Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/JzkEhmlena-YsuehKX4QHNe6FZE.roa
File: JzkEhmlena-YsuehKX4QHNe6FZE.roa (raw, json)
Hash identifier: vS91GDhsDtkIpPI7PiGFGILWS/OShDIDmK+lm4BlQ94=
Subject key identifier: 27:39:04:86:69:5E:9D:AF:98:B2:E7:A1:29:7E:10:1C:D7:BA:15:91
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 374DF0A2
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/JzkEhmlena-YsuehKX4QHNe6FZE.roa
Signing time: Sat 01 Jan 2022 15:06:58 +0000
ROA not before: Sat 01 Jan 2022 15:06:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33696
IP address blocks: 185.11.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927854754 (0x374df0a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 15:06:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27390486695e9daf98b2e7a1297e101cd7ba1591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c6:15:44:e4:4d:90:85:52:d0:4f:73:9a:79:
ba:11:9f:44:0e:6c:56:29:a1:f3:42:22:3f:34:61:
6b:b0:22:dc:9f:13:0b:91:67:5f:a4:6b:b9:be:67:
ba:c0:e3:c1:52:48:55:62:f8:ed:3e:d4:0f:c2:f1:
c1:26:5f:a2:51:e4:14:a6:b9:eb:7a:57:c2:f6:02:
93:69:c5:c2:1d:24:ad:3c:d9:80:ad:2e:7e:de:85:
f8:e2:8e:0d:9d:91:80:2a:38:eb:80:ab:5d:aa:87:
66:e4:f8:65:fb:4d:5d:1a:2a:38:59:52:c5:f7:18:
9f:44:be:59:6b:62:71:12:85:50:08:94:fc:13:41:
97:a9:3a:a1:4f:39:27:ca:5d:24:59:60:fc:a0:be:
4a:ad:a5:b5:56:8e:87:73:cd:4b:8f:a0:ef:6f:ef:
58:e9:80:21:e3:20:58:fa:6d:0f:2b:63:3e:f7:ec:
c2:85:e7:a6:27:eb:9d:e9:c2:2e:15:40:c6:2f:de:
38:04:73:cd:fc:d9:cc:31:bb:42:d8:0d:4c:84:f0:
97:ec:48:94:ce:1b:31:4c:6d:01:09:8f:46:b3:ae:
51:43:c4:22:02:3d:0e:35:4b:f6:a5:ab:8e:bf:a6:
ba:54:68:b7:0d:df:07:94:dd:5e:fb:68:10:3a:a5:
cd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:39:04:86:69:5E:9D:AF:98:B2:E7:A1:29:7E:10:1C:D7:BA:15:91
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/JzkEhmlena-YsuehKX4QHNe6FZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.142.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:64:0c:fb:a5:a9:d2:4d:93:26:88:39:9f:cb:76:7d:e1:f7:
06:76:13:17:39:96:10:e7:2c:50:47:d6:bd:33:1a:ef:e1:ed:
06:12:5b:19:ed:73:d6:a3:42:b9:ba:f5:ec:3a:62:b3:16:46:
4c:43:7b:61:3e:6c:59:d1:b6:34:ab:5d:9e:22:c2:f7:65:10:
66:a8:06:5b:fc:81:72:df:4e:98:dc:eb:7e:90:b3:59:31:48:
4b:59:ad:62:47:1f:ac:d3:96:36:61:ec:5d:e6:1e:91:f2:9c:
eb:26:d2:33:3b:cb:37:02:18:80:43:1b:a6:76:2a:79:b0:36:
87:0a:72:c7:40:93:67:bf:b7:ef:b0:84:1f:3f:17:8c:1a:21:
e0:ec:7a:f2:65:32:8b:cf:01:c3:f1:e2:ff:92:ea:2b:60:40:
81:ad:5a:99:75:59:cf:c9:3a:0c:87:db:02:38:c0:e6:21:fc:
46:1b:ae:25:cd:0c:40:4c:38:08:51:d4:69:0a:33:06:04:43:
13:1f:fa:ef:b9:38:5e:b7:22:68:46:3c:4e:d6:08:46:fe:c1:
32:51:dc:55:44:e7:85:bd:03:43:62:ed:ef:cc:f4:2e:a7:42:
09:af:91:1b:a1:1d:23:9f:23:d0:a5:4a:67:9f:3f:97:e6:05:
7c:09:df:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org