Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/JNifC2Ezu4YLqi4NuLB1NThDMD0.roa
File: JNifC2Ezu4YLqi4NuLB1NThDMD0.roa (raw, json)
Hash identifier: XIkmfK3bLdYVFOOY7AvMkDdx636mU2Wy5vFTEYxhzmg=
Subject key identifier: 24:D8:9F:0B:61:33:BB:86:0B:AA:2E:0D:B8:B0:75:35:38:43:30:3D
Certificate issuer: /CN=60f72537edf1dc0b7f694453450bca4aeef83f64
Certificate serial: 01847FEE71878F54DA52D09B73193B509919
Authority key identifier: 60:F7:25:37:ED:F1:DC:0B:7F:69:44:53:45:0B:CA:4A:EE:F8:3F:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPclN-3x3At_aURTRQvKSu74P2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/JNifC2Ezu4YLqi4NuLB1NThDMD0.roa
Signing time: Wed 16 Nov 2022 10:14:03 +0000
ROA not before: Wed 16 Nov 2022 10:14:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213048
IP address blocks: 83.136.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:ee:71:87:8f:54:da:52:d0:9b:73:19:3b:50:99:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f72537edf1dc0b7f694453450bca4aeef83f64
Validity
Not Before: Nov 16 10:14:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24d89f0b6133bb860baa2e0db8b075353843303d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a5:53:88:12:83:fa:fa:fb:c3:a7:52:3f:d6:
00:72:8f:75:90:b0:cd:0a:2b:b3:f2:a2:bb:3d:76:
57:80:02:db:24:1e:22:6e:b7:93:8f:da:55:f2:a3:
3a:8a:8a:d7:f3:2a:fa:d5:bb:4e:37:e4:63:21:78:
e0:36:d2:68:98:38:d3:2a:54:36:6f:ba:08:ef:3c:
4a:24:4c:e5:67:d9:e1:6f:8e:8b:84:f6:f0:57:b6:
1b:38:de:21:ad:9f:93:56:4b:f4:53:a1:07:81:44:
d4:32:be:33:5a:ce:ac:9a:07:a1:d0:28:9e:71:1b:
57:a3:43:27:47:de:92:0e:a0:20:53:66:72:f7:39:
a1:e9:23:39:8d:af:6f:3e:c5:5e:98:46:06:75:b1:
90:69:f3:a6:29:f5:ce:e7:d2:29:92:c5:ee:fe:ff:
da:3c:ca:41:49:54:a1:3d:49:15:50:24:e8:e1:07:
89:61:e8:18:e1:5b:18:23:7f:ac:11:38:23:47:f3:
5b:78:4b:78:a8:bc:c3:58:68:33:4f:9d:d4:6b:a1:
a3:d5:80:80:17:52:12:e6:d9:f2:af:9b:7d:79:2e:
7e:63:65:f8:a2:db:4d:60:94:a0:ce:7a:ff:6e:af:
0f:8f:b8:b9:98:8b:0f:83:46:3f:28:83:9f:ba:7b:
c8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D8:9F:0B:61:33:BB:86:0B:AA:2E:0D:B8:B0:75:35:38:43:30:3D
X509v3 Authority Key Identifier:
keyid:60:F7:25:37:ED:F1:DC:0B:7F:69:44:53:45:0B:CA:4A:EE:F8:3F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPclN-3x3At_aURTRQvKSu74P2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/JNifC2Ezu4YLqi4NuLB1NThDMD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b1015d-4122-4174-82a5-4bbf645b10d3/1/YPclN-3x3At_aURTRQvKSu74P2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.220.0/24
Signature Algorithm: sha256WithRSAEncryption
96:c6:b8:d1:95:93:53:dc:35:cb:6d:fa:4d:cb:11:9b:31:d4:
ac:1f:74:ad:c6:d2:33:db:22:ac:09:c9:26:20:a3:c0:1d:94:
5f:55:76:4e:b8:fb:ef:eb:9e:38:cc:63:73:88:a9:d7:81:f9:
66:6e:35:9c:d8:71:6f:d7:4c:e4:97:e6:7d:95:0c:37:53:f2:
62:8d:d3:d7:45:af:13:7e:1b:cd:73:20:e8:a9:46:b1:58:9e:
7e:ca:c9:bd:fb:c1:7a:2a:58:47:11:a9:91:89:fa:91:72:6d:
5c:a3:a1:b2:75:79:11:73:3a:fd:f6:a1:60:c8:ec:24:af:dc:
db:03:26:74:9a:d2:73:34:c8:3a:5e:75:54:1f:fa:11:3d:31:
84:23:78:8c:77:54:c2:6c:78:e1:ed:63:62:f3:f1:4d:7a:3c:
13:97:34:8e:07:32:c7:b3:59:f4:59:6f:95:ea:e0:18:7d:9b:
e6:29:d6:09:c0:de:9f:aa:ce:b0:0f:0a:4c:91:73:a5:41:2c:
3c:bf:a9:b5:cb:93:ce:a0:d8:f7:7a:dc:03:67:ab:99:ee:c6:
58:3a:18:bf:92:5e:e5:ff:57:86:98:de:27:08:f7:a1:3f:da:
6a:c2:e2:f3:d6:7f:49:48:c3:05:27:2c:17:8a:35:f4:84:9c:
2d:3a:96:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:57 2024 by rpki-client on console-ams.rpki-client.org