Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/J-h6DObXyXZVEmPJjNfGXfFoJg4.roa
File: J-h6DObXyXZVEmPJjNfGXfFoJg4.roa (raw, json)
Hash identifier: Zqrgy/v4c0rIYLvvSrvgBXx+1d5xJT8FHBFKFMBLqfw=
Subject key identifier: 27:E8:7A:0C:E6:D7:C9:76:55:12:63:C9:8C:D7:C6:5D:F1:68:26:0E
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 01829D5D6CCEBBB6D5E05D78F6F0E318E608
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/J-h6DObXyXZVEmPJjNfGXfFoJg4.roa
Signing time: Sun 14 Aug 2022 17:18:41 +0000
ROA not before: Sun 14 Aug 2022 17:18:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.23.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:9d:5d:6c:ce:bb:b6:d5:e0:5d:78:f6:f0:e3:18:e6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: Aug 14 17:18:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27e87a0ce6d7c976551263c98cd7c65df168260e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:79:57:96:c4:4c:fb:a5:c9:eb:11:89:21:9c:
c8:5e:6c:8c:d0:59:2e:5c:09:6b:97:7f:ac:d7:56:
4a:0f:74:ec:66:8d:ea:d3:c5:e7:a9:4b:c8:51:3f:
46:c2:38:59:51:82:14:0d:fc:e3:eb:46:cd:ce:88:
5a:30:aa:85:c3:a7:e5:f2:e5:ed:43:02:fe:b5:44:
2e:0c:77:b8:3d:c1:db:eb:b0:40:6b:1f:8e:2b:86:
be:3a:01:47:0a:f1:ee:d6:7d:21:65:02:8e:70:6a:
f9:10:77:f3:55:cc:36:17:b8:e3:14:b1:c5:23:89:
75:e5:14:31:fd:90:7e:2e:71:8a:b1:e3:08:bf:ab:
cc:3a:82:16:1b:82:5e:9b:94:3e:57:fd:39:a3:64:
cb:c7:58:f2:0e:1b:36:67:65:fc:e1:5a:bc:7c:90:
84:32:bf:b0:27:ee:b6:f9:6a:9f:49:48:48:d9:de:
e2:18:03:29:52:93:cf:36:85:48:81:9e:15:1a:66:
42:38:e2:07:f1:47:d9:6c:83:14:0a:f2:73:bb:7f:
01:dd:2b:64:c5:ea:92:3d:bf:73:19:6d:dc:ea:90:
a5:23:66:b0:eb:4e:8a:72:63:57:0c:c0:4c:e4:ed:
66:ef:b7:2a:9a:ef:67:54:f2:98:d4:2d:6c:c2:3c:
b0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E8:7A:0C:E6:D7:C9:76:55:12:63:C9:8C:D7:C6:5D:F1:68:26:0E
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/J-h6DObXyXZVEmPJjNfGXfFoJg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.5.0/24
Signature Algorithm: sha256WithRSAEncryption
29:62:d1:be:77:0d:2d:02:43:52:be:db:c0:9a:b5:01:03:1c:
58:9a:12:48:ce:93:25:ad:24:84:18:b2:14:2c:1a:d2:8e:d4:
87:93:4f:30:96:fa:bd:3f:e8:ac:6f:d8:ba:68:a7:8d:a1:77:
74:cb:ef:19:94:46:12:a0:19:cb:3c:78:8d:c5:07:ee:5c:a1:
59:b4:6b:5a:85:dc:06:e9:20:55:fd:1f:de:74:5e:23:bd:59:
a1:fd:9d:0e:8e:51:e8:fb:58:2d:76:af:af:f2:0c:54:3a:bc:
32:f4:4c:e0:8a:01:7a:6b:88:8f:0b:b8:45:c7:6c:ac:cf:d2:
00:23:97:f2:a9:92:82:67:82:c8:a3:9b:d7:ec:30:65:86:36:
8b:01:01:44:8d:7a:84:8e:2b:2e:3f:cf:5e:ef:f4:71:5c:bb:
c0:c0:90:41:48:77:09:73:5a:47:36:cc:ef:80:a3:b0:2e:48:
a5:d5:f1:10:d4:0f:e4:1d:bb:f6:3a:ad:d6:c5:33:2a:fe:69:
34:b5:75:64:7d:9c:f1:d1:9d:30:fd:6b:be:67:04:f6:30:b1:
33:f8:7a:7e:e0:27:2e:37:93:ca:8f:26:cd:63:8b:a0:fb:63:
09:8f:db:cf:3b:05:0b:fc:70:a8:63:1a:f6:f3:a5:84:f6:61:
44:89:4e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:26 2024 by rpki-client on console-ams.rpki-client.org