Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/JwMf1ZUYaE7uLqRr2JpjFRWNc0M.roa
File: JwMf1ZUYaE7uLqRr2JpjFRWNc0M.roa (raw, json)
Hash identifier: Rmiod2MopuziFnybO5SkfEHLN8Q0/mtKWFtDznwRrVM=
Subject key identifier: 27:03:1F:D5:95:18:68:4E:EE:2E:A4:6B:D8:9A:63:15:15:8D:73:43
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 02A0534D
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/JwMf1ZUYaE7uLqRr2JpjFRWNc0M.roa
Signing time: Thu 10 Mar 2022 07:56:00 +0000
ROA not before: Thu 10 Mar 2022 07:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.132.187.0/24 maxlen: 24
185.212.204.0/23 maxlen: 24
185.212.206.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44061517 (0x2a0534d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Mar 10 07:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27031fd59518684eee2ea46bd89a6315158d7343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:50:64:99:fa:40:87:6c:2a:b0:36:0e:e8:79:
79:4c:fd:0e:bb:c2:24:03:bb:e3:df:3f:38:fb:af:
59:c4:2d:2d:71:ad:05:06:e9:15:1b:2f:6b:b5:68:
4f:1e:71:e4:36:84:f9:c1:60:cb:d0:ed:bf:94:a6:
5d:f0:93:fb:6f:2e:47:9f:36:cb:d4:a5:89:58:bc:
44:7a:19:d5:c7:6d:b7:bc:01:71:eb:9c:d9:a4:73:
17:d7:31:12:8d:98:30:fe:2e:7b:0b:71:c2:ae:99:
03:ab:ce:63:6e:83:a4:d3:47:25:39:dc:83:13:38:
53:22:fd:8e:2b:41:31:20:0c:9f:47:93:55:65:15:
b7:df:f3:81:b1:98:2a:7b:9b:1d:b5:58:3a:b1:8c:
a8:8c:fd:3e:16:a1:12:27:1f:88:bc:6f:5f:95:fb:
55:e7:c0:e4:aa:33:64:0d:7a:59:85:85:cf:9d:e5:
ca:61:67:18:04:5a:fa:6c:eb:d8:3a:fc:4a:48:b4:
7f:fc:8c:fc:4a:91:91:27:56:78:40:c8:39:9e:44:
f0:bb:29:9c:11:5f:f8:8c:57:02:4c:9f:20:50:b0:
4d:28:99:79:43:d1:83:f1:52:70:c8:3e:34:79:c7:
84:8c:ef:83:57:64:62:c8:0f:43:8e:96:68:5a:74:
b1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:03:1F:D5:95:18:68:4E:EE:2E:A4:6B:D8:9A:63:15:15:8D:73:43
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/JwMf1ZUYaE7uLqRr2JpjFRWNc0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.187.0/24
185.212.204.0/22
Signature Algorithm: sha256WithRSAEncryption
47:ef:2a:a7:c8:15:67:2e:49:b1:5d:04:e3:39:e7:64:77:f2:
7b:61:0a:6e:60:1b:45:6b:d5:78:b1:1f:e6:58:41:49:a9:dc:
22:03:3f:71:56:30:88:08:30:2f:eb:75:fb:a2:bd:6e:28:9b:
cc:cd:33:96:a7:fb:5f:62:ff:a6:f8:fd:87:be:1c:e7:fe:58:
35:16:f0:fe:fc:82:ed:2b:d6:64:ab:2d:83:5c:c7:a9:5b:3c:
cd:9f:82:0a:3e:1c:c4:b3:6b:4e:78:7f:f1:27:9f:43:6e:28:
65:f0:4a:a8:2d:6f:d9:87:f0:63:06:7d:11:bb:27:3f:3c:59:
2f:07:90:44:f4:09:7b:1a:ab:8e:a1:41:f9:59:6e:6e:c4:89:
d9:d3:85:41:b8:fe:6c:6f:0d:ea:98:73:63:1e:23:bb:ec:5a:
8c:9b:27:4c:25:65:e5:25:5e:b3:30:9d:14:56:d7:2e:e7:13:
bd:69:e3:b5:bc:67:3b:23:5a:3f:c5:18:22:03:35:3d:77:99:
2e:09:10:a5:53:a7:c9:e7:fe:10:75:13:c2:0d:35:cd:e8:44:
67:3a:bc:c9:08:2a:b6:00:5a:11:32:3b:38:47:c3:a2:3d:61:
ef:70:f5:eb:2b:2d:65:27:9c:89:de:0f:42:e4:34:8d:7e:0f:
da:ce:b6:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:39 2023 by rpki-client on console-ams.rpki-client.org