Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/J_NW8LGYvn30fV8MkE6MFNh0o4k.roa
File: J_NW8LGYvn30fV8MkE6MFNh0o4k.roa (raw, json)
Hash identifier: RDFAuHpoQQ6bV0R6Ba0ZJu8YonGAiPA1ppXEtTzPV+Q=
Subject key identifier: 27:F3:56:F0:B1:98:BE:7D:F4:7D:5F:0C:90:4E:8C:14:D8:74:A3:89
Certificate issuer: /CN=70e12ebd8fff2a6b054ded9de3d8f65ea635fb83
Certificate serial: 10794688
Authority key identifier: 70:E1:2E:BD:8F:FF:2A:6B:05:4D:ED:9D:E3:D8:F6:5E:A6:35:FB:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOEuvY__KmsFTe2d49j2XqY1-4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/J_NW8LGYvn30fV8MkE6MFNh0o4k.roa
Signing time: Sat 01 Jan 2022 10:59:18 +0000
ROA not before: Sat 01 Jan 2022 10:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202621
IP address blocks: 185.159.16.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276383368 (0x10794688)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e12ebd8fff2a6b054ded9de3d8f65ea635fb83
Validity
Not Before: Jan 1 10:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27f356f0b198be7df47d5f0c904e8c14d874a389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:33:4a:d8:73:9d:3e:6a:ed:57:86:f2:98:88:
cc:ef:ea:d6:d5:1b:c0:20:ec:19:d7:65:49:20:85:
87:57:f2:4a:cb:2f:9b:44:5c:0b:b1:e9:fd:47:1e:
c5:e4:19:78:f5:0f:0f:0d:b7:e1:60:1b:4e:1f:05:
bf:26:b5:57:08:ae:5d:77:08:fb:37:fb:5f:40:03:
f9:a3:2c:7e:63:92:70:17:58:80:a0:80:56:89:d0:
48:cf:a6:4d:c3:a3:99:ff:7c:6e:6b:e4:1b:06:35:
cf:d1:6e:98:1f:c8:70:e6:ea:34:ec:df:d1:bf:39:
21:16:09:23:28:82:05:c6:95:e6:17:13:eb:50:8a:
7a:44:b6:76:b4:93:a9:87:ff:24:1a:13:2d:74:71:
e7:f8:e5:0d:c4:93:0b:33:0b:9a:d5:e2:00:9b:25:
42:1d:ed:c6:a0:00:d2:af:a9:83:35:c1:d4:f9:01:
f0:ae:18:81:3c:0e:b3:0c:4f:f8:81:66:76:9b:85:
fc:34:23:39:7a:e4:cb:ec:66:41:b0:59:c3:95:fd:
b1:04:af:bb:bf:b2:e0:71:b2:3d:92:e3:67:10:89:
6f:28:b6:7d:36:65:81:f1:b6:94:69:1b:fa:d0:36:
64:6d:f4:b2:d1:1d:fa:d6:2a:81:cb:d7:59:44:c7:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F3:56:F0:B1:98:BE:7D:F4:7D:5F:0C:90:4E:8C:14:D8:74:A3:89
X509v3 Authority Key Identifier:
keyid:70:E1:2E:BD:8F:FF:2A:6B:05:4D:ED:9D:E3:D8:F6:5E:A6:35:FB:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOEuvY__KmsFTe2d49j2XqY1-4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/J_NW8LGYvn30fV8MkE6MFNh0o4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/cOEuvY__KmsFTe2d49j2XqY1-4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.16.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:b3:70:66:1b:d4:46:fe:a3:eb:f6:8a:2e:24:ff:e9:dc:11:
09:3a:fe:5c:6a:93:4e:f3:ab:0f:e3:1b:ed:14:98:2c:f4:10:
c2:d1:28:09:68:46:23:32:95:58:3b:65:ed:2f:f8:1d:b6:7d:
bf:a4:06:d4:98:66:7c:47:a7:e4:d9:9c:3e:fd:69:b0:7d:26:
1e:1f:94:9d:c4:d0:0f:1d:ad:b4:80:54:66:89:34:88:e8:83:
52:65:36:f1:22:e9:c3:ec:e0:cb:f0:d0:3c:f8:3b:0a:81:b6:
1d:de:e1:62:83:b5:2b:51:63:1e:89:78:8a:c4:db:30:21:2b:
34:04:86:bb:02:96:40:78:88:d3:f0:cd:ce:95:af:1f:a8:3a:
c1:e3:f4:9f:0a:ed:60:d4:0d:d9:fc:2a:b0:cb:1d:46:a7:69:
f2:e6:6a:46:a2:04:56:f5:f8:0f:a5:04:25:5b:87:7c:e8:3f:
c2:0b:53:4e:a4:06:23:13:12:e7:78:d8:05:fb:24:bc:e2:20:
36:5f:1f:91:09:fb:c2:45:57:33:d3:1b:2f:99:f5:c3:f8:6b:
fe:21:5e:90:fc:d9:b9:0b:fe:9c:f8:2a:46:77:7c:e3:e3:3e:
aa:ce:94:1d:fb:86:b3:c8:8f:37:b6:3d:6f:5d:a8:9d:1c:30:
1b:78:e6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:13 2024 by rpki-client on console-fra.rpki-client.org