Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jPRp8TtAQVuRUZJkQwAyXN93u98.roa
File: jPRp8TtAQVuRUZJkQwAyXN93u98.roa (raw, json)
Hash identifier: NWbvczTtD2JHwtQiEV813S4INsCkdX+YEmvZeK400JM=
Subject key identifier: 8C:F4:69:F1:3B:40:41:5B:91:51:92:64:43:00:32:5C:DF:77:BB:DF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 064F9652
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jPRp8TtAQVuRUZJkQwAyXN93u98.roa
Signing time: Sat 01 Jan 2022 06:52:44 +0000
ROA not before: Sat 01 Jan 2022 06:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211959
IP address blocks: 185.226.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105879122 (0x64f9652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cf469f13b40415b915192644300325cdf77bbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0a:52:f9:9f:14:c1:08:de:e5:df:39:2d:3f:
42:d1:e7:c9:6e:ea:78:d6:ef:a4:03:eb:e9:58:70:
7c:4f:0b:97:84:18:2d:65:94:a9:42:27:23:fa:c8:
b6:f6:ec:f3:4d:52:d4:5e:61:ad:23:88:0f:2e:f9:
a2:ab:0c:f9:bf:1c:db:3c:13:d1:97:97:57:2d:4b:
ab:9f:36:00:f5:9a:bd:8f:3d:59:7f:3c:38:19:86:
f5:76:8a:cf:a3:98:13:ff:4a:aa:74:44:ab:57:f7:
57:5d:1e:24:8b:6c:c7:5f:0b:da:c3:2c:62:de:cd:
a6:67:2f:73:ef:88:3b:c3:bb:17:79:ab:1c:5e:c0:
0d:6a:87:81:ad:e3:d0:b2:2b:72:98:25:83:92:86:
3e:4e:08:d7:ba:86:34:c5:05:a8:33:6d:36:62:e9:
eb:18:fc:7a:7a:4b:c1:14:03:2a:10:0b:56:b9:c4:
75:7f:b9:5c:dc:a8:0b:d4:18:cd:3a:b1:ed:c7:c4:
d6:52:d7:38:e5:70:af:75:03:c9:45:0d:d5:0a:04:
1d:0c:58:31:9c:f7:37:a7:47:af:d0:b3:21:2e:7a:
7d:9f:b7:6b:93:4a:b9:b6:8f:70:8d:67:01:45:8b:
50:fb:8c:63:bd:6f:51:6a:e8:24:db:aa:fb:dc:77:
46:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F4:69:F1:3B:40:41:5B:91:51:92:64:43:00:32:5C:DF:77:BB:DF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jPRp8TtAQVuRUZJkQwAyXN93u98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.104.0/22
Signature Algorithm: sha256WithRSAEncryption
74:bc:69:5d:72:a1:25:c2:d3:d6:36:09:58:a7:87:9b:4c:49:
95:c7:37:5b:7b:c5:a2:eb:32:58:5f:d4:30:c9:fe:57:2f:7a:
cc:b0:d2:0c:65:c0:5a:2f:1a:f3:c5:c3:aa:3b:ad:55:6b:09:
9d:00:3c:94:ef:17:72:a2:6e:1e:df:9a:7d:57:f7:35:83:9e:
60:0e:8f:d6:57:a5:d4:21:0d:c4:01:06:3e:c3:be:70:88:45:
31:ba:64:8e:80:3f:03:0e:c6:fd:c3:79:93:3d:52:7e:d2:10:
77:15:93:04:55:85:cb:86:dc:f4:30:2a:b8:04:e9:c0:ee:64:
c6:c5:84:ec:a9:87:f4:b5:c0:6f:ff:7b:cc:8b:49:5b:c6:69:
b6:a1:94:e1:c8:ce:f4:91:2f:8a:65:84:57:d7:63:d6:ab:4f:
fc:d3:51:95:f6:b0:14:12:7d:ac:9a:6b:6b:b6:5b:99:b1:43:
f7:b4:12:2a:4d:2a:36:4e:98:cd:11:67:71:e6:e3:ac:30:d1:
3b:7d:5f:2a:ab:3b:78:d8:b7:6f:44:7a:02:19:75:f6:c8:6e:
77:c3:fb:c5:26:ee:22:31:c4:c5:83:b4:02:a5:7f:1d:b4:48:
be:73:ad:16:d8:c3:f4:c7:d6:56:2f:08:f3:e4:9f:e7:ca:90:
c0:fb:af:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org