Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/JL6GT1R6vGfKhG892_r0SRs0Tbo.roa
File: JL6GT1R6vGfKhG892_r0SRs0Tbo.roa (raw, json)
Hash identifier: jHTIwvEfRLdMzojp6Cbw8O5jWXYkjIOoIdxhNPURU6w=
Subject key identifier: 24:BE:86:4F:54:7A:BC:67:CA:84:6F:3D:DB:FA:F4:49:1B:34:4D:BA
Certificate issuer: /CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Certificate serial: 079A9809
Authority key identifier: F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/JL6GT1R6vGfKhG892_r0SRs0Tbo.roa
Signing time: Tue 07 Jun 2022 10:22:02 +0000
ROA not before: Tue 07 Jun 2022 10:22:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62306
IP address blocks: 185.221.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127571977 (0x79a9809)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Validity
Not Before: Jun 7 10:22:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24be864f547abc67ca846f3ddbfaf4491b344dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:51:08:61:28:58:d9:09:4a:3a:f4:eb:45:
78:9e:df:52:08:2c:04:82:8c:b3:c9:41:94:17:26:
e2:db:be:c3:ba:21:83:90:e3:63:1f:0f:98:70:86:
e9:eb:84:82:c9:eb:21:de:14:66:a8:59:a8:28:b3:
d7:9b:10:5a:4d:53:b8:3b:c5:a4:77:66:7d:e3:14:
d0:2d:37:7c:e0:41:b1:53:4b:e1:5b:f6:cf:a4:07:
50:a6:35:eb:c3:a0:fe:cc:2c:e7:01:4c:25:15:2c:
2e:b6:1d:a2:5f:2c:24:e5:c6:06:e8:f8:db:73:59:
92:b2:f1:a1:f7:9b:1d:5a:cb:1a:91:56:54:77:76:
dc:b8:b7:2c:48:bc:f5:4a:41:34:3e:3a:56:41:46:
a8:80:3f:fe:17:55:35:47:f8:05:a5:05:82:f5:68:
a3:99:c8:c7:d5:84:8f:fb:e2:41:7b:39:f0:62:56:
b9:d6:d9:6f:f7:11:84:e1:e6:ef:89:c7:56:b2:f9:
b4:4c:b0:77:eb:88:f6:d8:d6:7a:a1:6d:c7:d2:eb:
bb:63:6c:ef:d1:1e:a4:9d:95:7d:5d:c6:e4:fd:80:
77:c3:4a:5f:1b:99:1a:37:88:ec:39:17:06:f7:7b:
e0:e0:9f:b7:6b:ad:c4:77:c9:e1:de:ff:db:4c:83:
84:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BE:86:4F:54:7A:BC:67:CA:84:6F:3D:DB:FA:F4:49:1B:34:4D:BA
X509v3 Authority Key Identifier:
keyid:F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/JL6GT1R6vGfKhG892_r0SRs0Tbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/8FIRKM9jSqavp-9S1THz_NVWKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.220.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:18:8e:f2:49:62:47:5d:74:3d:2d:fe:5b:1c:25:1e:43:f7:
43:ca:df:40:e1:d3:9e:c9:e8:d3:1b:fc:fd:6a:fb:cd:d0:e9:
c6:a0:28:db:ad:f3:68:88:d7:76:e5:b1:da:97:57:cc:71:20:
11:19:c1:57:48:a0:8d:2d:79:62:54:85:fd:1b:a6:fa:9c:46:
76:a9:df:bb:f9:15:32:f1:6f:ce:68:5f:a7:13:63:32:af:e4:
d8:18:5f:ef:16:90:ca:d5:a6:26:16:09:c1:53:95:47:c1:d6:
75:f1:1b:62:e9:e8:f9:95:e1:02:9b:89:20:eb:a6:d5:e0:a8:
2f:5a:e1:b2:3a:84:eb:8c:d1:99:16:41:b9:29:d3:69:27:6e:
12:56:28:a9:d1:f7:f8:89:78:65:b1:93:e4:50:f3:06:d8:97:
34:93:8b:a8:dc:6f:2c:47:be:b2:f5:e9:15:2a:0c:3b:35:a1:
16:71:42:05:35:66:f6:2c:bc:21:2c:33:44:3f:1d:0b:76:2a:
6f:de:f6:45:36:fb:3a:b9:49:2d:94:ff:14:af:3f:5f:e8:b3:
f0:7c:71:87:96:ba:a6:2a:fe:23:a2:d3:12:21:73:fc:15:62:
4d:cb:3e:96:2a:d1:9f:18:0b:f3:32:c2:d3:54:15:16:8b:86:
ad:37:24:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:54 2023 by rpki-client on console-fra.rpki-client.org