Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/JqJ-Sc_oBEXbHOIasosmczF4n94.roa
File: JqJ-Sc_oBEXbHOIasosmczF4n94.roa (raw, json)
Hash identifier: YCtxncYixbvxp3Cw/mA3gIOHkW4eUKlHOViI3iOlgSk=
Subject key identifier: 26:A2:7E:49:CF:E8:04:45:DB:1C:E2:1A:B2:8B:26:73:31:78:9F:DE
Certificate issuer: /CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Certificate serial: 01827DB7EC73EBD2B12FBE0ABDC79E866CC5
Authority key identifier: 65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/JqJ-Sc_oBEXbHOIasosmczF4n94.roa
Signing time: Mon 08 Aug 2022 13:49:41 +0000
ROA not before: Mon 08 Aug 2022 13:49:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.170.189.0/24 maxlen: 24
185.170.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7d:b7:ec:73:eb:d2:b1:2f:be:0a:bd:c7:9e:86:6c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Validity
Not Before: Aug 8 13:49:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26a27e49cfe80445db1ce21ab28b267331789fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:03:f8:57:e0:c3:ad:de:36:6e:e8:76:f2:d1:
15:de:de:91:67:76:9a:1c:cd:43:cc:92:cf:6b:97:
94:29:ea:77:4b:63:bd:0a:ac:28:5b:5b:17:5b:65:
a5:b0:13:cd:3e:de:d3:a5:1d:fe:db:cc:5f:5c:ac:
4f:6a:f8:23:4f:e3:de:09:01:0f:6a:87:3d:75:b7:
f9:4e:d5:74:ae:b5:88:62:c6:ac:d3:ad:58:d8:32:
2a:c1:9e:c2:2c:b4:63:df:c1:ec:0e:3b:71:0c:f9:
d5:fb:11:57:31:f3:ea:9f:0a:e3:78:90:ef:86:64:
58:14:fe:ba:74:69:09:7f:97:27:fa:15:2a:0b:92:
ce:1b:e1:09:8f:50:e5:56:45:28:f8:4b:85:f9:6a:
bf:e3:38:a9:0e:51:c1:1d:56:61:87:01:5c:f9:e6:
f4:2f:6b:0d:b6:dd:7f:30:ba:65:1e:a8:42:a3:da:
98:07:10:67:11:87:6f:34:6f:7f:a8:95:a9:a2:44:
0a:1b:21:e8:3b:f1:17:b1:4d:da:9b:6e:29:d8:9f:
37:34:1a:f8:e6:54:4c:70:63:ea:e1:68:0a:eb:3d:
4a:1b:2b:87:bf:ec:be:f5:56:8d:99:2d:ac:e3:68:
b0:9e:ab:57:be:d8:ce:f2:c5:e0:e6:12:81:30:72:
2b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A2:7E:49:CF:E8:04:45:DB:1C:E2:1A:B2:8B:26:73:31:78:9F:DE
X509v3 Authority Key Identifier:
keyid:65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/JqJ-Sc_oBEXbHOIasosmczF4n94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.188.0/23
Signature Algorithm: sha256WithRSAEncryption
08:cc:6b:c8:bd:52:3f:98:60:74:32:d8:0c:33:eb:5e:de:d5:
dd:87:41:59:4d:26:4b:70:b4:39:68:c5:74:12:61:ce:88:f7:
e7:f5:88:0e:09:12:12:c7:cd:5f:95:2c:8f:9d:ed:28:74:72:
eb:0b:ec:a2:8c:00:c5:be:b8:09:cd:ca:d0:99:19:a1:f7:ac:
97:ab:5c:c3:d5:f8:b6:53:87:99:9e:a6:35:17:57:16:d7:fb:
de:a8:85:bf:1c:70:ab:d2:90:64:ef:9f:4e:09:e3:de:cf:3e:
80:31:9f:3c:7a:6d:5b:44:c5:6c:97:a1:13:32:30:bb:30:60:
6a:20:0b:88:c5:97:16:cd:0c:7f:04:0b:e5:2d:d5:a1:c9:db:
3d:5e:f7:59:69:18:90:25:65:67:fb:f9:47:4a:b2:ac:4b:cc:
51:04:d7:bf:ab:be:d6:08:9f:d4:c6:f1:8e:1c:67:df:2f:d7:
93:3f:b0:c7:0e:42:41:ea:1a:52:dc:5b:86:76:b4:12:0a:d7:
a7:5c:8b:76:ed:d5:71:1a:3c:65:48:fb:fe:95:60:3e:f4:f1:
72:fb:ba:0f:25:e4:3b:35:61:4f:7c:f5:ca:8c:ca:c2:5c:9e:
e4:e6:c1:d2:cf:a2:a6:f3:23:7b:6d:d5:42:2c:a0:ee:44:b4:
84:a7:fc:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:31 2025 by rpki-client