Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/JKKdoqvIoxKNv1JfGdkaJ3PEneA.roa
File: JKKdoqvIoxKNv1JfGdkaJ3PEneA.roa (raw, json)
Hash identifier: L1iaplHM5ge+58u8P8T4n0bfSarR3WI5x/hTksv0QV4=
Subject key identifier: 24:A2:9D:A2:AB:C8:A3:12:8D:BF:52:5F:19:D9:1A:27:73:C4:9D:E0
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 0F4A7726
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/JKKdoqvIoxKNv1JfGdkaJ3PEneA.roa
Signing time: Sat 01 Jan 2022 12:58:27 +0000
ROA not before: Sat 01 Jan 2022 12:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200533
IP address blocks: 185.117.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256538406 (0xf4a7726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 1 12:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24a29da2abc8a3128dbf525f19d91a2773c49de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6f:6e:c2:e3:ef:ce:a7:97:3e:f3:1d:e1:4b:
9a:c5:69:fb:17:54:d0:a7:4c:55:6a:d5:72:59:b9:
e5:db:be:be:3b:87:3e:2e:de:64:93:d7:e5:1c:3d:
73:eb:70:03:e8:03:75:e4:ff:72:4e:b0:f9:8b:79:
ac:78:e5:28:77:d3:a3:0d:4c:e7:2e:3f:13:e8:c5:
7b:b4:eb:60:83:0a:18:aa:c6:3d:f1:af:5d:fd:97:
37:6a:af:98:b5:ae:a8:ad:0e:5b:f0:5f:19:82:0e:
a4:5c:5a:66:71:18:c8:35:35:4e:34:00:ce:e5:1f:
68:9b:2a:05:03:b3:00:fd:ed:82:66:a6:39:ad:eb:
11:a8:04:57:f3:94:19:f4:cf:ec:72:e6:ed:c3:4e:
94:ac:a1:ce:80:40:a7:68:59:88:64:71:73:d6:3d:
79:08:2b:af:47:bf:cb:51:cd:2a:da:3e:25:56:08:
d4:c1:7a:6e:8f:f7:a5:34:51:35:3c:43:17:f0:fb:
d4:21:d0:2e:82:9a:18:0b:79:20:2c:3d:7b:ec:4e:
88:ea:0e:5e:97:c6:eb:b6:4a:ea:d8:c4:29:60:5d:
f4:3f:40:3e:f8:0a:ad:ca:06:f5:de:27:13:22:8f:
d5:39:9c:19:69:73:2d:cd:2c:04:7a:14:c7:cc:48:
e0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A2:9D:A2:AB:C8:A3:12:8D:BF:52:5F:19:D9:1A:27:73:C4:9D:E0
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/JKKdoqvIoxKNv1JfGdkaJ3PEneA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.82.0/24
Signature Algorithm: sha256WithRSAEncryption
60:82:ef:c7:ce:c0:a9:8a:a3:e2:2c:c5:85:b4:e1:1c:06:63:
20:0b:a9:7c:0d:8f:e8:21:09:d3:92:c8:30:eb:17:72:9c:54:
92:1d:8c:11:37:b6:63:67:45:2e:20:a4:6e:45:ce:19:cd:31:
62:14:1a:40:e1:14:30:88:b2:7e:8c:37:cb:42:72:ea:6b:1b:
b0:8a:20:06:40:27:8e:0c:70:a2:95:1d:6f:3e:3a:a7:33:78:
fd:84:e6:56:8c:a0:1b:fc:e4:7f:c5:fb:30:dd:5e:ef:e2:4c:
0e:00:4e:39:99:46:4f:9a:f5:d5:c5:c9:26:44:17:04:02:f9:
30:0e:e1:ac:7b:61:ee:81:77:c3:f1:c5:94:61:12:34:5e:4c:
27:41:3f:7a:ca:9c:eb:a5:06:53:e7:bb:22:91:ad:cc:54:b2:
2d:c7:fe:f5:7a:1d:11:52:b3:67:44:a8:06:b4:67:7a:c4:ab:
ea:0d:e1:64:3c:79:98:ad:d9:79:d9:68:6a:ce:9e:52:ff:5a:
2f:ed:38:f9:9f:0d:19:a5:39:eb:13:e3:1e:a9:55:ff:42:7c:
c0:e5:27:42:17:8d:29:66:dc:a6:04:13:e7:c6:64:95:89:93:
3a:b0:14:ea:48:97:43:c2:34:64:d7:05:87:bd:a8:43:26:e7:
9e:c9:d3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org