Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/250127-85d7-46b4-8865-bf0da5e8ce7f/1/Jcy7EnXlZWiNgtSZw3JmQV3FprI.roa
File: Jcy7EnXlZWiNgtSZw3JmQV3FprI.roa (raw, json)
Hash identifier: UXQ2ltyLF/Cv1/2+n19M4MfhM2ZqWmMRJIJg8QbhXGc=
Subject key identifier: 25:CC:BB:12:75:E5:65:68:8D:82:D4:99:C3:72:66:41:5D:C5:A6:B2
Certificate issuer: /CN=4de70403c9d2d7962cf113d93c462f9493d87362
Certificate serial: 06A30192
Authority key identifier: 4D:E7:04:03:C9:D2:D7:96:2C:F1:13:D9:3C:46:2F:94:93:D8:73:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TecEA8nS15Ys8RPZPEYvlJPYc2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/250127-85d7-46b4-8865-bf0da5e8ce7f/1/Jcy7EnXlZWiNgtSZw3JmQV3FprI.roa
Signing time: Sat 01 Jan 2022 10:05:14 +0000
ROA not before: Sat 01 Jan 2022 10:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 185.31.2.0/24 maxlen: 24
185.31.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111346066 (0x6a30192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4de70403c9d2d7962cf113d93c462f9493d87362
Validity
Not Before: Jan 1 10:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25ccbb1275e565688d82d499c37266415dc5a6b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:50:cd:09:c1:7e:06:48:a7:47:55:33:ac:19:
f7:6a:b7:bf:ba:f9:d3:9f:05:28:23:05:38:05:06:
8e:b6:c9:52:c2:48:e3:f2:99:54:da:fb:62:ed:16:
6f:ee:01:ab:ff:22:f6:13:9c:67:e3:28:7a:52:30:
79:b0:d7:af:5f:12:fd:ac:cb:b0:74:f7:ee:d3:dc:
ce:c7:2e:70:43:56:8c:75:90:69:99:8d:cb:25:6f:
ba:ea:c8:c2:41:a4:7c:ff:e7:34:33:3e:80:f0:c2:
a7:79:14:4c:b7:33:83:04:c3:2c:e3:c5:04:8d:ab:
77:66:60:75:8c:2d:8a:7a:ba:6f:46:5c:d9:66:65:
1b:7d:03:55:6d:13:70:fb:d7:bb:0f:b8:22:a7:9e:
7f:7b:32:86:d3:ba:c8:94:18:7d:8e:53:99:27:47:
74:18:b1:78:e0:66:11:74:00:e2:05:ee:3a:6a:41:
79:26:ed:4a:e1:de:e0:89:a4:d3:9d:6b:2a:60:00:
53:b6:da:b7:56:57:10:a5:50:33:c0:c3:72:e5:b2:
b6:f8:b4:09:48:ef:bf:99:9d:e4:81:40:77:70:a5:
3b:9a:9b:b9:b0:7a:1e:c5:dd:26:50:23:77:71:24:
95:32:24:e6:a9:e6:e6:85:c6:75:cd:2c:9a:67:82:
99:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:CC:BB:12:75:E5:65:68:8D:82:D4:99:C3:72:66:41:5D:C5:A6:B2
X509v3 Authority Key Identifier:
keyid:4D:E7:04:03:C9:D2:D7:96:2C:F1:13:D9:3C:46:2F:94:93:D8:73:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TecEA8nS15Ys8RPZPEYvlJPYc2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/250127-85d7-46b4-8865-bf0da5e8ce7f/1/Jcy7EnXlZWiNgtSZw3JmQV3FprI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/250127-85d7-46b4-8865-bf0da5e8ce7f/1/TecEA8nS15Ys8RPZPEYvlJPYc2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.0.0-185.31.2.255
Signature Algorithm: sha256WithRSAEncryption
1e:39:2f:f4:85:25:53:a3:60:f1:34:24:06:68:45:2a:49:e6:
56:fd:51:51:fa:a4:46:fe:57:99:e7:3c:d9:14:6f:16:c5:4d:
49:39:97:29:ec:ba:62:90:00:cd:1c:eb:cf:73:ad:0b:86:fd:
d7:11:17:61:49:97:86:68:f7:d1:69:71:54:c2:f2:6e:dd:0f:
08:5d:89:87:58:88:d7:68:44:8f:b3:4c:d6:5e:a7:4a:0b:c2:
27:aa:71:3e:08:58:40:51:22:c5:9a:28:ab:dc:5a:14:1b:e7:
f1:f6:e0:e8:d6:c5:4a:93:42:30:4b:2c:bd:b6:0f:2e:bd:34:
b2:cd:c1:01:b3:43:06:71:ee:17:82:fb:cd:42:23:28:4c:2f:
61:a1:de:7e:77:de:93:8e:06:d5:51:3c:d2:a0:19:1a:54:dc:
df:aa:8a:44:13:e8:93:cb:53:6b:a3:3c:0d:07:8e:e8:10:3f:
10:a4:9c:1f:4b:b7:0c:ad:a1:0c:04:98:af:a0:56:eb:06:96:
f4:31:c5:74:78:51:88:60:86:2f:76:0c:1e:70:cc:24:6d:51:
f6:e1:d4:fb:2a:0b:0d:20:c1:43:72:38:dd:92:6c:11:f0:e3:
09:c5:71:0a:18:5c:91:96:10:ec:a2:57:e4:63:6d:07:78:dd:
43:c4:0d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:54 2024 by rpki-client on console-fra.rpki-client.org