Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/Jxox2Q2AgPBA8Q6DDpdFpXwE45U.roa
File: Jxox2Q2AgPBA8Q6DDpdFpXwE45U.roa (raw, json)
Hash identifier: f85TLIFDQgSBAlcdfnkXtW89EBXxNFN974tcIRWfxT8=
Subject key identifier: 27:1A:31:D9:0D:80:80:F0:40:F1:0E:83:0E:97:45:A5:7C:04:E3:95
Certificate issuer: /CN=c1db67b85104e4db598fea15678699c92473bda0
Certificate serial: 018371A8253B7D0FDB302CE502E69301A262
Authority key identifier: C1:DB:67:B8:51:04:E4:DB:59:8F:EA:15:67:86:99:C9:24:73:BD:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wdtnuFEE5NtZj-oVZ4aZySRzvaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/Jxox2Q2AgPBA8Q6DDpdFpXwE45U.roa
Signing time: Sat 24 Sep 2022 22:39:48 +0000
ROA not before: Sat 24 Sep 2022 22:39:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208626
IP address blocks: 185.64.76.0/24 maxlen: 24
2a0c:dd80:3000::/48 maxlen: 48
2a0c:dd80:1000::/48 maxlen: 48
2a0c:dd80:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:71:a8:25:3b:7d:0f:db:30:2c:e5:02:e6:93:01:a2:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1db67b85104e4db598fea15678699c92473bda0
Validity
Not Before: Sep 24 22:39:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=271a31d90d8080f040f10e830e9745a57c04e395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b1:a9:e3:c4:cc:b6:c2:06:d6:1b:62:cf:f3:
8d:98:d4:c6:1f:b9:60:09:32:86:ac:f7:f9:97:2b:
54:48:dc:d5:2c:b8:d1:1d:89:cf:40:24:60:92:54:
a5:27:fd:de:c8:c9:e8:68:49:12:cb:d5:fc:4e:65:
11:90:c5:31:3f:0c:43:b7:af:8b:09:75:82:83:5a:
3f:cf:81:6c:4a:e9:ff:d5:25:93:b0:34:d2:c9:6f:
68:b8:fc:50:87:c1:e7:e9:60:f3:52:4d:e9:72:a6:
58:3c:60:22:ff:5d:a8:93:e7:70:14:11:a6:1f:47:
53:5b:8c:89:c1:a8:be:b6:11:66:a3:ef:45:28:b0:
5b:26:76:b6:98:69:4d:5b:0e:84:dd:84:d4:b2:c5:
9b:0a:08:67:56:8b:5d:ab:0a:5e:88:fc:d8:ef:70:
75:6c:82:5c:8a:15:2e:c8:c7:31:fe:28:5e:a9:60:
81:be:83:f4:03:44:00:f9:02:41:23:01:49:41:65:
70:36:a6:dd:b5:22:92:5d:8b:6a:75:99:3c:59:29:
6e:88:d6:87:d4:88:77:09:ad:dc:89:c2:e5:d6:3f:
3f:c7:62:e2:6c:0c:44:64:d7:90:38:c0:a4:60:21:
76:fd:b9:aa:91:c7:23:4d:4f:23:e2:7f:0b:26:8e:
28:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1A:31:D9:0D:80:80:F0:40:F1:0E:83:0E:97:45:A5:7C:04:E3:95
X509v3 Authority Key Identifier:
keyid:C1:DB:67:B8:51:04:E4:DB:59:8F:EA:15:67:86:99:C9:24:73:BD:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wdtnuFEE5NtZj-oVZ4aZySRzvaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/Jxox2Q2AgPBA8Q6DDpdFpXwE45U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/wdtnuFEE5NtZj-oVZ4aZySRzvaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.76.0/24
IPv6:
2a0c:dd80:1000::/48
2a0c:dd80:2000::/48
2a0c:dd80:3000::/48
Signature Algorithm: sha256WithRSAEncryption
74:e0:48:9e:87:46:10:c2:cc:8e:1b:6b:95:b3:9f:09:b9:29:
0d:73:26:6c:6c:66:ee:3c:66:6d:25:9f:11:87:41:ac:5d:0e:
97:ca:e1:7f:af:f0:89:35:26:6f:64:6f:ab:33:17:22:c2:b0:
f7:01:1b:8a:bb:ae:a3:66:47:29:7c:3d:c6:62:87:58:4b:a7:
7b:71:ff:c0:a6:92:5b:75:e5:1d:b8:2b:ee:e8:9f:53:6f:6f:
a6:67:e9:0c:8b:e9:93:8d:bc:34:3a:e5:34:b8:7f:79:31:b6:
61:d0:bc:ae:40:c5:2d:16:86:1c:b6:40:6e:b7:85:37:2a:63:
a3:32:75:e6:d7:f8:69:3b:cd:0a:a7:70:60:90:79:e1:fe:50:
43:4c:53:6c:a1:4e:42:35:ef:67:87:8b:05:78:18:a4:07:22:
5b:dd:cb:96:07:a4:88:8c:47:88:32:46:82:69:ce:f3:41:1c:
22:9f:98:5f:c5:94:b7:df:49:9b:67:e8:fc:7b:3e:ce:26:ee:
9e:a1:56:05:46:35:96:7f:95:aa:15:8c:eb:39:dd:b4:c3:c8:
33:de:ab:02:0c:88:08:e6:d7:29:63:f6:4c:95:de:60:4c:d5:
a0:02:0f:63:79:43:d1:f0:18:de:5d:df:f3:ea:39:7d:69:3a:
e6:30:cd:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:44 2024 by rpki-client on console-fra.rpki-client.org