Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/JymxtSICqKmsXZ6VoCIvvMm6z44.roa
File: JymxtSICqKmsXZ6VoCIvvMm6z44.roa (raw, json)
Hash identifier: vM52gz2MGb1mICtmXOMOo0jm/kR1GetQOKS+visS6bc=
Subject key identifier: 27:29:B1:B5:22:02:A8:A9:AC:5D:9E:95:A0:22:2F:BC:C9:BA:CF:8E
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1816DC05
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/JymxtSICqKmsXZ6VoCIvvMm6z44.roa
Signing time: Fri 07 Jan 2022 19:30:40 +0000
ROA not before: Fri 07 Jan 2022 19:30:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 185.211.51.0/24 maxlen: 32
185.185.251.0/24 maxlen: 24
45.85.87.0/24 maxlen: 32
185.119.252.0/24 maxlen: 24
185.122.36.0/24 maxlen: 24
79.143.58.0/24 maxlen: 24
79.143.56.0/24 maxlen: 24
185.249.218.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404151301 (0x1816dc05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 7 19:30:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2729b1b52202a8a9ac5d9e95a0222fbcc9bacf8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:57:8c:9e:a7:68:30:57:cb:c5:6e:c7:21:28:
cb:e7:de:90:a0:4f:aa:33:fe:57:c9:4f:99:87:68:
92:b6:79:b6:af:ab:c2:89:bf:eb:dd:61:68:e7:45:
4d:a0:4b:81:14:33:ba:16:ef:82:ed:5a:d3:cd:bd:
b5:78:d6:04:35:10:8e:a4:09:28:78:bd:6f:87:0e:
bc:fe:1c:02:aa:f1:11:b8:4c:93:03:b2:99:13:4f:
66:19:c7:03:bb:9e:8b:4a:68:1d:8c:d8:37:25:9d:
b3:c1:26:a4:c0:63:81:ac:3b:6e:7e:21:2a:8f:f0:
21:e8:1a:03:73:c2:82:b0:04:b8:c3:aa:93:93:14:
08:6f:9d:4b:da:7d:27:bd:82:be:39:47:22:5f:1b:
ae:e2:1f:99:be:1c:6e:84:80:f0:8a:b6:7b:75:5f:
8b:75:73:4c:8b:29:39:92:bc:a5:89:e8:64:46:b0:
6b:10:1d:ba:08:29:2a:c0:4c:7f:30:7a:11:4d:43:
72:4a:4f:be:47:9e:92:b4:57:a5:31:5f:e6:d0:2d:
e0:1a:29:34:d0:17:45:66:e6:4f:fa:2d:72:f4:99:
25:98:71:a9:56:06:45:f5:c1:c7:7f:35:b6:48:99:
ec:ad:f8:2a:6f:78:4e:1f:75:95:7b:d9:2f:e9:6f:
b3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:29:B1:B5:22:02:A8:A9:AC:5D:9E:95:A0:22:2F:BC:C9:BA:CF:8E
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/JymxtSICqKmsXZ6VoCIvvMm6z44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.87.0/24
79.143.56.0/24
79.143.58.0/24
185.119.252.0/24
185.122.36.0/24
185.185.251.0/24
185.211.51.0/24
185.249.218.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:9e:05:8a:6a:ae:6a:95:e9:b2:cd:aa:48:e1:da:07:1e:13:
6f:af:d0:14:62:54:10:2d:7f:5e:a9:bd:2b:a4:7e:58:52:e4:
06:33:bf:d6:25:01:ea:4b:e4:5c:78:9b:79:89:45:7a:29:8c:
a3:42:c7:8a:a3:4f:7e:c3:92:e9:76:73:32:2c:8e:36:9c:51:
8e:30:2d:89:1f:25:cb:60:fb:18:4e:f0:bf:1b:6b:e9:92:f5:
a9:c9:ea:6f:6e:31:f2:46:f9:5f:88:7a:09:6e:c0:43:3d:56:
4c:0c:60:7e:c5:9b:23:38:2b:61:6a:2e:b2:39:60:57:10:86:
34:f3:21:ed:26:db:30:2a:e2:ea:7e:e6:7a:8e:31:9f:17:7f:
df:ab:81:bd:dd:26:27:62:7c:56:9a:ac:cf:ff:1d:7a:db:a0:
83:87:bc:ef:80:6b:63:a4:31:79:31:72:52:5b:ae:66:0d:4b:
01:20:79:03:3a:b3:18:91:79:02:4d:81:c3:33:a2:e6:c4:5d:
71:04:20:fc:df:bd:89:de:05:de:df:9f:71:2c:87:06:de:3f:
6b:52:08:62:18:4a:c7:a0:1e:22:ca:26:3a:6d:d6:f4:0e:85:
45:79:40:7d:85:4d:7e:8a:89:d9:ec:09:68:3b:27:1e:7f:d7:
51:a4:7c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org