Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/JFkgiP_-pUx2hzb74aZhAPHsDho.roa
File: JFkgiP_-pUx2hzb74aZhAPHsDho.roa (raw, json)
Hash identifier: unZHVWn9vatQc0Iso6MKiSvIffmsCg8saIg0Dd8ZYAI=
Subject key identifier: 24:59:20:88:FF:FE:A5:4C:76:87:36:FB:E1:A6:61:00:F1:EC:0E:1A
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852AEB5F7C7B138FD766CFFBBE56DCA98A
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/JFkgiP_-pUx2hzb74aZhAPHsDho.roa
Signing time: Mon 19 Dec 2022 15:05:46 +0000
ROA not before: Mon 19 Dec 2022 15:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209034
IP address blocks: 185.240.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:eb:5f:7c:7b:13:8f:d7:66:cf:fb:be:56:dc:a9:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 15:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24592088fffea54c768736fbe1a66100f1ec0e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cd:da:8c:e9:a6:9c:ee:96:24:2d:b4:cf:56:
e2:0d:95:a5:f7:55:cb:d0:f5:80:bc:bd:7f:62:55:
ff:2a:2d:fe:66:8e:66:c6:42:01:06:4a:d4:32:11:
6b:11:ef:3d:2c:b7:05:ec:a0:c2:8e:64:df:8a:b9:
41:7b:1d:2b:bf:da:05:a5:d0:53:2c:e2:84:fa:f7:
50:d2:bf:7f:f7:63:20:87:17:82:1d:30:99:56:67:
2b:1e:ad:a2:ac:3a:e8:21:d8:84:c9:58:d4:fe:03:
5a:58:a3:22:6c:c5:6c:06:81:55:cd:86:c8:fe:ca:
68:b4:cb:5e:02:a6:e3:c4:21:57:73:de:fb:af:f1:
06:e8:cf:d5:12:5e:34:b2:da:30:48:8e:28:e6:70:
23:6d:5c:66:35:61:e1:41:0c:4b:b0:71:d6:9c:9c:
ca:c1:d9:73:1f:8f:82:5b:a6:28:41:e5:af:ce:03:
ee:fb:83:e9:61:5b:55:a5:45:60:95:4c:fb:40:20:
84:46:6b:fa:e6:ab:c7:09:48:4b:61:b7:8a:f8:58:
0b:43:7c:4b:d5:a5:4f:c6:9b:15:82:37:e6:92:05:
0d:e7:45:1b:a4:72:ba:26:0d:d9:9b:77:5b:9d:a1:
90:12:7c:6f:c7:e8:57:80:70:0e:b2:37:43:32:1d:
89:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:59:20:88:FF:FE:A5:4C:76:87:36:FB:E1:A6:61:00:F1:EC:0E:1A
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/JFkgiP_-pUx2hzb74aZhAPHsDho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.44.0/22
Signature Algorithm: sha256WithRSAEncryption
40:62:77:ae:4e:4e:d2:70:cc:4e:e2:12:7f:4b:80:97:58:8d:
09:70:7c:15:00:c3:bf:9c:e8:da:f9:17:7b:a7:f4:58:bd:5f:
2a:a6:4e:9b:04:66:00:ea:f8:61:59:5c:a0:38:83:b4:c2:6f:
6b:27:70:51:a0:60:7d:a7:a3:16:58:1e:99:36:bc:24:29:4b:
18:b3:1d:fc:e9:4a:9c:75:25:9c:47:fe:fa:78:5e:c5:bc:39:
d2:a9:2a:97:cd:60:7e:1d:18:16:eb:d8:18:c1:bd:a3:1c:7f:
a2:17:eb:50:a3:1b:80:e4:d6:ef:94:87:4a:c4:b0:f2:c6:42:
b2:fb:4e:c6:ab:8b:77:05:f6:64:af:94:22:eb:72:11:06:0a:
93:8b:23:b2:e8:6b:e8:57:5a:be:a8:90:c0:cf:52:6a:b8:9e:
05:a4:42:71:5f:e9:50:df:d4:a4:ac:4e:c3:3f:9a:a5:d1:ee:
3a:db:c3:87:1c:60:56:87:1f:e9:79:38:26:9a:fa:e4:12:44:
c0:30:52:60:3a:a0:63:81:fe:51:76:73:2c:03:c9:31:11:04:
c8:7d:f1:27:6a:cf:54:d0:27:ec:9a:29:02:a1:7d:67:b3:90:
b9:a4:88:24:ab:a7:10:87:7c:e4:b6:d1:19:15:f2:4d:2d:24:
8f:28:f4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org