Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/jIj99szLK_jnEBG0YV5TDBGk9zI.roa
File: jIj99szLK_jnEBG0YV5TDBGk9zI.roa (raw, json)
Hash identifier: aSi8RTorsnF0EFrRZKFpyE/Li0If9mLegvOG0QR8Psg=
Subject key identifier: 8C:88:FD:F6:CC:CB:2B:F8:E7:10:11:B4:61:5E:53:0C:11:A4:F7:32
Certificate issuer: /CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Certificate serial: 1A9593E0
Authority key identifier: 7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/jIj99szLK_jnEBG0YV5TDBGk9zI.roa
Signing time: Sat 01 Jan 2022 01:57:05 +0000
ROA not before: Sat 01 Jan 2022 01:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61400
IP address blocks: 37.130.195.0/24 maxlen: 24
185.45.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446010336 (0x1a9593e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Validity
Not Before: Jan 1 01:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c88fdf6cccb2bf8e71011b4615e530c11a4f732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d0:7a:61:5e:a7:4d:9e:a1:87:77:f2:dd:82:
d8:21:79:39:74:1d:30:8c:c7:65:19:41:44:74:c4:
1c:3d:57:06:df:65:f0:30:c0:9e:88:56:91:08:f9:
e7:75:2e:d5:1f:b9:4c:dd:5e:d3:3c:23:81:16:5b:
66:f6:1b:88:cf:79:85:99:24:76:a2:13:9c:63:68:
aa:13:1c:d3:89:c2:fc:1f:23:8b:73:3c:91:37:40:
b0:98:a3:71:d5:ba:23:60:e4:f7:eb:56:77:f3:a3:
dd:ec:99:b9:3f:38:d1:38:0c:1c:9f:bf:70:01:18:
0c:c8:60:ae:c5:71:a6:9f:c7:a7:3c:d3:a5:b7:a0:
4e:4f:eb:9e:45:36:34:13:26:93:a0:65:d4:b1:17:
fa:0f:84:0b:32:47:e3:fd:9d:2a:9b:a9:48:70:06:
e3:c1:77:e4:f5:72:ae:49:6e:7a:e5:8e:9a:06:5e:
27:5b:83:cd:04:20:da:dd:51:15:5f:4d:d3:c2:49:
8e:4a:c9:22:84:17:51:05:6a:e0:51:ab:66:f4:83:
04:74:70:69:70:4a:95:21:f0:34:9c:21:32:67:ea:
c2:ed:23:1e:e8:3e:ce:c9:ed:fe:64:d9:35:f0:e3:
05:2c:ca:50:2f:05:20:0b:df:bd:43:17:ae:5e:9b:
87:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:88:FD:F6:CC:CB:2B:F8:E7:10:11:B4:61:5E:53:0C:11:A4:F7:32
X509v3 Authority Key Identifier:
keyid:7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/jIj99szLK_jnEBG0YV5TDBGk9zI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/fUOw7HmVHV1VgBM-UympDy_uHFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.195.0/24
185.45.82.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:4d:e0:57:0f:ea:0d:b0:ab:a9:89:fb:d5:b0:bc:e4:ae:3e:
e0:46:d0:45:0f:94:1d:da:ab:56:88:9c:02:54:01:09:a1:28:
ac:d7:63:98:16:b2:7c:5f:18:8d:85:35:6c:7c:22:c2:17:7d:
c4:cd:e7:ca:ed:b8:4e:ad:68:e7:21:2e:fd:6f:a7:21:27:84:
b2:73:4f:5c:8f:bb:f5:37:7b:52:8e:b1:51:b8:94:09:ee:c1:
df:68:3a:2a:cf:f9:a9:ef:fc:4b:5d:36:fe:2a:6e:18:3c:e5:
3f:cc:be:7b:97:8a:51:98:32:1f:31:b3:83:bf:7f:39:d9:28:
47:91:52:2c:ac:ec:6d:2c:7f:83:d9:37:38:83:88:53:1a:85:
8e:e0:97:af:ed:f7:9b:a9:2d:5d:e3:a2:bb:3c:4b:db:92:ab:
23:4a:3d:92:f2:85:33:9b:7f:44:08:ae:8c:dc:be:66:79:e4:
23:65:c7:32:f8:57:b9:b1:c8:72:01:d1:51:1e:5a:e3:03:ed:
07:47:fc:ea:3c:9d:68:81:54:b1:0b:6b:a6:84:7b:61:42:a2:
fc:b5:3d:06:a2:d4:93:0e:4b:26:f0:61:f0:cc:5f:90:8b:08:
5c:7b:c5:58:bc:5c:6f:a4:85:21:79:84:8c:60:49:71:7a:c1:
68:13:01:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:14 2024 by rpki-client on console-fra.rpki-client.org