Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/dc4e00-78b6-475b-85c4-02144551299f/1/JGIk6wjUkrTCTlyc3nDIzHRXrDI.roa
File: JGIk6wjUkrTCTlyc3nDIzHRXrDI.roa (raw, json)
Hash identifier: LvoIS+MuqGEsc+9Arb/xn/Ku2Iryh8IacDEwH4qLFKc=
Subject key identifier: 24:62:24:EB:08:D4:92:B4:C2:4E:5C:9C:DE:70:C8:CC:74:57:AC:32
Certificate issuer: /CN=2614411899d721f343ed2a39629969417b5b655d
Certificate serial: EFFE1E
Authority key identifier: 26:14:41:18:99:D7:21:F3:43:ED:2A:39:62:99:69:41:7B:5B:65:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhRBGJnXIfND7So5YplpQXtbZV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/dc4e00-78b6-475b-85c4-02144551299f/1/JGIk6wjUkrTCTlyc3nDIzHRXrDI.roa
Signing time: Sat 01 Jan 2022 07:02:57 +0000
ROA not before: Sat 01 Jan 2022 07:02:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207046
IP address blocks: 185.249.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15728158 (0xeffe1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2614411899d721f343ed2a39629969417b5b655d
Validity
Not Before: Jan 1 07:02:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=246224eb08d492b4c24e5c9cde70c8cc7457ac32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f3:06:14:f4:e8:bf:7a:f8:04:34:40:e7:39:
82:ba:27:ce:b7:c2:a6:4d:d8:10:90:18:50:70:0b:
66:d0:50:f9:d5:55:17:1b:90:e1:5e:c8:3d:89:b9:
71:da:bd:af:5b:b1:a0:c1:03:14:b0:5c:f1:73:12:
d5:48:9b:ee:6f:9b:b9:63:15:d6:50:e2:c6:51:e0:
50:f1:2a:d2:25:32:2e:3e:65:33:20:4a:9f:12:de:
76:19:ec:54:aa:fd:75:cb:ce:06:09:3c:01:f4:9e:
9a:a0:45:a1:e2:93:75:63:42:f7:b3:b4:37:95:d6:
1d:e5:e4:d3:f6:a5:f9:63:64:21:00:8e:dd:27:7b:
12:b0:f6:d4:5c:4b:22:c4:1b:f3:cb:cc:72:d3:f5:
21:a0:84:6b:c8:e4:a2:b9:34:3b:b5:57:4e:ed:ee:
45:a0:72:14:fb:27:ae:54:8d:bc:5b:d3:59:5c:7d:
50:1d:d4:3c:4a:69:b4:33:6e:cb:4b:13:ac:cb:56:
eb:bb:8f:18:41:8e:09:0f:15:0d:ef:4f:cd:7b:09:
bf:30:28:f9:a1:30:2a:e7:a9:29:1c:d2:b7:e9:36:
a4:57:52:1b:94:da:05:2d:a5:ad:ce:e2:9c:37:e3:
be:cb:71:1f:3d:5b:8f:b5:20:78:6d:94:b0:57:32:
08:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:62:24:EB:08:D4:92:B4:C2:4E:5C:9C:DE:70:C8:CC:74:57:AC:32
X509v3 Authority Key Identifier:
keyid:26:14:41:18:99:D7:21:F3:43:ED:2A:39:62:99:69:41:7B:5B:65:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhRBGJnXIfND7So5YplpQXtbZV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/dc4e00-78b6-475b-85c4-02144551299f/1/JGIk6wjUkrTCTlyc3nDIzHRXrDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/dc4e00-78b6-475b-85c4-02144551299f/1/JhRBGJnXIfND7So5YplpQXtbZV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.52.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b7:a1:57:d7:d1:57:5f:ba:49:ae:1d:eb:0a:0c:81:36:d5:
17:f0:ed:1b:1d:6a:62:cb:fe:f4:dc:10:c7:c6:81:22:a0:d5:
06:fe:2f:68:37:df:81:43:9a:bc:6c:78:70:ba:6e:0b:d3:c8:
b7:3e:1c:30:6c:af:5e:26:a7:4e:6e:05:c2:1d:e5:f2:73:bb:
af:51:b7:42:a7:51:f5:76:ae:bd:2c:9b:56:13:34:d8:8d:0e:
d4:75:26:1c:09:51:14:35:65:b8:38:86:d7:63:68:e2:2a:4c:
31:70:4d:98:e3:2d:a6:01:ad:9e:68:15:4f:0d:4d:de:8e:05:
c1:fb:b0:a4:90:bf:70:f0:d7:ef:ce:9b:07:c7:6b:d7:38:7d:
59:7b:35:bf:fc:45:ad:49:3e:9e:7c:d1:d1:73:f0:f1:23:47:
48:33:74:e0:f6:84:eb:51:69:0b:b7:ce:c1:b4:94:30:45:8c:
5f:c6:8a:bf:8f:f1:16:3b:2b:3d:b9:8b:6d:98:c3:59:29:57:
21:d9:ef:8e:4c:22:85:bd:73:1c:e8:24:fe:1c:73:bb:32:5f:
bb:7c:5f:a8:a0:11:84:f9:f8:e5:4e:7b:ad:3d:4d:46:0f:b7:
4e:4c:3a:70:a9:95:be:c1:f7:81:f9:ce:2e:02:ef:4d:93:8c:
dc:04:4c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:27 2024 by rpki-client on console-fra.rpki-client.org