Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/JGhUgsuSg0EuckRnzblZK9YK-ZM.roa
File: JGhUgsuSg0EuckRnzblZK9YK-ZM.roa (raw, json)
Hash identifier: LVon2jpbeDSVZCFe7cHPn1qKdauFg1QOZWIyesEg/m4=
Subject key identifier: 24:68:54:82:CB:92:83:41:2E:72:44:67:CD:B9:59:2B:D6:0A:F9:93
Certificate issuer: /CN=c2902f769bf681b1039f2cee61e9e0f975e4e56b
Certificate serial: 017EFE
Authority key identifier: C2:90:2F:76:9B:F6:81:B1:03:9F:2C:EE:61:E9:E0:F9:75:E4:E5:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpAvdpv2gbEDnyzuYeng-XXk5Ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/JGhUgsuSg0EuckRnzblZK9YK-ZM.roa
Signing time: Thu 10 Feb 2022 14:11:11 +0000
ROA not before: Thu 10 Feb 2022 14:11:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34359
IP address blocks: 195.225.144.0/22 maxlen: 22
213.109.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98046 (0x17efe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2902f769bf681b1039f2cee61e9e0f975e4e56b
Validity
Not Before: Feb 10 14:11:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24685482cb9283412e724467cdb9592bd60af993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:14:05:25:fc:30:37:10:3e:91:d4:b0:1e:6f:
58:25:91:6e:9b:44:4d:4f:d0:07:59:a3:32:0b:b3:
4b:41:87:43:c6:92:b3:2e:35:56:70:68:77:4b:f3:
da:3a:54:dd:86:21:6a:c4:c7:ac:d4:e8:5b:85:da:
33:86:b1:9a:2d:92:73:e5:a1:4a:22:96:1d:94:f1:
fa:9e:84:61:a2:ae:11:8a:1c:54:da:58:c3:94:86:
8c:1c:76:e1:ee:e7:48:94:c6:16:d5:f3:32:7f:ef:
02:b3:3b:4a:94:26:10:5d:98:f6:a8:36:39:85:69:
be:a4:9d:42:c5:1c:76:2f:17:0f:65:6c:8d:50:92:
bc:ce:9f:2e:b4:0e:f3:a1:e2:bd:05:95:ad:e1:33:
31:ed:07:10:4f:09:d2:a1:49:18:d1:60:a4:e6:ae:
8f:95:d1:a4:20:5d:0b:87:be:b3:43:06:e3:02:7f:
a8:6c:a1:f1:cb:ce:7a:1e:0f:21:8f:02:f2:48:d6:
4f:6f:da:d2:08:de:f6:48:f0:38:7f:8a:47:f3:1b:
15:5d:bc:52:fd:87:a5:29:fe:92:de:f4:62:06:8a:
12:3b:5d:9f:ee:47:01:37:d7:08:97:d4:d8:d6:00:
42:d7:03:af:83:ca:19:f7:c5:6d:4c:fc:e0:c5:fd:
6c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:68:54:82:CB:92:83:41:2E:72:44:67:CD:B9:59:2B:D6:0A:F9:93
X509v3 Authority Key Identifier:
keyid:C2:90:2F:76:9B:F6:81:B1:03:9F:2C:EE:61:E9:E0:F9:75:E4:E5:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpAvdpv2gbEDnyzuYeng-XXk5Ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/JGhUgsuSg0EuckRnzblZK9YK-ZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/wpAvdpv2gbEDnyzuYeng-XXk5Ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.144.0/22
213.109.128.0/20
Signature Algorithm: sha256WithRSAEncryption
50:27:7b:3f:80:e4:3a:0d:1b:bc:2a:b3:08:33:07:bb:6c:0e:
cd:de:8f:0b:de:ef:c2:bb:ca:38:a2:9a:d6:5a:ed:e7:42:4c:
33:26:71:52:f5:40:14:d8:c5:a0:7d:87:52:b5:4c:74:b5:79:
67:b3:0f:00:e4:fe:cf:22:7c:9c:1a:b1:fe:a6:10:4b:7b:5b:
2a:8f:22:0a:ab:c3:40:41:9d:2e:ad:bd:49:d6:61:68:9c:a1:
a0:38:c4:3b:9b:8b:62:4f:5e:ad:4a:f4:70:73:be:d8:7f:6f:
03:bc:83:be:48:3b:fd:8e:9c:ec:18:0f:8c:d9:f6:4c:00:22:
be:22:9a:fa:69:4c:75:d9:b1:47:ca:92:14:8a:01:a0:14:cd:
46:8a:c4:7b:bb:00:c3:43:eb:1b:e8:f4:33:6b:07:13:51:d8:
46:9e:7f:2c:d4:66:47:cc:39:8c:90:52:07:5f:5a:44:9b:b5:
a1:6f:40:cb:93:31:a2:21:e0:a2:0b:82:8a:87:3b:e1:0a:e7:
0a:8c:f5:a7:82:53:a7:bf:6b:dc:f9:8c:eb:49:67:45:24:d5:
29:0f:92:88:a8:05:58:03:82:65:77:bc:f0:40:6e:e1:58:68:
5b:31:cb:68:f0:31:8c:f4:c2:30:39:e1:80:47:7e:f5:06:a3:
44:89:40:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:37 2024 by rpki-client on console-ams.rpki-client.org