Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/jXaU_sBlUbIlo9SOp33NsIh2bzM.roa
File: jXaU_sBlUbIlo9SOp33NsIh2bzM.roa (raw, json)
Hash identifier: jJmv+RjmjrNKyBAbnKiTpGf19TdjrlZhXRA7Hot5I6o=
Subject key identifier: 8D:76:94:FE:C0:65:51:B2:25:A3:D4:8E:A7:7D:CD:B0:88:76:6F:33
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 06457564
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/jXaU_sBlUbIlo9SOp33NsIh2bzM.roa
Signing time: Sat 01 Jan 2022 11:01:06 +0000
ROA not before: Sat 01 Jan 2022 11:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5511
IP address blocks: 185.126.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105215332 (0x6457564)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d7694fec06551b225a3d48ea77dcdb088766f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:51:4d:8c:28:2f:89:4c:bc:4a:0e:3d:c2:1a:
b8:c4:94:c9:17:2a:d9:c2:be:9a:51:52:43:21:0d:
f2:c1:63:e2:12:0f:0b:83:06:a2:33:31:18:a2:ed:
51:e0:b2:54:62:68:01:fc:22:87:db:40:cf:d3:95:
71:8e:d0:a4:c0:90:65:0e:c7:19:f4:25:91:45:f7:
b3:4b:78:8c:6e:5e:c9:61:26:58:2c:41:fa:f6:e4:
9d:95:f7:2a:00:bc:8d:c6:63:5a:71:2d:8f:2a:56:
f8:fe:66:80:97:63:6e:f4:a9:b6:a0:c0:31:31:70:
a7:e6:28:19:20:7e:94:b6:ea:cb:8d:e2:19:71:01:
63:d5:43:f2:91:5d:ba:b2:e6:e5:f4:21:83:a6:c1:
10:d3:49:78:af:e0:28:64:e3:c7:01:3a:57:0d:84:
f3:48:40:6a:eb:d9:79:02:66:15:5e:7e:b8:61:85:
54:77:20:f1:e4:d9:9e:56:b3:30:fc:45:4e:92:69:
16:54:88:ff:14:d8:8d:9e:11:4f:63:e3:6c:3b:a4:
51:64:9f:82:5a:44:2c:00:f1:fc:ac:e1:3e:46:6f:
32:41:1b:bd:03:84:ac:50:a9:22:cb:09:78:fe:cf:
ec:3b:3b:89:10:75:07:5f:52:c9:67:0a:81:fe:c6:
b5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:76:94:FE:C0:65:51:B2:25:A3:D4:8E:A7:7D:CD:B0:88:76:6F:33
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/jXaU_sBlUbIlo9SOp33NsIh2bzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.35.0/24
Signature Algorithm: sha256WithRSAEncryption
02:46:d0:cf:79:c8:da:6f:af:fe:35:c7:70:25:12:30:1e:c9:
78:a8:0f:48:dc:5b:0c:7f:eb:1d:2e:ea:14:8d:67:63:25:9e:
a0:36:5c:0f:55:cb:fc:ce:0d:a4:e4:e9:7d:69:4d:28:92:b5:
4d:61:0b:5b:67:ac:e9:4b:ef:d0:34:8f:ef:2f:a8:3d:c2:e3:
2a:80:a8:1c:46:e9:4c:4e:ff:b5:49:ce:d2:d3:58:d5:59:8d:
bd:81:42:eb:1c:e2:76:f6:45:e0:84:5f:66:db:3c:2d:04:72:
27:71:13:e2:72:f4:ca:ec:e6:53:5c:42:09:37:2f:60:af:f7:
00:f7:ca:96:fc:12:84:72:ca:95:b5:b1:38:a6:ee:68:28:57:
d5:c9:97:19:6b:2d:8d:4a:65:cf:97:69:2d:07:60:69:12:62:
45:2f:49:dc:c1:ee:0e:b9:45:38:8b:2c:46:f5:26:87:c5:90:
89:40:3a:21:4f:43:6a:25:a5:22:4b:d4:14:50:b2:42:b0:48:
ca:3a:84:7c:15:27:33:d0:38:e9:97:32:9b:ca:5e:4c:75:29:
1c:98:c4:ab:b6:de:52:a0:40:23:32:57:47:fa:8b:bc:e4:17:
37:28:b3:19:b3:15:63:05:02:99:9d:e9:ef:1c:83:1c:0e:8d:
e0:5a:4e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:35 2024 by rpki-client on console-ams.rpki-client.org