Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/JpeSrdDBAwDaQ28adD2_PFBmXCg.roa
File: JpeSrdDBAwDaQ28adD2_PFBmXCg.roa (raw, json)
Hash identifier: FDyiK0RM+BVycNgtM6dt0na0/dx8sg6yxt6W6+6kA9E=
Subject key identifier: 26:97:92:AD:D0:C1:03:00:DA:43:6F:1A:74:3D:BF:3C:50:66:5C:28
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 0182D933D674A1B68FC67EE231F18C3D58CA
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/JpeSrdDBAwDaQ28adD2_PFBmXCg.roa
Signing time: Fri 26 Aug 2022 08:10:29 +0000
ROA not before: Fri 26 Aug 2022 08:10:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202283
IP address blocks: 2a02:1041:2000::/35 maxlen: 35
2a02:1041::/35 maxlen: 35
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d9:33:d6:74:a1:b6:8f:c6:7e:e2:31:f1:8c:3d:58:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Aug 26 08:10:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=269792add0c10300da436f1a743dbf3c50665c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6d:9a:a8:b7:f9:79:7e:2f:66:13:c2:e1:98:
d8:9c:b6:f7:17:a1:f1:74:f6:6c:68:28:fc:b1:ed:
76:ad:59:88:1a:2d:9e:af:91:c5:36:9c:dd:27:76:
fa:59:43:2c:0d:3e:76:91:d1:e2:93:41:44:31:5e:
74:bb:72:7b:8f:67:a2:5f:b8:e2:68:08:ff:e2:ac:
ac:b7:ea:32:0d:48:ff:b1:c4:2f:62:78:1a:f9:7c:
24:4c:00:29:b6:31:ab:c5:21:2b:72:ba:a1:08:4a:
2d:57:4b:6b:95:f8:74:e6:aa:9d:8f:2c:10:d3:16:
3b:ab:44:35:f1:43:f1:0a:4a:e2:ad:21:8f:37:53:
29:ef:0d:26:db:ec:97:d5:ea:75:08:f7:d4:31:bd:
e4:c6:e9:1f:2e:a7:22:29:8d:4a:bf:94:b4:68:71:
37:3d:87:9f:cd:64:75:ef:55:e1:65:a8:80:8a:c7:
46:ba:61:1c:be:50:48:98:0d:97:97:af:cd:7d:a4:
7b:ea:c9:3a:af:24:2c:07:12:09:35:6e:1d:b1:c8:
d8:9e:9c:dc:a4:5e:af:32:f3:40:0c:95:5b:b5:44:
f8:29:08:27:72:55:cf:60:92:bd:1d:50:23:03:ef:
b2:92:cd:89:b1:f8:44:8e:24:b5:8a:71:6d:92:0a:
e1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:97:92:AD:D0:C1:03:00:DA:43:6F:1A:74:3D:BF:3C:50:66:5C:28
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/JpeSrdDBAwDaQ28adD2_PFBmXCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:1041::/34
Signature Algorithm: sha256WithRSAEncryption
57:d8:9b:36:08:4f:86:0e:f9:3e:40:a3:25:c3:28:26:64:ba:
14:e5:a6:c0:37:93:52:68:83:bf:80:bf:fb:16:47:27:49:e8:
bf:33:61:70:cc:b4:9a:a5:4b:6f:01:05:72:e9:ba:75:58:46:
25:f7:13:14:09:48:2d:da:24:47:2c:96:29:cf:69:97:17:66:
92:d9:bd:7c:0a:a0:9b:58:86:a7:b5:81:00:1e:92:d5:45:b0:
36:e8:63:80:92:1e:31:15:af:d9:0d:34:71:a1:fb:ce:02:8b:
2f:62:2c:a9:05:8e:17:6f:a6:52:1a:0d:b0:9e:b0:cf:a4:e1:
26:5b:9b:9a:e1:f3:4b:2a:44:60:e0:f3:ed:de:59:be:f9:b0:
ee:cc:4c:8e:bc:c0:12:e2:15:5f:c9:46:ed:69:01:6c:d3:41:
5f:7c:a8:f7:b1:a9:8b:f8:28:90:41:c0:1c:00:3d:45:3b:06:
d2:a2:73:24:be:30:61:4a:38:3d:e3:e4:1b:70:bc:03:49:55:
1c:91:8f:23:1a:dd:e4:ec:6c:ce:41:dd:94:54:ed:63:45:2a:
58:49:be:94:04:39:2e:2e:08:03:39:53:c9:39:be:ac:b2:81:
7f:af:dd:9f:df:af:cf:87:36:1c:73:54:21:bf:00:3e:fd:41:
11:bb:a0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org