Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/JryK52pl_EqxrxtC04GWNbxn1UU.roa
File: JryK52pl_EqxrxtC04GWNbxn1UU.roa (raw, json)
Hash identifier: Ja2WfEz2pi3NLHE7Xe8/kbKY5zip/4b1g9+Gckq8oFM=
Subject key identifier: 26:BC:8A:E7:6A:65:FC:4A:B1:AF:1B:42:D3:81:96:35:BC:67:D5:45
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 06AFC074
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/JryK52pl_EqxrxtC04GWNbxn1UU.roa
Signing time: Wed 01 Jun 2022 11:23:20 +0000
ROA not before: Wed 01 Jun 2022 11:23:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204035
IP address blocks: 37.228.132.0/24 maxlen: 24
37.228.134.0/24 maxlen: 24
185.101.92.0/22 maxlen: 22
37.228.151.0/24 maxlen: 24
37.228.148.0/24 maxlen: 24
185.116.156.0/22 maxlen: 22
185.116.156.0/24 maxlen: 24
185.116.157.0/24 maxlen: 24
185.116.158.0/24 maxlen: 24
193.56.156.0/24 maxlen: 24
185.107.192.0/23 maxlen: 23
185.107.192.0/22 maxlen: 22
185.107.193.0/24 maxlen: 24
194.125.251.0/24 maxlen: 24
194.125.248.0/22 maxlen: 22
194.125.250.0/24 maxlen: 24
193.46.24.0/22 maxlen: 22
185.245.168.0/22 maxlen: 22
2a06:7f80::/29 maxlen: 29
2a06:1c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112181364 (0x6afc074)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Jun 1 11:23:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26bc8ae76a65fc4ab1af1b42d3819635bc67d545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:14:63:5c:c2:ef:58:c4:38:f2:e4:5f:06:
aa:af:b4:38:7c:a8:79:18:bf:2e:7e:db:ea:97:ed:
90:fc:5d:47:10:ba:66:12:4d:85:24:ed:11:a5:9d:
15:5d:f5:60:39:6e:08:bb:84:97:3d:bb:1d:66:0f:
13:34:05:23:00:f6:be:c5:66:8c:00:95:53:c7:d7:
ac:98:fe:55:c7:a7:3b:fa:70:89:23:08:f1:32:f7:
ba:bd:e4:0c:fb:62:c3:23:a6:d8:3e:25:19:e2:97:
fa:b5:bc:3d:82:f6:bb:ca:ee:c7:2c:20:68:66:73:
f4:61:ea:25:a3:aa:99:b2:e5:fc:74:89:84:14:dc:
74:00:1b:a5:d2:d7:cf:7f:0e:e1:b0:2e:ce:39:64:
1e:68:ea:fe:f7:67:47:4a:3f:b5:35:f5:3b:a0:31:
9e:3b:cf:a6:0b:2f:c0:cc:a5:d1:17:5e:50:43:1b:
7f:91:59:38:81:12:4f:41:b6:f8:68:4b:56:17:95:
d9:a1:e0:6b:29:ca:52:fa:c4:53:b9:0c:57:04:1f:
eb:fb:25:56:26:61:02:5c:10:b4:a5:06:cf:59:ea:
20:5a:94:96:33:ff:15:8f:1a:ef:fa:f6:85:38:17:
23:fa:73:38:f9:44:5f:7d:fe:50:d1:2a:cf:bb:0f:
f0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:BC:8A:E7:6A:65:FC:4A:B1:AF:1B:42:D3:81:96:35:BC:67:D5:45
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/JryK52pl_EqxrxtC04GWNbxn1UU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.132.0/24
37.228.134.0/24
37.228.148.0/24
37.228.151.0/24
185.101.92.0/22
185.107.192.0/22
185.116.156.0/22
185.245.168.0/22
193.46.24.0/22
193.56.156.0/24
194.125.248.0/22
IPv6:
2a06:1c40::/29
2a06:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
21:f5:a0:f1:af:da:92:24:99:23:3b:5f:06:73:a8:38:a2:97:
bf:aa:fb:f1:eb:0e:14:72:87:04:82:3e:72:11:b1:25:19:02:
d8:a7:5f:db:61:23:d9:2d:23:1d:e4:74:c1:d8:11:39:7a:a6:
c9:45:96:42:ca:e6:69:5b:72:b2:22:b7:a7:c2:83:f8:c4:af:
d5:02:56:92:35:3e:3f:75:e3:c8:b2:e3:5e:d2:41:2f:4c:c8:
37:6a:a5:f9:2f:7d:75:6f:a3:12:81:e8:64:ef:69:df:a4:ef:
5e:e4:fd:56:5f:d2:b4:5d:f0:d8:d8:de:47:b7:9c:6b:85:26:
fa:e8:a0:75:6e:9d:2d:e5:e3:e4:ff:00:33:a9:54:46:d6:1f:
f2:e7:6a:0b:6e:3a:db:60:87:3b:db:f4:54:f0:bd:ba:61:ef:
61:d9:ad:b9:87:22:1f:e9:73:bf:88:fc:5e:a5:6d:c9:19:2a:
6a:55:c2:66:10:ab:7d:1f:e9:b7:d1:fe:1c:b4:7f:74:f0:bb:
42:6f:15:8a:23:21:af:17:33:93:89:94:92:c3:e6:b3:e1:3b:
11:e7:4c:a9:0d:11:c0:0c:50:47:5f:98:cd:2b:ec:d3:73:f7:
d6:10:5d:3a:63:73:19:bf:52:00:2f:83:9d:33:d9:58:f0:96:
cd:5a:d6:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:42 2024 by rpki-client on console-ams.rpki-client.org