Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/JzUg_GTOtFP9wMQhmQCAb6_yZgM.roa
File: JzUg_GTOtFP9wMQhmQCAb6_yZgM.roa (raw, json)
Hash identifier: J8J0jSDWnH2QLs4Ic0rU/I4o4cvsikm2VYySnhG/f40=
Subject key identifier: 27:35:20:FC:64:CE:B4:53:FD:C0:C4:21:99:00:80:6F:AF:F2:66:03
Certificate issuer: /CN=4f123e248e6ec0368e0712345f726d71f60f826b
Certificate serial: 0D3F3145
Authority key identifier: 4F:12:3E:24:8E:6E:C0:36:8E:07:12:34:5F:72:6D:71:F6:0F:82:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxI-JI5uwDaOBxI0X3JtcfYPgms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/JzUg_GTOtFP9wMQhmQCAb6_yZgM.roa
Signing time: Fri 25 Feb 2022 11:13:01 +0000
ROA not before: Fri 25 Feb 2022 11:13:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201597
IP address blocks: 185.66.92.0/22 maxlen: 22
185.232.252.0/22 maxlen: 22
185.232.254.0/24 maxlen: 24
2a05:680::/29 maxlen: 29
2a05:687::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222245189 (0xd3f3145)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f123e248e6ec0368e0712345f726d71f60f826b
Validity
Not Before: Feb 25 11:13:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=273520fc64ceb453fdc0c4219900806faff26603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:37:07:58:b1:d9:b4:77:84:57:a0:a5:31:b3:
40:56:c6:d0:6b:a2:66:af:b6:5c:64:6d:45:2f:a2:
ba:7f:67:5c:d3:3a:66:09:86:53:bd:a3:bc:55:48:
6f:4b:9c:e2:76:88:e7:22:13:16:a9:3d:2b:82:73:
6d:e3:77:8a:83:8a:18:a3:31:59:0a:6d:da:a0:af:
b3:24:c5:53:23:7d:aa:ea:b8:1b:22:95:67:78:4c:
b3:43:53:71:11:a9:e3:30:4b:a7:4b:df:62:7b:7f:
a7:fb:99:63:0f:a4:94:a7:93:da:95:38:ed:55:14:
34:10:2c:17:be:29:4a:79:f6:ee:d1:d1:c8:26:ce:
8e:3c:a4:4c:ac:4f:61:c4:d9:44:e9:bb:15:7e:dd:
46:9d:2f:0e:35:49:ed:a9:73:d7:62:e6:6a:b9:d7:
05:81:9c:c4:87:0a:80:4f:09:c5:fc:0b:27:d6:f4:
87:d9:6e:63:6b:c3:be:db:b0:7b:43:ff:4e:08:b5:
7a:0e:d3:be:6b:88:fb:d3:e3:68:03:6b:b5:cf:12:
f1:65:ee:0c:b8:c8:a2:d7:ac:5c:5e:e3:07:16:09:
31:2b:29:59:47:79:0c:a8:83:5b:a1:d1:55:b0:7d:
87:1c:c1:e4:df:3b:7d:c4:57:c9:5e:e4:79:7f:45:
02:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:35:20:FC:64:CE:B4:53:FD:C0:C4:21:99:00:80:6F:AF:F2:66:03
X509v3 Authority Key Identifier:
keyid:4F:12:3E:24:8E:6E:C0:36:8E:07:12:34:5F:72:6D:71:F6:0F:82:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxI-JI5uwDaOBxI0X3JtcfYPgms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/JzUg_GTOtFP9wMQhmQCAb6_yZgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/TxI-JI5uwDaOBxI0X3JtcfYPgms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.92.0/22
185.232.252.0/22
IPv6:
2a05:680::/29
Signature Algorithm: sha256WithRSAEncryption
af:09:20:19:02:6a:82:49:ed:d3:86:83:c6:4f:35:c8:f5:33:
73:5d:2e:37:16:c9:d1:4f:2f:ee:f2:d5:8d:97:4f:1b:ec:d6:
4f:39:46:99:fe:d5:eb:5c:60:1b:1b:22:ce:f1:f0:28:f7:56:
79:2d:b6:67:c5:de:b7:ed:dd:e4:c4:e0:13:29:72:42:4b:70:
a4:b6:c1:14:a7:33:f0:80:0f:91:b9:dd:2b:22:ba:1d:37:e3:
08:49:d0:de:3a:66:7f:67:40:39:03:89:6f:2a:9d:dd:89:28:
e8:2c:ec:15:b2:e3:be:db:30:0a:e7:a8:ad:45:f7:0b:86:bc:
39:d3:4c:d9:1b:09:ed:e7:3f:d8:46:ae:ec:e6:50:33:f3:e4:
00:19:e4:e5:7b:bd:96:ab:e7:7b:37:37:4d:4e:db:4e:bd:03:
0d:8b:6b:ff:f5:4e:a5:96:3a:66:06:fb:41:15:7f:be:a1:87:
04:91:22:8e:84:7a:1b:5e:b6:fc:e7:3e:5e:07:10:99:cc:97:
20:79:a4:6d:4b:47:14:63:82:8e:59:c7:88:1d:27:68:3c:4a:
d7:68:c4:ff:14:7c:3f:99:58:34:44:fe:da:bc:63:0a:3c:61:
dd:4e:9f:39:1d:5a:65:47:f7:b7:f7:00:24:28:6f:e9:3e:c6:
00:07:85:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:20 2024 by rpki-client on console-ams.rpki-client.org