:de:c3:f6:e4:c0:
18:f8:f2:80:4b:d7:7b:0a:2a:81:4a:d3:46:f4:14:
ac:f7:5d:7b:52:8e:6e:b0:5d:a0:5e:9f:c1:69:d7:
4e:08:25:d4:53:a8:51:46:cb:f5:fc:96:3f:af:a6:
00:db:86:51:69:2a:5a:56:29:b3:4d:a5:0c:ba:4e:
d5:97:9c:77:9e:5f:0d:ce:b2:e8:28:b6:03:75:fd:
48:4d:8f:06:8e:af:74:b8:6a:23:35:16:a5:8f:04:
86:80:d6:ee:2e:27:02:f5:e9:d6:de:ba:81:3c:ab:
a5:12:aa:74:03:57:d8:81:78:5f:9e:fc:b9:16:87:
12:a4:ac:13:c2:12:a0:ed:96:78:f2:73:9e:fb:3a:
0e:35:fb:d4:97:b5:da:48:73:90:9d:ca:e1:19:f3:
5d:3c:3f:84:f9:6e:63:7c:69:8f:e4:67:7a:d6:a7:
d5:fb:08:c5:4e:cb:28:29:b3:93:2d:31:8d:2e:7f:
fa:03:4e:e9:3c:15:00:7a:a5:f3:52:a6:c1:02:0a:
b8:73:c0:8e:00:21:be:7c:59:a3:31:72:13:9b:d7:
b9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4F:54:FA:66:3C:F3:02:CD:BB:14:EF:B0:55:71:92:00:B9:AF:CE
X509v3 Authority Key Identifier:
keyid:15:3D:75:7B:77:06:7B:EF:D9:44:66:94:74:8A:D2:B0:4E:97:B3:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/Jk9U-mY88wLNuxTvsFVxkgC5r84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.232.0/22
IPv6:
2a05:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
97:fd:9a:aa:7b:c9:00:5e:d9:d6:1a:ce:8d:48:c1:48:03:fb:
95:da:7c:c0:f6:c1:07:ed:55:fe:c5:b8:41:b1:5f:4d:12:4f:
5b:81:d1:dd:1b:91:c7:a4:da:e8:48:0f:b5:74:8c:0d:fa:5f:
ac:04:5b:91:8a:d3:6b:c4:76:18:38:91:c0:82:f8:f6:1e:53:
2e:ab:64:a0:ec:a3:ea:55:61:63:4f:b4:61:eb:bd:a6:86:f1:
69:b7:68:50:9f:98:fa:7b:73:a4:29:1f:ba:4d:9e:31:d0:7f:
88:f8:c8:eb:3f:5d:67:47:f6:17:d9:d9:7c:8b:01:70:e6:4f:
29:52:d1:71:9d:dd:af:d3:35:ef:d5:b8:7f:87:1e:f7:f9:0f:
d1:c4:72:ab:b4:6f:4e:be:98:f9:13:d6:3f:29:2e:3a:0c:32:
bd:db:9e:9a:06:80:76:47:a7:f7:59:59:8e:27:65:f8:0b:91:
8e:c1:3d:56:94:f6:d2:d9:2b:9d:98:4f:8f:9a:89:91:6a:6f:
ba:0d:d9:90:b9:92:d6:93:54:d7:90:f6:06:c7:41:0f:80:64:
03:b1:b1:f7:ae:60:7e:88:71:c4:74:21:f9:44:b0:8c:d4:43:
e0:db:ee:c4:91:32:c8:67:e8:10:e6:f5:d3:a4:89:02:c8:6c:
0e:b1:e8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:25 2024 by rpki-client on console-ams.rpki-client.org