Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/JAa96_8EAxSVK94mcoQj0lsDlIU.roa
File: JAa96_8EAxSVK94mcoQj0lsDlIU.roa (raw, json)
Hash identifier: W2jUeueUbSGYIErFpM24k0zF+ipGZFyWDhk+yLYaYDU=
Subject key identifier: 24:06:BD:EB:FF:04:03:14:95:2B:DE:26:72:84:23:D2:5B:03:94:85
Certificate issuer: /CN=5140b5cb5986084126f68d6032316d3b1b57696e
Certificate serial: 0185304B66D9608886A6E11B5C71203D0147
Authority key identifier: 51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/JAa96_8EAxSVK94mcoQj0lsDlIU.roa
Signing time: Tue 20 Dec 2022 16:08:45 +0000
ROA not before: Tue 20 Dec 2022 16:08:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199462
IP address blocks: 185.101.78.0/24 maxlen: 24
185.101.77.0/24 maxlen: 24
185.101.76.0/24 maxlen: 24
185.101.79.0/24 maxlen: 24
2a06:1b87:400::/48 maxlen: 48
2a06:1b87:500::/48 maxlen: 48
2a06:1b87:300::/48 maxlen: 48
2a06:1b87::/32 maxlen: 32
2001:67c:11bc::/48 maxlen: 48
2a06:1b80::/29 maxlen: 29
2a06:1b86::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:4b:66:d9:60:88:86:a6:e1:1b:5c:71:20:3d:01:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5140b5cb5986084126f68d6032316d3b1b57696e
Validity
Not Before: Dec 20 16:08:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2406bdebff040314952bde26728423d25b039485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3f:fd:e0:41:c8:14:30:b9:c3:e4:16:62:9b:
a5:94:2e:b1:2e:37:e7:55:66:ff:d6:3b:b2:dd:d1:
13:21:66:63:7d:62:13:e2:e6:de:b0:a4:1b:d4:13:
2a:e0:ac:69:52:77:bc:c7:33:e9:67:c4:2e:5b:91:
cd:04:27:d5:20:00:ae:8b:04:a7:06:90:3f:6b:9f:
8a:80:28:20:41:47:0e:ae:94:cc:e1:77:d4:9d:e6:
98:18:41:e3:f3:ca:e6:78:7d:fc:b7:c3:67:0c:27:
88:b0:94:f3:9c:43:90:ee:f0:a5:5e:24:30:03:52:
8a:5f:60:bc:9d:2a:0d:36:63:08:e8:55:21:ee:60:
89:26:88:e2:6f:b8:1e:b4:87:a8:34:7c:9b:68:93:
8f:a8:5e:3b:bc:d2:c5:a8:ad:81:26:4a:d6:69:de:
f4:78:fb:5e:a7:63:13:92:f7:7b:50:32:97:79:ca:
95:99:4d:36:ba:9d:d2:f0:37:7b:2a:92:3a:ee:5c:
32:28:24:ca:3d:04:30:b4:79:03:ac:4e:d7:c1:96:
95:42:b5:81:bd:88:3f:c3:03:3d:52:1b:80:50:1d:
5f:c0:6b:36:93:05:f4:bb:35:5b:49:7d:a6:4e:9f:
6c:33:44:29:d7:d8:bb:f1:ff:ca:f3:a8:ee:17:0f:
58:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:06:BD:EB:FF:04:03:14:95:2B:DE:26:72:84:23:D2:5B:03:94:85
X509v3 Authority Key Identifier:
keyid:51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/JAa96_8EAxSVK94mcoQj0lsDlIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/UUC1y1mGCEEm9o1gMjFtOxtXaW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.76.0/22
IPv6:
2001:67c:11bc::/48
2a06:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
67:85:ca:c9:22:5d:b4:04:e4:86:9b:7d:5e:62:91:54:5e:dd:
1e:c0:dd:87:2f:6a:f5:77:6d:a6:58:0f:17:44:99:cf:2a:ee:
77:8b:fb:2d:f7:df:80:e3:ec:d7:d9:f4:5c:1a:9b:4c:db:3f:
bb:5f:ae:bd:76:76:ae:a3:14:64:cd:47:3d:d5:13:01:95:0e:
b8:14:ee:a4:fc:47:d4:28:31:75:26:95:54:8c:66:8c:97:d3:
d7:96:d5:9a:ca:e8:35:58:2f:6d:f0:31:3b:7a:97:d1:23:04:
68:cc:84:cb:ca:fd:29:d5:25:62:37:62:3c:a8:43:09:97:cb:
64:c3:61:3b:0b:98:75:fe:de:10:e2:cc:ae:b1:44:6b:da:4d:
6b:ed:1c:28:06:36:16:e6:74:28:61:75:5e:da:25:90:2d:67:
da:d9:8c:6d:a7:db:80:9d:3d:83:f9:03:89:1c:85:a0:de:36:
fd:14:32:76:6e:c7:ce:ae:18:17:67:91:69:62:1c:a7:2b:62:
0f:0f:a7:54:9e:2d:08:0b:45:6c:cc:22:fc:e9:b1:3b:94:c9:
4e:9e:c3:96:bf:0d:d6:16:4c:e2:34:80:64:1e:61:14:e5:ab:
5d:84:e9:34:b6:50:f3:49:ef:cf:84:4f:05:46:91:42:9e:d4:
55:01:61:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:18 2024 by rpki-client on console-fra.rpki-client.org