Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqNp9eCNM4Uz6N3JZ2t1qEWXHZA.roa
File: JqNp9eCNM4Uz6N3JZ2t1qEWXHZA.roa (raw, json)
Hash identifier: WT3aGuw7Vw0FWwytH8Wr6GxtiSmFl8npCM7YFsKVzuk=
Subject key identifier: 26:A3:69:F5:E0:8D:33:85:33:E8:DD:C9:67:6B:75:A8:45:97:1D:90
Certificate issuer: /CN=26a5aa918cbfeb3e12997f33890feb258907b343
Certificate serial: 04D9B37F
Authority key identifier: 26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqNp9eCNM4Uz6N3JZ2t1qEWXHZA.roa
Signing time: Tue 07 Jun 2022 03:16:21 +0000
ROA not before: Tue 07 Jun 2022 03:16:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48760
IP address blocks: 185.84.136.0/22 maxlen: 24
195.62.12.0/23 maxlen: 24
2a07:1cc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81376127 (0x4d9b37f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26a5aa918cbfeb3e12997f33890feb258907b343
Validity
Not Before: Jun 7 03:16:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26a369f5e08d338533e8ddc9676b75a845971d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f2:bb:1c:ee:90:c3:1a:b8:fc:53:8b:2b:fd:
7f:ad:ef:b1:c3:23:db:28:c0:d2:87:3b:b3:cd:fa:
90:02:a7:63:7a:c1:e4:94:fb:66:f5:c9:68:5c:6f:
73:ba:60:1d:e8:49:54:8b:1d:c8:9e:e6:f2:16:3f:
92:45:5c:05:3c:35:68:f2:ec:28:b7:bd:cf:d3:91:
2e:3d:35:e0:4e:f8:7d:87:d0:4e:e6:2d:3e:3e:67:
ad:d0:c1:4e:2b:1f:6f:b4:b7:5d:e0:14:83:93:5b:
cf:43:03:da:f5:c5:71:1f:c6:7f:dc:f7:01:42:e2:
a1:a0:67:b2:b0:5c:d4:ee:4e:a7:01:e0:c3:4e:dc:
8e:37:4d:5c:ce:a4:e9:af:72:2d:d9:54:5d:a5:6a:
27:bd:9d:1d:0f:a3:4a:43:f1:a5:ab:d9:93:ff:92:
9d:d3:63:48:5d:49:7b:41:c0:39:17:01:bd:17:87:
5a:6c:68:d2:72:d0:56:7e:8e:91:11:93:7b:ef:b0:
32:e5:27:1a:cc:53:0a:f1:21:76:2d:1e:93:ae:c7:
c9:39:9b:70:60:ec:71:22:74:ff:16:9d:ea:1b:d6:
2b:63:45:37:73:0b:84:a8:0f:4d:f3:68:b4:66:b9:
9b:b4:f7:b6:31:a4:47:06:c7:6f:04:90:3e:66:f2:
c0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A3:69:F5:E0:8D:33:85:33:E8:DD:C9:67:6B:75:A8:45:97:1D:90
X509v3 Authority Key Identifier:
keyid:26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqNp9eCNM4Uz6N3JZ2t1qEWXHZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.136.0/22
195.62.12.0/23
IPv6:
2a07:1cc0::/29
Signature Algorithm: sha256WithRSAEncryption
97:19:2f:ea:1f:14:27:ac:85:22:6e:74:6d:ea:e3:57:46:48:
67:46:9b:77:6a:48:00:40:82:1a:52:6d:3b:63:6c:39:4f:24:
d3:9d:61:c4:40:5c:91:d4:e3:a2:5a:dd:eb:ff:e3:99:91:9c:
dd:f7:45:65:a0:30:59:9f:ea:ba:4f:31:15:aa:96:c3:a1:78:
cd:4a:2e:23:16:79:47:35:71:ad:88:6e:0c:b9:04:e7:40:b8:
5d:eb:35:40:f4:40:b7:1a:1f:0c:d9:62:41:d1:9f:66:fd:00:
7b:78:5b:70:ec:95:69:3a:58:87:41:75:90:03:9f:6e:2f:9c:
66:a6:72:bd:de:44:34:90:8f:b1:d4:13:fc:52:36:89:e1:a8:
8f:6d:39:d8:30:1b:3d:6c:cc:dd:5e:c6:3d:1f:f8:b0:c5:12:
63:ec:1e:7d:f3:a3:57:d0:eb:26:1b:b9:b3:dd:e8:41:20:db:
cf:b8:f5:c3:83:69:4f:ed:2b:21:98:09:8b:4d:d6:69:3b:70:
4e:85:7c:f5:53:f8:55:19:bb:3c:d8:25:1c:80:a3:89:e8:a8:
22:ff:9e:ae:bd:2e:48:30:a6:b7:15:46:14:62:0b:96:2a:84:
fc:e1:e0:39:96:93:44:e7:0d:00:33:eb:a7:27:b2:c3:34:e2:
a4:3b:20:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:03 2023 by rpki-client on console-fra.rpki-client.org