Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/8246eb-8469-42df-a08f-90c421f55adb/1/jpwfbuwHyvlH45BsuO-tLsk7L0A.roa
File: jpwfbuwHyvlH45BsuO-tLsk7L0A.roa (raw, json)
Hash identifier: CeAvl3/dFZ+j5+BhK1dsnlBFrU0zEtudfGwnj47cXdc=
Subject key identifier: 8E:9C:1F:6E:EC:07:CA:F9:47:E3:90:6C:B8:EF:AD:2E:C9:3B:2F:40
Certificate issuer: /CN=7f9b4cfdc9b0d9e3c31e0ebb81e6f1b1cbbdc9e4
Certificate serial: 018235773D524AE84A46B357D58EC577CC8A
Authority key identifier: 7F:9B:4C:FD:C9:B0:D9:E3:C3:1E:0E:BB:81:E6:F1:B1:CB:BD:C9:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f5tM_cmw2ePDHg67gebxscu9yeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/8246eb-8469-42df-a08f-90c421f55adb/1/jpwfbuwHyvlH45BsuO-tLsk7L0A.roa
Signing time: Mon 25 Jul 2022 13:06:23 +0000
ROA not before: Mon 25 Jul 2022 13:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59874
IP address blocks: 185.175.192.0/24 maxlen: 24
185.175.195.0/24 maxlen: 24
185.175.193.0/24 maxlen: 24
185.175.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:35:77:3d:52:4a:e8:4a:46:b3:57:d5:8e:c5:77:cc:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f9b4cfdc9b0d9e3c31e0ebb81e6f1b1cbbdc9e4
Validity
Not Before: Jul 25 13:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e9c1f6eec07caf947e3906cb8efad2ec93b2f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6c:fd:a5:c9:4b:09:ab:d0:67:dd:17:74:23:
5d:6a:de:e6:0b:97:4a:e0:e4:55:f2:38:a4:b9:18:
9d:7e:53:4c:64:8e:14:43:ee:05:77:0a:d5:f4:86:
c6:d7:43:30:e0:1e:cf:4a:5d:6c:11:49:e3:1d:78:
2f:fa:40:56:dd:2f:4e:78:66:c5:0d:11:4f:a2:c2:
d1:94:f3:5e:f6:66:74:c0:df:79:2b:7b:57:61:11:
5d:f1:ac:63:54:bc:56:44:fa:6a:fa:8e:db:1b:63:
7b:8e:da:a1:88:1c:6b:e7:b8:bc:76:6f:27:10:f5:
f2:53:64:a4:47:20:70:98:b9:43:02:a1:c5:68:28:
97:83:ff:ce:c0:dd:7b:53:6d:3f:04:e6:dc:d2:04:
c1:fe:ea:be:8b:9f:eb:3e:eb:ef:30:a6:5e:44:f4:
40:ee:f7:03:46:50:06:3a:7b:9c:da:98:40:2b:b9:
a6:5d:6f:d4:40:97:79:55:44:c9:00:88:54:de:5c:
e3:51:b8:7e:8b:04:78:17:a2:70:b5:8a:37:81:02:
14:aa:12:a8:58:2b:5f:07:d1:87:44:a4:9d:ac:ca:
a7:1d:1b:38:3a:1b:5c:61:98:b7:bf:6a:03:3d:5a:
10:5c:c3:41:6f:cd:b7:94:83:67:bf:30:33:4c:c5:
57:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:9C:1F:6E:EC:07:CA:F9:47:E3:90:6C:B8:EF:AD:2E:C9:3B:2F:40
X509v3 Authority Key Identifier:
keyid:7F:9B:4C:FD:C9:B0:D9:E3:C3:1E:0E:BB:81:E6:F1:B1:CB:BD:C9:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5tM_cmw2ePDHg67gebxscu9yeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8246eb-8469-42df-a08f-90c421f55adb/1/jpwfbuwHyvlH45BsuO-tLsk7L0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8246eb-8469-42df-a08f-90c421f55adb/1/f5tM_cmw2ePDHg67gebxscu9yeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.192.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:c9:20:5e:f7:e3:c0:4b:86:3f:ec:c8:0b:f7:0e:26:17:65:
cd:47:f6:98:7c:67:8a:f3:ac:ed:35:cb:25:93:a2:43:25:87:
8f:d6:ce:17:3e:a3:c2:1f:ed:56:0c:ce:5d:5e:a3:f5:e0:ae:
df:0f:2b:1a:d4:b4:46:c4:7d:60:12:62:64:49:ef:39:78:a5:
6d:ff:d6:1b:6b:6a:05:b2:f3:18:e6:68:0e:bb:d9:d4:ae:e3:
b8:6a:14:f9:ee:12:78:43:b0:7d:65:b6:af:10:69:67:13:ee:
36:ad:91:d8:51:fa:56:b1:5c:0f:c0:06:66:79:bb:76:6e:bd:
96:96:3e:15:2b:54:7a:e8:22:66:a9:a4:5a:3c:bc:db:46:ab:
56:aa:a3:75:ac:bc:19:b2:db:06:97:a2:61:a0:21:c9:6b:9e:
57:16:4b:83:fb:b7:64:65:59:ea:a6:ce:73:06:6b:89:02:76:
9c:9c:e3:3b:82:61:5d:3c:11:28:e9:f7:81:68:72:71:fc:07:
99:21:dd:a0:72:5e:f5:bc:87:09:6c:ca:a9:a9:c7:28:af:19:
fa:bb:cd:78:26:b6:f2:b6:a8:6b:71:c0:de:6f:09:30:5d:3b:
80:ff:ed:3a:dc:e1:89:d3:9e:58:2b:03:42:31:cd:68:27:78:
2c:8e:d1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:59 2023 by rpki-client on console-fra.rpki-client.org