Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jrc6NtmJ1csPyORyf-9y7yZ7qMY.roa
File: jrc6NtmJ1csPyORyf-9y7yZ7qMY.roa (raw, json)
Hash identifier: X9XCbwOj80ntmVf5aKzYcMc3ILtN7ApwFtKzGKOysSM=
Subject key identifier: 8E:B7:3A:36:D9:89:D5:CB:0F:C8:E4:72:7F:EF:72:EF:26:7B:A8:C6
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0327A201
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jrc6NtmJ1csPyORyf-9y7yZ7qMY.roa
Signing time: Sat 01 Jan 2022 16:04:23 +0000
ROA not before: Sat 01 Jan 2022 16:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57380
IP address blocks: 185.103.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52929025 (0x327a201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eb73a36d989d5cb0fc8e4727fef72ef267ba8c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9f:96:f4:78:02:3a:a2:10:ce:18:15:68:e2:
fd:ac:f0:5d:f1:ca:69:d1:17:37:1b:9a:98:51:50:
cb:e3:72:01:68:d0:b2:37:d8:c1:cf:ed:5a:e2:9e:
33:5b:2a:19:fe:4c:d9:64:4d:7c:9a:c0:af:14:85:
43:c7:97:77:ab:b3:cd:53:b1:ba:ce:2a:ab:8b:d3:
ea:e6:18:d3:c0:ec:fb:b9:3e:08:d6:fc:75:9e:99:
fc:f3:3f:f6:36:76:5f:65:14:08:cc:44:8e:7b:11:
f3:fa:7e:3c:66:5c:8e:5a:8a:48:2d:9e:14:86:d1:
f8:ac:3c:0e:8e:c4:9e:9e:77:ff:46:33:0f:ab:76:
d0:d1:12:88:92:b8:fd:e0:6e:fe:8f:35:b4:f7:b5:
71:d9:34:d3:d3:a7:98:d2:5b:f2:49:5c:90:f4:38:
65:47:93:56:e7:ec:49:9e:42:73:39:11:ba:d8:70:
40:92:80:0a:38:f8:cd:d8:a9:60:88:78:84:6c:96:
a8:92:16:a3:e2:33:a5:d1:68:a3:8b:e2:ee:f1:e4:
13:bc:98:9c:c5:b0:bf:fa:48:15:d9:59:a8:e3:61:
3b:7f:31:00:29:de:82:36:96:ca:5a:b3:a1:c2:e1:
f1:e6:73:db:b2:34:40:88:03:e3:3d:66:a5:1d:c8:
e8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B7:3A:36:D9:89:D5:CB:0F:C8:E4:72:7F:EF:72:EF:26:7B:A8:C6
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jrc6NtmJ1csPyORyf-9y7yZ7qMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.108.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:bb:38:39:eb:75:f5:f7:0d:e4:3c:60:d3:e6:98:11:f8:a6:
44:d3:da:ac:3c:c0:d1:8a:ea:83:c1:7e:52:5d:db:e4:cb:3d:
84:a8:2b:5d:32:c0:4b:f4:3e:f3:18:a8:ef:49:46:05:f8:59:
4a:71:8a:6d:ea:2a:8c:3b:fc:40:45:b5:11:07:a4:0b:e2:ed:
16:86:5a:db:b2:11:fe:a5:21:87:bc:fb:0a:81:1d:a4:73:ad:
81:fb:38:e3:ae:9b:a6:6c:de:4a:ce:4d:95:86:d2:e6:0a:80:
5d:89:d9:3a:a6:5c:cc:76:72:93:8a:44:9f:5c:cf:83:a5:31:
48:f9:28:f8:1e:41:64:00:d7:b6:06:74:3b:d7:a6:12:aa:a5:
8d:09:be:31:fe:76:49:2c:1c:17:e9:63:d8:7f:f5:e9:da:d2:
49:73:28:33:81:6e:bb:29:ce:e2:45:47:c6:01:77:15:86:55:
60:da:31:e2:ec:a8:dd:35:2a:9b:09:fb:d0:69:ed:db:d6:83:
69:e4:b7:98:39:dc:ce:49:84:61:ef:2d:30:43:17:71:c3:2b:
12:a4:4f:c9:6f:36:65:df:e2:d0:8d:25:82:20:d2:c5:b3:14:
a7:ff:e9:62:53:86:d2:83:a5:bc:fe:8d:ec:7e:51:0d:70:f4:
09:c9:f7:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org