Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/JGyyBZy4PXU7AZqoWYYPW1ZwTEA.roa
File: JGyyBZy4PXU7AZqoWYYPW1ZwTEA.roa (raw, json)
Hash identifier: 99O5Q46twDTuCpBitMgkYquwYZOn5B/gN+D7zTWQmJM=
Subject key identifier: 24:6C:B2:05:9C:B8:3D:75:3B:01:9A:A8:59:86:0F:5B:56:70:4C:40
Certificate issuer: /CN=d617ad35ef270efb14271357f3a675e87566bf3a
Certificate serial: 0D1D367F
Authority key identifier: D6:17:AD:35:EF:27:0E:FB:14:27:13:57:F3:A6:75:E8:75:66:BF:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hetNe8nDvsUJxNX86Z16HVmvzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/JGyyBZy4PXU7AZqoWYYPW1ZwTEA.roa
Signing time: Sat 01 Jan 2022 04:51:19 +0000
ROA not before: Sat 01 Jan 2022 04:51:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202909
IP address blocks: 185.227.88.0/22 maxlen: 24
185.209.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220018303 (0xd1d367f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d617ad35ef270efb14271357f3a675e87566bf3a
Validity
Not Before: Jan 1 04:51:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=246cb2059cb83d753b019aa859860f5b56704c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1c:29:95:52:0d:3f:41:87:31:18:ca:8f:fa:
fc:90:12:e4:34:ee:0d:98:33:ec:4b:b0:4b:5c:5e:
c6:d8:e7:e9:49:df:f0:89:46:2f:d5:81:04:d2:97:
b1:ad:8f:a8:c9:7c:92:19:a7:9c:82:f2:e2:e3:14:
3c:53:8f:13:54:4d:5b:de:1a:92:a2:af:f0:5b:d1:
a6:40:ed:8a:45:cd:e6:32:11:67:24:88:0a:43:27:
9e:ad:20:48:05:8d:f5:c0:bb:8c:78:32:68:ae:17:
7e:c6:b7:f0:48:6f:12:6b:85:21:1a:17:fa:06:d9:
e9:ec:0e:f3:11:fd:56:18:60:b5:5d:a9:6e:f0:7d:
12:c5:04:06:98:65:a3:15:32:b6:26:74:03:d3:28:
6e:16:6d:11:40:79:6e:fa:c6:2e:f7:60:3c:f0:ff:
84:fb:2a:04:3f:fd:81:10:9e:a9:8a:16:95:f2:ea:
94:85:74:da:83:dc:84:28:0b:3e:5a:2c:87:a3:90:
29:8d:b5:26:66:ef:46:2c:69:9d:5b:0d:81:aa:ce:
92:32:f1:59:58:51:ec:b7:56:df:1a:d1:ed:eb:ff:
10:f6:aa:76:7f:3a:69:60:d7:75:85:ca:f0:37:45:
55:b7:40:2a:98:d9:78:bc:9e:d3:89:9f:99:8f:95:
a3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6C:B2:05:9C:B8:3D:75:3B:01:9A:A8:59:86:0F:5B:56:70:4C:40
X509v3 Authority Key Identifier:
keyid:D6:17:AD:35:EF:27:0E:FB:14:27:13:57:F3:A6:75:E8:75:66:BF:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hetNe8nDvsUJxNX86Z16HVmvzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/JGyyBZy4PXU7AZqoWYYPW1ZwTEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/1hetNe8nDvsUJxNX86Z16HVmvzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.204.0/22
185.227.88.0/22
Signature Algorithm: sha256WithRSAEncryption
38:82:97:b5:91:de:14:47:30:b3:9e:27:1d:10:98:f5:8b:07:
a1:f7:5a:29:d7:a7:18:ca:f7:b6:7d:96:ca:55:8a:33:b0:05:
18:f5:01:a8:23:94:d8:cd:67:d1:bf:9c:dd:4d:9d:a4:71:f2:
fe:ad:04:52:02:b4:64:d8:c5:22:87:dc:bc:7c:fe:87:0d:a1:
c2:44:33:d6:78:65:ec:e3:12:b9:fd:fc:a2:7c:71:dd:18:8a:
7b:c5:33:75:f1:23:2b:48:be:d8:9a:19:08:27:55:02:0b:ff:
8e:6d:a3:10:c3:84:a8:97:a1:9c:59:b3:88:28:0b:2e:85:9f:
36:09:53:db:94:e8:f3:1e:1f:86:a0:8c:7d:5a:20:d0:e5:ec:
ed:75:d6:82:cc:ac:f3:17:16:97:7c:4c:d5:bb:54:49:50:e9:
70:5c:31:f8:86:f3:4d:43:d7:30:a1:d8:6a:ce:7a:0b:26:16:
54:20:ac:c6:c1:41:97:dd:b2:19:9f:c9:24:d5:29:37:69:ef:
c3:92:e1:63:50:b1:16:e5:d3:df:9c:21:67:25:83:8a:46:63:
8d:49:43:34:3e:bd:66:81:02:2f:2c:2a:7d:a6:14:6b:7c:6e:
41:79:7a:7b:3c:ed:2a:fb:1e:d5:55:04:bf:3a:d5:9c:66:6a:
a0:a9:d1:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:53 2023 by rpki-client on console-fra.rpki-client.org