Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/J-Jr6BGnJ6XC9AdtRgTMnLatPAI.roa
File: J-Jr6BGnJ6XC9AdtRgTMnLatPAI.roa (raw, json)
Hash identifier: ptj7gdm1qKj/8Xsb80eLwpbo/FSVMdZQsbkaZG4ZpeE=
Subject key identifier: 27:E2:6B:E8:11:A7:27:A5:C2:F4:07:6D:46:04:CC:9C:B6:AD:3C:02
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0BB7C102
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/J-Jr6BGnJ6XC9AdtRgTMnLatPAI.roa
Signing time: Wed 23 Feb 2022 09:31:22 +0000
ROA not before: Wed 23 Feb 2022 09:31:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56910
IP address blocks: 185.36.232.0/22 maxlen: 24
185.4.236.0/22 maxlen: 22
31.177.56.0/21 maxlen: 24
185.109.16.0/22 maxlen: 24
185.106.36.0/22 maxlen: 24
188.214.127.0/24 maxlen: 24
2a04:3e00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196591874 (0xbb7c102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Feb 23 09:31:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27e26be811a727a5c2f4076d4604cc9cb6ad3c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:17:3d:74:a7:8d:36:ac:d0:f5:df:1f:10:19:
10:a1:8d:72:57:d4:d7:cf:3f:d0:aa:2b:40:d5:1f:
e9:50:c7:f1:4c:0c:02:15:9d:6a:4e:d3:bf:ab:b8:
b5:9a:9d:f5:b1:3e:2d:79:5b:b7:e9:7a:12:c4:8e:
ac:aa:b1:68:0d:bd:d8:69:8f:12:52:56:36:c9:6b:
7b:07:97:c6:0f:56:98:34:62:7c:98:94:69:ea:e2:
6c:ce:ae:00:cb:9c:59:db:30:f6:90:c2:f2:50:6f:
1d:ef:f0:40:f3:16:8f:46:2d:34:57:4f:b9:4d:f7:
1d:c0:32:37:1f:cd:59:62:eb:da:c5:97:42:c7:3f:
26:7a:b7:11:ee:66:38:23:44:9d:35:d6:1c:5d:6e:
1d:77:bd:9c:7b:e8:c8:80:af:b5:7c:3f:d7:b7:6b:
64:97:29:b0:80:6d:f6:df:d6:e7:f1:76:b8:d7:e6:
56:3f:38:ac:cb:e3:fa:65:14:6b:f0:76:7b:a7:c4:
14:8d:d3:e9:df:d9:12:02:6c:18:b8:04:bb:4f:21:
68:4f:f8:5b:8d:2c:1d:50:a2:f6:65:13:d6:e8:a9:
52:a1:37:90:15:ee:99:1b:ae:54:fd:78:bd:6f:ee:
5f:49:d5:50:f2:89:bd:3a:ef:16:d6:2e:52:f2:43:
a9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E2:6B:E8:11:A7:27:A5:C2:F4:07:6D:46:04:CC:9C:B6:AD:3C:02
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/J-Jr6BGnJ6XC9AdtRgTMnLatPAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.56.0/21
185.4.236.0/22
185.36.232.0/22
185.106.36.0/22
185.109.16.0/22
188.214.127.0/24
IPv6:
2a04:3e00::/29
Signature Algorithm: sha256WithRSAEncryption
01:76:6e:1f:be:80:49:a1:ae:33:d1:1f:9d:ab:9c:22:7a:2f:
03:1c:5b:12:12:16:63:16:06:8b:e8:da:47:31:3c:ac:8b:ff:
b2:c4:52:65:f1:04:a5:2a:6c:de:76:70:17:ff:32:cb:47:15:
51:71:f2:80:dc:4f:9e:53:3a:84:58:35:a2:ca:c4:9e:2b:6b:
a1:40:01:8d:d4:ac:a1:87:cf:50:70:41:e6:0a:a0:3f:09:3f:
4b:04:ff:c5:37:20:bf:cc:fb:f3:d7:60:d5:10:ef:85:fa:ca:
d3:ec:87:88:2e:f3:38:bc:f6:b6:cb:3f:35:71:2b:4f:60:c7:
94:d0:8b:b1:3a:27:cd:26:5d:2f:26:1e:2e:c8:e9:f2:43:83:
cc:0a:c7:8c:25:3d:6d:69:1c:58:43:5d:15:76:85:32:aa:ac:
22:5d:4d:89:4d:bc:dc:c6:a7:c5:d0:4b:79:0b:d5:86:34:de:
69:b1:b0:92:a9:09:12:65:9a:21:37:91:a1:cb:63:ac:42:a8:
75:8a:e0:60:f7:cb:f5:7c:d9:2a:44:4c:a6:5d:79:1e:ad:e5:
53:0b:8e:31:2c:ff:b8:8e:27:09:ac:f3:1d:e1:1a:5c:aa:78:
20:7e:63:a4:1b:2e:ac:30:52:9b:df:2f:a8:d1:da:c0:24:39:
d5:6a:8b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org