Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/Je8TQvsC5d73ZllZsUPVKhDJAak.roa
File: Je8TQvsC5d73ZllZsUPVKhDJAak.roa (raw, json)
Hash identifier: SE7UQ+LtRj02ZZwE7kAOGQJJmxzlEof9ldLSdZ3KsG4=
Subject key identifier: 25:EF:13:42:FB:02:E5:DE:F7:66:59:59:B1:43:D5:2A:10:C9:01:A9
Certificate issuer: /CN=776405e0283743cf52180d5b13812dfba3ded7fc
Certificate serial: 0742FFD1
Authority key identifier: 77:64:05:E0:28:37:43:CF:52:18:0D:5B:13:81:2D:FB:A3:DE:D7:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2QF4Cg3Q89SGA1bE4Et-6Pe1_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/Je8TQvsC5d73ZllZsUPVKhDJAak.roa
Signing time: Sat 01 Jan 2022 09:55:43 +0000
ROA not before: Sat 01 Jan 2022 09:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 185.146.252.0/22 maxlen: 24
212.44.96.0/19 maxlen: 24
2a02:ea::/32 maxlen: 48
2a02:eb::/32 maxlen: 48
2a02:e9::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121831377 (0x742ffd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776405e0283743cf52180d5b13812dfba3ded7fc
Validity
Not Before: Jan 1 09:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25ef1342fb02e5def7665959b143d52a10c901a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:be:65:63:e8:a1:3b:a5:41:c8:5a:ce:08:61:
d2:40:9e:b0:65:66:8f:f7:26:17:e0:f4:27:b9:27:
2a:99:cd:09:a7:68:f4:c3:37:c1:03:0f:ec:7c:04:
c8:cf:ab:ff:57:e8:06:ca:f9:bd:73:db:e2:9c:d1:
7f:1e:bc:cf:eb:1e:79:72:4d:dd:09:3d:28:b3:fe:
66:20:d5:b4:5d:21:2c:e4:f3:e7:73:96:dd:b3:c4:
47:cc:67:4c:7a:66:bd:7a:5f:74:ef:9c:59:5e:4b:
20:bd:ac:5c:e8:b6:5e:51:22:17:d1:23:7f:92:d2:
8c:3f:b4:c4:c8:3e:1e:05:05:61:29:48:ca:66:e4:
6d:9e:23:8d:4d:ba:bc:62:0e:92:2b:d3:33:cb:9c:
6a:25:68:a8:e7:13:9e:40:51:54:8c:59:40:fe:08:
da:47:b5:11:84:0e:08:2b:9b:c7:7c:4e:d3:9e:2f:
0b:13:78:df:2b:f4:62:e3:a5:a9:65:58:65:50:3f:
bf:3a:56:93:41:94:6d:fe:d3:63:1b:1d:d3:43:06:
68:5e:43:2e:e2:3d:12:6f:e6:26:b0:d4:39:29:b3:
46:14:11:35:3c:b0:13:11:b9:23:25:d8:34:18:8b:
da:de:5b:66:1d:7f:1e:bc:90:e4:57:43:ae:58:68:
74:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:EF:13:42:FB:02:E5:DE:F7:66:59:59:B1:43:D5:2A:10:C9:01:A9
X509v3 Authority Key Identifier:
keyid:77:64:05:E0:28:37:43:CF:52:18:0D:5B:13:81:2D:FB:A3:DE:D7:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2QF4Cg3Q89SGA1bE4Et-6Pe1_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/Je8TQvsC5d73ZllZsUPVKhDJAak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/363586-9b80-457b-bdf0-6ca52e029cbe/1/d2QF4Cg3Q89SGA1bE4Et-6Pe1_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.252.0/22
212.44.96.0/19
IPv6:
2a02:e9::-2a02:eb:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d2:a3:51:d8:38:c5:f0:7e:9b:32:97:a3:0a:df:e7:12:60:b1:
7d:69:b2:d2:56:0f:c0:76:e4:9b:50:62:70:2a:8d:05:c4:a7:
4a:ca:99:fc:c1:5b:1a:a8:ec:e4:9e:4c:ff:12:87:13:66:59:
95:c8:38:ca:60:83:d4:c3:cc:56:27:a9:33:7f:34:dc:f1:ab:
72:77:91:90:b9:66:c5:27:3e:98:41:1f:ff:63:ac:4d:21:17:
c0:89:a3:6b:f8:f3:bd:aa:d2:35:43:e5:7f:32:ad:2a:22:c4:
06:71:7c:d7:31:cd:6b:33:2b:02:b0:af:0e:aa:50:65:a7:95:
32:5a:4a:1a:55:bd:c2:e8:1f:0f:db:e6:80:88:4a:a2:1f:27:
9b:61:32:c5:d9:14:2e:d7:75:c2:d4:49:66:d4:a0:24:9e:75:
c8:79:45:40:8d:41:9f:06:05:d0:35:9a:28:88:67:b2:97:05:
93:27:fb:6b:4f:c3:ff:b6:85:b8:44:8d:72:d3:cd:ff:05:8b:
71:30:de:df:41:d9:ce:d2:45:cb:e0:6c:bf:ec:ed:30:c0:e6:
ee:f4:42:b9:1d:7e:71:bf:4d:7f:c0:cd:3c:27:da:67:14:61:
e2:83:5e:b6:3f:7c:ae:9c:57:ce:73:ac:b0:32:6a:b8:c1:60:
b3:93:e7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:31 2024 by rpki-client on console-ams.rpki-client.org