Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/jtMtN7cZyVR-EHNVKx7Iv4rgG3s.roa
File: jtMtN7cZyVR-EHNVKx7Iv4rgG3s.roa (raw, json)
Hash identifier: Jd4BitIgSuI7TeMWidnqLazHJh7NakZricyGn9WBvTI=
Subject key identifier: 8E:D3:2D:37:B7:19:C9:54:7E:10:73:55:2B:1E:C8:BF:8A:E0:1B:7B
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 0431558F
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/jtMtN7cZyVR-EHNVKx7Iv4rgG3s.roa
Signing time: Mon 23 May 2022 12:52:17 +0000
ROA not before: Mon 23 May 2022 12:52:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210512
IP address blocks: 185.176.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70342031 (0x431558f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: May 23 12:52:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ed32d37b719c9547e1073552b1ec8bf8ae01b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d1:a6:38:73:20:78:e3:9b:37:5d:22:bd:ea:
dc:4d:07:e9:0b:15:bd:c4:a4:35:f0:76:f2:1d:62:
2d:da:fb:33:98:4e:f6:e0:ea:50:d5:f7:0e:35:c1:
a4:44:2e:6b:95:74:4a:06:10:62:a6:42:91:dd:95:
87:a2:07:bb:bf:92:6d:ea:b1:b6:ec:b4:76:f4:dd:
1e:7c:1e:0d:5d:b4:f5:6e:82:b8:9e:ca:70:8d:15:
ef:e3:cd:2e:0b:af:a9:bf:0c:df:5a:22:dc:4a:2e:
e0:18:a8:84:60:99:c7:cc:d5:39:df:89:d4:ca:80:
0e:8c:b5:61:2f:a6:bb:3c:64:24:d1:25:a1:dd:9f:
ec:09:32:54:9f:cc:56:35:96:88:0c:49:9e:e2:02:
c6:07:29:41:82:aa:29:4f:4c:0e:a5:49:9e:85:7d:
34:a3:b5:a4:ac:d6:11:37:ec:b9:d7:e4:24:7d:67:
59:31:ac:ef:95:aa:84:5a:a5:f3:86:69:37:d3:69:
4a:de:7b:92:19:07:46:c8:e4:88:bf:db:ae:32:4a:
bc:f9:a1:c3:06:50:51:6c:af:dc:dd:33:e1:80:01:
a2:21:ef:65:6d:78:d5:b1:da:45:f6:b7:aa:53:a1:
b3:de:56:ef:6a:93:59:92:9a:f4:f8:b8:6b:14:0d:
ba:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D3:2D:37:B7:19:C9:54:7E:10:73:55:2B:1E:C8:BF:8A:E0:1B:7B
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/jtMtN7cZyVR-EHNVKx7Iv4rgG3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.27.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4c:bb:03:a1:17:c7:2a:88:df:67:3d:e0:8a:70:f0:ac:0e:
f1:56:97:35:b5:29:18:5e:0a:02:bf:88:7c:e9:ae:cb:11:0c:
85:f6:e2:8d:44:e2:ba:af:25:23:6a:d3:fe:e6:7c:a3:22:a0:
f5:30:41:60:2f:1d:dc:2d:04:96:39:2d:59:b4:8c:66:93:43:
22:41:a0:87:88:62:1d:27:b3:8b:eb:67:86:bc:b6:b2:fe:b3:
a8:b9:57:70:30:42:f3:16:a3:ed:1e:a9:dd:f8:aa:c0:3f:99:
65:0b:31:98:7f:fe:7c:79:6a:0b:76:76:bf:a7:bb:7b:bc:09:
78:47:8a:a9:92:79:2d:56:bf:3a:62:65:32:c1:8a:00:8b:11:
36:c6:74:8f:a7:cb:bc:d2:27:86:6e:ed:f2:c8:a2:a5:d6:01:
34:ac:cb:c6:9a:83:27:e6:b7:a4:e9:8d:71:69:90:3a:71:d4:
7b:59:1a:b4:fb:76:9e:ef:a3:89:c3:87:2f:9b:58:f9:85:fa:
f2:dd:b2:5c:0f:d5:9b:b0:94:d0:50:ce:d2:96:90:e1:e7:a7:
da:3c:d7:5b:8e:63:b4:3d:21:5a:be:14:9a:e0:97:af:a2:aa:
71:39:24:0b:37:32:2a:d8:5e:7c:5d:43:41:84:8b:cf:ca:69:
a5:4e:f8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org