Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Jky1XfsbTmeRnfQSkSmttSnnq0c.roa
File: Jky1XfsbTmeRnfQSkSmttSnnq0c.roa (raw, json)
Hash identifier: Pb3vqIE43S5V0Wm4N6sn8c4ZuLZI1FEmg6z6XxzBoDo=
Subject key identifier: 26:4C:B5:5D:FB:1B:4E:67:91:9D:F4:12:91:29:AD:B5:29:E7:AB:47
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3B5F4550
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Jky1XfsbTmeRnfQSkSmttSnnq0c.roa
Signing time: Wed 06 Apr 2022 13:25:34 +0000
ROA not before: Wed 06 Apr 2022 13:25:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42388
IP address blocks: 144.208.214.232/29 maxlen: 29
213.227.160.0/24 maxlen: 24
188.172.248.0/24 maxlen: 24
213.227.191.0/24 maxlen: 24
217.146.18.0/24 maxlen: 24
217.146.26.216/32 maxlen: 32
188.172.219.64/32 maxlen: 32
185.81.208.0/24 maxlen: 24
188.172.235.188/32 maxlen: 32
217.146.22.170/32 maxlen: 32
213.227.168.222/32 maxlen: 32
2a00:11c0:e:ffff:1::1000/128 maxlen: 128
2a00:11c0:d::1a/128 maxlen: 128
2a05:8900:aa1::/48 maxlen: 48
2a00:11c0:aa1::/48 maxlen: 48
2a00:11c0:63:350::1000/128 maxlen: 128
2a00:11c0:11c0::/48 maxlen: 128
2a00:11c0:1010::/48 maxlen: 48
2a00:11c0:82:359::1000/128 maxlen: 128
2a00:11c0:5:613::1000/128 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 996099408 (0x3b5f4550)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Apr 6 13:25:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=264cb55dfb1b4e67919df4129129adb529e7ab47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:21:ad:7a:95:f4:44:cc:67:48:02:b3:f5:fd:
e4:92:70:b9:60:b9:4c:07:77:de:fc:cb:8c:32:d0:
db:bb:ae:e2:67:54:a5:9c:24:4f:8b:90:86:78:a7:
ea:b7:fa:76:73:09:ee:94:f3:38:08:bf:38:25:33:
ba:fb:e5:7d:dc:74:50:49:8d:91:0c:8b:67:57:2c:
76:1a:15:8a:f9:90:68:28:f7:70:6e:e0:00:ef:83:
fb:74:8f:99:af:67:e0:03:9d:18:49:90:66:ef:83:
62:71:48:27:e4:88:ba:5e:80:68:00:42:18:8b:fe:
3a:44:28:4c:f6:ed:17:d7:28:e0:cc:ed:e4:c4:3c:
38:83:c0:13:f8:53:dc:0b:68:33:f7:13:90:e3:dc:
ed:f4:21:29:6b:ee:da:21:7d:aa:ec:b2:52:7f:4a:
b6:63:78:bb:f0:8c:e4:62:77:2b:e9:a2:da:85:03:
c8:85:77:cc:0b:be:20:6e:95:32:06:72:52:89:4d:
d1:47:3f:90:ee:77:79:86:55:da:c3:ab:ae:f0:00:
96:e5:0d:8c:20:42:e6:83:17:5a:bb:47:fa:9e:27:
1c:5b:63:c5:ec:19:e7:da:e1:67:a0:50:1c:24:87:
81:a0:84:73:97:4b:73:03:e0:e1:8f:cf:fc:d4:6e:
00:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4C:B5:5D:FB:1B:4E:67:91:9D:F4:12:91:29:AD:B5:29:E7:AB:47
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/Jky1XfsbTmeRnfQSkSmttSnnq0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.214.232/29
185.81.208.0/24
188.172.219.64/32
188.172.235.188/32
188.172.248.0/24
213.227.160.0/24
213.227.168.222/32
213.227.191.0/24
217.146.18.0/24
217.146.22.170/32
217.146.26.216/32
IPv6:
2a00:11c0:5:613:0:0:0:1000/128
2a00:11c0:d:0:0:0:0:1a/128
2a00:11c0:e:ffff:1:0:0:1000/128
2a00:11c0:63:350:0:0:0:1000/128
2a00:11c0:82:359:0:0:0:1000/128
2a00:11c0:aa1::/48
2a00:11c0:1010::/48
2a00:11c0:11c0::/48
2a05:8900:aa1::/48
Signature Algorithm: sha256WithRSAEncryption
73:c1:f5:2a:9f:fb:32:0c:01:e8:44:4c:b1:90:e1:dd:14:46:
ad:b1:f7:63:94:de:1f:7d:78:12:7e:2e:be:e3:7f:36:b1:5f:
03:cf:5b:5e:28:a5:22:a6:f8:c6:58:a7:51:cb:55:60:f8:f5:
cc:7a:b1:e4:f5:6d:70:d5:4c:20:88:99:43:60:75:29:47:ca:
d7:28:a2:50:61:39:19:31:08:e8:17:57:9c:22:3d:7e:51:0b:
96:e2:82:3b:26:56:db:e2:f1:3f:54:62:6e:35:87:fc:f7:3b:
46:3b:d8:bd:52:71:ad:dd:be:06:03:cb:53:a9:31:ea:4d:98:
f4:f6:6f:1e:06:13:32:c9:5e:e7:f3:53:8a:7d:ef:ed:fb:4b:
6c:20:4f:d5:39:f1:d5:5d:c9:32:43:52:10:10:d0:36:fd:4d:
7a:f3:97:c9:1b:5b:f1:9e:d4:48:2b:5a:84:c4:bb:ff:d1:2f:
ae:5f:d2:c4:d3:96:f8:f5:e4:66:85:e6:bc:f2:67:e5:39:2d:
f2:2b:a9:d9:2a:0c:51:cd:de:b3:42:cc:3a:c0:ea:63:bc:db:
34:54:2e:a7:95:0a:01:ad:8c:71:8f:61:57:5f:ed:96:10:16:
88:4f:ee:c7:4c:f6:76:e2:00:f9:c6:b1:4c:ba:95:d7:10:0b:
ec:5c:80:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org