Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/JNTpVBkoHq10Azm-n3oZRHwsOng.roa
File: JNTpVBkoHq10Azm-n3oZRHwsOng.roa (raw, json)
Hash identifier: 7+ouzSj5kpJohlqfE3yBP6W4Eydxx5Y3x/HZDVz9zqc=
Subject key identifier: 24:D4:E9:54:19:28:1E:AD:74:03:39:BE:9F:7A:19:44:7C:2C:3A:78
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01855259E82DC210BC824C7646EE79D09FB8
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/JNTpVBkoHq10Azm-n3oZRHwsOng.roa
Signing time: Tue 27 Dec 2022 06:51:41 +0000
ROA not before: Tue 27 Dec 2022 06:51:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209737
IP address blocks: 82.163.172.0/22 maxlen: 24
31.186.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:59:e8:2d:c2:10:bc:82:4c:76:46:ee:79:d0:9f:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Dec 27 06:51:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24d4e95419281ead740339be9f7a19447c2c3a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:45:49:4f:09:36:83:49:e4:47:3b:e3:99:f7:
9c:e5:67:c8:0d:c6:fa:65:cd:5d:c1:da:58:a2:fb:
1e:36:34:17:71:44:ad:f7:76:7f:e0:4e:6f:3b:3f:
ed:ee:35:09:61:d3:9b:d6:62:b4:46:81:b8:d5:db:
de:55:38:54:d7:ae:2f:77:43:cf:e6:55:53:0c:a0:
42:36:43:b4:c0:62:c7:a4:b7:52:af:ae:d1:27:10:
90:f4:11:ee:ba:b0:55:de:bb:23:d5:76:3e:32:c0:
ed:15:93:b8:b8:f2:b7:fd:e5:1f:d4:ad:95:68:ba:
50:c5:3c:6d:1b:f1:be:cd:9d:c5:94:b0:d8:65:bc:
cf:5a:eb:06:1c:20:55:c0:e9:70:d5:46:61:84:99:
74:d1:fe:65:75:c1:9d:dc:d8:0b:1f:e3:f2:c3:2c:
bf:41:11:24:fc:7d:c1:03:93:63:db:ed:6f:a9:b1:
56:24:a4:55:fb:22:e1:a0:3d:25:ea:c7:9a:47:9e:
ff:3d:1e:03:d6:08:c4:51:9e:47:a5:f4:1d:ba:f1:
8f:08:59:35:5c:d5:5a:86:23:1b:1f:e1:2a:c6:66:
f1:07:75:ae:c7:d9:a6:c4:b6:22:d1:be:af:88:43:
79:4b:eb:94:a5:d2:19:70:c4:50:ee:f7:63:45:20:
f9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D4:E9:54:19:28:1E:AD:74:03:39:BE:9F:7A:19:44:7C:2C:3A:78
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/JNTpVBkoHq10Azm-n3oZRHwsOng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
82.163.172.0/22
Signature Algorithm: sha256WithRSAEncryption
05:30:a5:a1:26:3e:38:fa:89:fb:93:f1:2e:eb:67:c2:aa:15:
13:53:c5:0d:15:60:ad:a9:c7:17:a4:f6:b5:d2:cb:c9:8a:6a:
2f:3f:d2:54:4c:a6:ea:11:4a:5a:ad:f5:88:02:c4:5b:b4:15:
8f:d3:fd:9f:a0:17:e0:d2:18:17:07:fb:0e:04:39:59:b7:4c:
04:4d:09:fd:a0:95:61:61:e8:a8:10:d4:35:de:dc:83:4d:de:
de:68:60:48:de:64:61:2b:55:95:6d:44:02:c6:c4:21:c4:d7:
4c:bd:9a:17:57:9d:a6:83:93:81:e4:6f:ca:6f:55:0c:ea:f1:
36:b7:64:24:e0:41:85:12:3d:ca:ba:c7:e7:5a:21:6d:7e:83:
b0:94:31:29:b9:6e:c8:ce:f9:20:99:83:0d:d3:71:9a:5f:2a:
70:ef:88:7b:59:64:2f:cd:48:a0:59:7b:d2:6b:ab:b2:3e:2f:
a7:59:6a:df:a9:65:f8:84:a2:dd:08:54:30:e6:8d:54:90:03:
2e:bb:4c:16:53:93:ae:b3:0e:7b:50:90:fc:20:46:c6:46:8d:
d7:f2:72:23:95:54:55:e4:d8:c2:96:f7:16:40:d0:c0:24:4f:
62:19:fd:8a:65:a5:ff:dd:e0:92:36:47:b6:ed:79:96:08:a2:
6f:9f:98:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org