Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JszAehhApv-VF4wV_oyKDonrxDc.roa
File: JszAehhApv-VF4wV_oyKDonrxDc.roa (raw, json)
Hash identifier: j0WI60XDwc89cuQth7Pkr+6KTcpbDpZnIkkvtge1pDA=
Subject key identifier: 26:CC:C0:7A:18:40:A6:FF:95:17:8C:15:FE:8C:8A:0E:89:EB:C4:37
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 0814EB4F
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JszAehhApv-VF4wV_oyKDonrxDc.roa
Signing time: Sat 01 Jan 2022 06:57:51 +0000
ROA not before: Sat 01 Jan 2022 06:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212369
IP address blocks: 185.255.93.0/24 maxlen: 24
185.132.126.0/24 maxlen: 24
185.93.68.0/24 maxlen: 24
185.93.69.0/24 maxlen: 24
185.93.70.0/24 maxlen: 24
185.93.71.0/24 maxlen: 24
193.164.4.0/24 maxlen: 24
193.164.5.0/24 maxlen: 24
193.164.6.0/24 maxlen: 24
89.35.52.0/24 maxlen: 24
93.115.10.0/24 maxlen: 24
93.177.101.0/24 maxlen: 24
93.177.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135588687 (0x814eb4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Jan 1 06:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26ccc07a1840a6ff95178c15fe8c8a0e89ebc437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1b:38:55:b1:8a:a9:8f:f3:1b:20:dc:06:10:
3c:60:15:7f:ea:af:a6:89:9a:5a:7d:1d:3f:06:82:
f7:fa:e4:34:75:86:a6:64:8c:7d:23:41:dd:a3:88:
f2:8a:8a:9f:cb:b9:42:16:04:ba:4f:05:d9:c1:ea:
60:db:7a:28:8c:f6:8c:57:c9:6e:f0:bc:72:61:11:
af:23:72:42:5f:ac:e6:7f:55:fc:28:48:ed:cb:42:
16:2e:fc:48:82:dd:33:c7:1f:c1:b2:24:41:48:c5:
fa:91:3a:a6:21:bc:0a:58:48:ab:9c:e4:e3:c5:3c:
3e:bd:be:c8:ac:e2:bb:39:19:19:ec:8d:e8:03:da:
42:e5:f7:a1:bb:0d:0a:3c:35:34:84:b3:42:4e:4b:
d6:72:78:8a:02:39:19:1f:09:a9:51:04:5c:a4:b5:
6d:b5:44:da:e9:7f:8a:b5:24:a4:cc:45:e3:1d:78:
9d:4c:2f:8d:8e:36:e2:95:60:7c:c1:a6:0a:25:54:
0a:54:e6:21:7b:52:b7:ec:67:73:9e:a6:8d:57:dc:
88:0c:d0:27:47:2f:6e:79:ea:ec:7d:c0:5d:3f:b8:
a2:9e:33:d2:fb:92:69:b1:4e:86:bf:0c:df:f8:54:
84:28:ef:cf:39:c9:3f:56:67:79:b2:c0:b9:68:59:
80:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CC:C0:7A:18:40:A6:FF:95:17:8C:15:FE:8C:8A:0E:89:EB:C4:37
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JszAehhApv-VF4wV_oyKDonrxDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
93.115.10.0/24
93.177.101.0-93.177.102.255
185.93.68.0/22
185.132.126.0/24
185.255.93.0/24
193.164.4.0-193.164.6.255
Signature Algorithm: sha256WithRSAEncryption
03:a5:02:00:da:b3:c0:66:61:02:88:77:d6:ca:3f:8d:59:90:
7d:35:f4:13:50:7e:43:53:f2:27:51:5a:d9:d7:67:63:65:47:
9c:f0:13:e1:c4:c1:55:37:22:18:87:83:e4:ef:f3:e5:c1:5a:
74:cf:a8:b2:c9:86:84:43:73:c8:9f:0f:62:4c:0d:22:ab:b8:
ea:d0:b0:4f:31:56:ba:13:c1:0b:3d:e5:ea:dd:2d:09:c0:b5:
4e:a3:af:3b:3f:bd:49:07:8b:65:88:b5:93:b3:58:65:98:38:
40:97:c7:16:b3:3d:85:79:ff:fe:5e:3c:4e:9c:7c:ca:0c:fb:
d0:c6:02:c6:db:44:a2:6e:5e:a0:70:46:40:18:63:59:64:ca:
4d:89:84:3d:cf:11:aa:5c:88:c9:5c:03:a7:1f:9c:86:c1:41:
a5:3f:b5:c9:e2:eb:b4:2c:51:28:cf:37:3e:d9:fe:c3:e6:1f:
80:5d:1d:13:6e:f3:49:cd:05:4d:0b:08:65:19:9f:f9:17:15:
fe:ab:5b:b3:cf:5d:ca:ae:dd:29:a6:e1:af:ef:d1:41:50:59:
2f:fd:7e:4f:cc:22:7c:84:64:fb:47:7c:a4:dc:cb:6c:fd:2d:
bc:11:e0:d1:fb:b6:e3:7a:04:e0:b8:cd:88:aa:51:da:bf:ab:
46:21:84:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:32 2024 by rpki-client on console-fra.rpki-client.org