Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Jjc2TlexlN9ckefoR-H0QJlskG0.roa
File: Jjc2TlexlN9ckefoR-H0QJlskG0.roa (raw, json)
Hash identifier: rxsGk2mjqjb/VoUQDEtvTFuRdLmxABixsnOUrtjaVH4=
Subject key identifier: 26:37:36:4E:57:B1:94:DF:5C:91:E7:E8:47:E1:F4:40:99:6C:90:6D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 077862A9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Jjc2TlexlN9ckefoR-H0QJlskG0.roa
Signing time: Fri 08 Apr 2022 10:38:23 +0000
ROA not before: Fri 08 Apr 2022 10:38:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 185.246.112.0/24 maxlen: 24
185.246.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125330089 (0x77862a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 8 10:38:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2637364e57b194df5c91e7e847e1f440996c906d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:83:2b:96:2f:fa:cd:fc:bc:d6:87:ce:95:1f:
6a:f5:43:c7:5a:61:7b:ea:9c:63:2a:e0:ff:b9:c2:
ce:c9:18:af:43:41:e2:5e:c9:e6:ac:80:88:59:40:
c2:b7:54:91:9f:a0:93:1a:ba:5b:78:6d:86:b0:88:
b8:fc:e8:0c:c6:d5:52:64:4e:0f:11:eb:c7:5f:52:
26:ae:dc:7d:cb:5a:97:ca:88:29:9f:73:bb:f8:5b:
a1:b9:75:a7:77:88:0a:2d:8f:86:7c:fc:5f:5d:02:
02:c8:ba:78:dc:70:74:56:2e:37:f6:f0:bd:22:e0:
0c:a6:8c:6e:03:24:aa:67:ac:7a:65:30:e2:39:07:
a1:64:42:3b:42:5b:d1:54:a9:40:c1:9d:cb:b1:17:
30:67:53:e0:e1:fc:6d:58:ce:c7:eb:40:5a:21:c8:
d2:71:f9:00:1c:fe:13:c8:39:61:7c:ec:b9:fa:2d:
d1:de:24:81:ac:5d:4c:1f:96:8a:0a:7c:09:b6:ae:
dc:85:e5:26:9f:a8:7a:fb:c6:44:78:7f:16:49:ee:
66:47:f4:14:2d:97:29:3c:f4:29:9c:13:65:65:0c:
b6:5d:49:d1:e9:81:2a:0f:99:21:00:ae:1b:44:d1:
91:30:a5:7e:d5:b9:4e:cf:1a:d5:70:a2:13:f4:35:
8b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:37:36:4E:57:B1:94:DF:5C:91:E7:E8:47:E1:F4:40:99:6C:90:6D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Jjc2TlexlN9ckefoR-H0QJlskG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.112.0/23
Signature Algorithm: sha256WithRSAEncryption
06:f6:45:dc:2f:e2:44:da:ed:93:35:c4:38:77:9e:d5:00:3c:
e5:d5:7f:63:9b:ec:fd:b1:b1:63:88:ed:dc:09:61:ff:ce:cd:
ed:d3:a6:e6:4b:fa:43:d9:05:78:e7:e2:b9:bd:dd:89:44:6c:
3d:23:41:e8:bb:e6:53:ef:7e:49:55:68:f8:8a:4e:7d:70:b4:
35:d6:5b:36:b0:69:67:8f:d6:05:63:c0:c3:31:61:59:5c:95:
0c:6f:de:8b:f3:f3:69:a7:b0:1e:ca:1e:73:ae:b9:d6:5a:47:
c4:54:ae:1e:7c:a7:02:da:d9:ec:d0:aa:e4:ac:38:b8:a1:fb:
cb:31:00:24:4a:5e:00:34:4d:95:9e:0b:4f:80:21:45:bd:b9:
74:e8:bd:57:ba:71:3b:55:bd:d7:75:61:2a:a4:1d:fc:d9:78:
58:3c:af:36:fc:9c:3b:76:8a:26:1d:7c:e4:dd:86:5e:ca:2c:
3a:27:23:4e:ce:75:c5:ac:85:5c:7e:a6:c0:36:2b:2e:ef:da:
ee:55:b7:86:e4:59:fb:5b:38:93:5a:2f:c8:7a:08:80:58:3c:
dd:45:9e:0f:38:4e:a3:5a:39:5a:ee:63:7f:fe:bf:ec:a4:ce:
24:c6:aa:47:4c:8c:8c:15:0c:35:8b:fd:f9:90:2d:45:11:29:
1c:15:2d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org