Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/JTKAjKKZM0seXxxjPUT7-sY0USE.roa
File: JTKAjKKZM0seXxxjPUT7-sY0USE.roa (raw, json)
Hash identifier: rsX3NM5jRw3APcMjWTazJXX8iv7xb8hmqLDthes4o84=
Subject key identifier: 25:32:80:8C:A2:99:33:4B:1E:5F:1C:63:3D:44:FB:FA:C6:34:51:21
Certificate issuer: /CN=b2fba356186c1dc5031c2fb20bc635491f878637
Certificate serial: 010B7870
Authority key identifier: B2:FB:A3:56:18:6C:1D:C5:03:1C:2F:B2:0B:C6:35:49:1F:87:86:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/svujVhhsHcUDHC-yC8Y1SR-Hhjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/JTKAjKKZM0seXxxjPUT7-sY0USE.roa
Signing time: Sat 01 Jan 2022 04:55:27 +0000
ROA not before: Sat 01 Jan 2022 04:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41827
IP address blocks: 185.95.132.0/22 maxlen: 24
2a05:f340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17528944 (0x10b7870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2fba356186c1dc5031c2fb20bc635491f878637
Validity
Not Before: Jan 1 04:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2532808ca299334b1e5f1c633d44fbfac6345121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:79:16:27:ce:fb:ca:32:18:b8:04:8e:80:
46:8c:78:98:0d:02:89:83:72:dc:ec:29:be:5b:06:
a2:15:85:99:36:ca:8e:19:6e:0b:b9:46:51:6d:2d:
a3:a1:a3:14:a1:d0:0f:7e:05:25:bc:3b:f4:2c:d9:
2a:1d:f1:62:7a:ba:49:08:11:00:18:ee:ee:fd:a5:
b5:1c:0c:2c:59:e6:6d:78:07:ef:eb:dd:b9:3e:20:
27:bd:ac:49:df:8e:ed:1e:a7:02:3a:f9:5e:c4:58:
be:ed:ad:f3:ee:fe:47:f5:5b:05:6b:d4:0c:69:aa:
5b:b0:ad:3e:fe:2f:ce:ab:8a:40:99:0b:b2:24:84:
71:69:b6:c7:53:f2:3a:72:23:92:4e:8c:9a:ee:d1:
c3:cb:aa:ca:f3:ae:65:49:e4:e5:b6:b4:fa:be:5a:
e7:b5:f6:5b:be:ec:84:74:0b:77:43:70:d2:11:06:
d1:c8:d6:6e:28:80:5d:5a:a1:6e:39:e8:09:b5:57:
f0:52:31:c2:76:1e:fb:7e:dd:c7:a5:ac:0d:71:1b:
96:7d:5b:d9:af:97:d0:bc:51:dd:0c:5c:d6:f1:80:
3e:8f:7f:c8:69:7e:9a:6e:16:62:7c:81:af:09:ed:
6a:55:5b:36:38:3c:d6:4b:09:0e:7a:f8:d3:92:97:
eb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:32:80:8C:A2:99:33:4B:1E:5F:1C:63:3D:44:FB:FA:C6:34:51:21
X509v3 Authority Key Identifier:
keyid:B2:FB:A3:56:18:6C:1D:C5:03:1C:2F:B2:0B:C6:35:49:1F:87:86:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/svujVhhsHcUDHC-yC8Y1SR-Hhjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/JTKAjKKZM0seXxxjPUT7-sY0USE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/svujVhhsHcUDHC-yC8Y1SR-Hhjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.132.0/22
IPv6:
2a05:f340::/29
Signature Algorithm: sha256WithRSAEncryption
15:52:e8:82:d1:d7:0b:e3:10:ae:79:8a:bc:90:7f:93:01:33:
c4:8c:02:6d:62:0a:32:f3:4e:44:7e:f4:2a:5f:1c:fd:49:3f:
59:e5:ff:6d:10:da:84:82:d1:c8:39:10:f4:a4:9a:48:53:1e:
be:47:2e:6c:c2:b7:65:85:92:82:6c:97:64:f2:57:d0:55:76:
4b:e7:c7:81:65:2f:da:4b:2f:d1:7b:3a:95:d6:71:ab:8e:8c:
07:58:1b:59:61:e8:75:7e:b2:5a:97:9c:00:44:28:af:67:08:
29:cb:4c:6c:6e:90:92:1b:ba:2d:4b:dd:5b:b2:4f:a2:b9:4e:
73:00:a6:38:ec:ca:f8:a7:fe:58:bb:27:43:f0:38:a9:49:b8:
e5:ea:dd:6c:d3:bf:da:18:d9:b7:37:3f:25:fc:9f:05:44:f9:
b5:2b:9a:49:92:aa:68:00:9a:16:d3:c5:15:d3:5f:00:4a:df:
db:ed:25:cf:b9:67:95:4c:f0:c6:fa:36:4b:89:65:e0:7f:5f:
97:0f:0d:c6:32:2a:4d:06:be:b8:f2:0b:64:d8:02:99:a3:55:
4f:06:2a:ae:89:f4:ea:8e:41:4f:24:f7:9b:c5:2c:c3:a1:0b:
4d:7b:9d:e5:9a:cc:0c:05:6c:9c:40:95:1f:4b:65:a1:11:f0:
a1:7f:33:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:35 2024 by rpki-client on console-fra.rpki-client.org