Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/JW7NxgEd65Ls7M36F-89EWsZlCU.roa
File: JW7NxgEd65Ls7M36F-89EWsZlCU.roa (raw, json)
Hash identifier: XqVbYZCbknnljWOxfTZOfvAOxpi8Nz4LGFoW3ifMT/o=
Subject key identifier: 25:6E:CD:C6:01:1D:EB:92:EC:EC:CD:FA:17:EF:3D:11:6B:19:94:25
Certificate issuer: /CN=e24bc2870de2599daf66497f5729c74b33ef993a
Certificate serial: 19E3F766
Authority key identifier: E2:4B:C2:87:0D:E2:59:9D:AF:66:49:7F:57:29:C7:4B:33:EF:99:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kvChw3iWZ2vZkl_VynHSzPvmTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/JW7NxgEd65Ls7M36F-89EWsZlCU.roa
Signing time: Sat 01 Jan 2022 02:53:59 +0000
ROA not before: Sat 01 Jan 2022 02:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 193.178.185.0/24 maxlen: 24
2001:7f8:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434370406 (0x19e3f766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24bc2870de2599daf66497f5729c74b33ef993a
Validity
Not Before: Jan 1 02:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=256ecdc6011deb92ececcdfa17ef3d116b199425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:50:b3:c8:61:7b:6e:2c:6e:18:0f:b5:74:a1:
80:ef:95:50:7e:ea:53:be:dd:2d:57:1e:0e:07:3c:
e0:c0:57:89:18:bb:cf:3d:6b:bb:e4:1e:5a:e8:ba:
51:cb:8e:43:80:08:3d:f8:14:1f:c0:b1:2e:e7:bf:
d7:cc:be:74:6a:75:ec:d8:d3:8c:26:94:da:f5:94:
43:1a:9b:f6:92:b1:da:15:a0:aa:b5:00:88:12:12:
51:ea:3e:d6:fa:d3:e4:cd:20:7e:ab:7b:53:2b:04:
58:54:1e:c0:31:46:20:24:3b:69:18:89:d5:02:88:
8d:81:da:ec:54:95:81:19:35:0f:e8:93:b1:4f:28:
7d:d4:87:ed:ff:bb:ba:b0:a0:92:f1:31:c9:db:5a:
b9:3e:c1:22:c2:bf:9b:16:e0:28:a7:e4:02:c8:0e:
6f:2e:a8:7a:13:a6:0c:45:ff:24:9a:f9:2d:36:13:
39:72:13:fa:ab:d9:a1:57:b1:c1:19:fe:30:7d:88:
1c:6c:ab:84:3f:f0:2f:98:a2:1b:3c:8b:c0:a7:56:
65:bb:5b:9e:c0:26:0a:23:0c:14:a7:7e:b3:24:c0:
a9:60:18:33:65:07:1b:b4:b3:0b:ea:6e:a9:45:d3:
1c:2b:b6:98:5c:75:a1:86:dc:2d:b3:dd:66:0f:d4:
84:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6E:CD:C6:01:1D:EB:92:EC:EC:CD:FA:17:EF:3D:11:6B:19:94:25
X509v3 Authority Key Identifier:
keyid:E2:4B:C2:87:0D:E2:59:9D:AF:66:49:7F:57:29:C7:4B:33:EF:99:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kvChw3iWZ2vZkl_VynHSzPvmTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/JW7NxgEd65Ls7M36F-89EWsZlCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/4kvChw3iWZ2vZkl_VynHSzPvmTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.185.0/24
IPv6:
2001:7f8:19::/48
Signature Algorithm: sha256WithRSAEncryption
96:40:e3:7e:65:00:f1:39:61:64:bc:82:bd:4b:6d:7b:e9:37:
50:ef:40:6e:6a:f6:a6:a8:49:6e:02:4a:d2:c5:95:a6:7f:a4:
92:3e:58:c2:22:2c:fe:8c:8e:8a:57:12:15:dd:b2:db:08:5e:
14:d8:de:fb:65:ca:1b:bc:c8:b2:dc:16:d4:cc:4f:3e:bb:ba:
2d:98:a0:e5:c8:e6:6b:93:24:63:d3:78:42:39:e3:59:89:60:
75:93:66:08:49:20:ba:d1:83:99:4f:9f:af:eb:21:16:7a:74:
e9:bd:9b:86:45:4c:91:eb:e1:41:3f:7b:ab:a9:36:45:4e:09:
52:da:28:1e:e1:70:0b:dc:52:3d:13:c8:53:50:ae:48:97:33:
8c:e9:8f:c4:5b:e0:ff:41:ef:4f:07:8c:69:a9:30:ae:63:a7:
32:d5:1a:10:ee:48:e2:a1:2d:66:0a:f4:01:38:fd:40:22:24:
e8:93:10:b7:d7:e8:56:42:11:b0:9d:91:c8:2f:61:bc:a6:06:
b4:89:a2:5d:2b:a5:ec:87:9e:d3:dc:f2:2d:20:ca:4f:61:42:
ae:3c:1c:2a:d1:7c:42:d4:91:2f:5c:b3:6a:15:e1:5c:87:ce:
97:96:a7:02:7d:64:02:a6:0d:3d:6c:8b:ff:78:70:23:d6:e3:
44:37:30:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org