Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/JhSPLyVgLefQqMJBNqn1Op8kHio.roa
File: JhSPLyVgLefQqMJBNqn1Op8kHio.roa (raw, json)
Hash identifier: R9/5+m5mkGVoTgQv9Fs6PZso8eT0LM5fyL+mqLa6F6s=
Subject key identifier: 26:14:8F:2F:25:60:2D:E7:D0:A8:C2:41:36:A9:F5:3A:9F:24:1E:2A
Certificate issuer: /CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Certificate serial: 027F3F
Authority key identifier: CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/JhSPLyVgLefQqMJBNqn1Op8kHio.roa
Signing time: Mon 28 Feb 2022 13:10:23 +0000
ROA not before: Mon 28 Feb 2022 13:10:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60432
IP address blocks: 185.26.199.0/24 maxlen: 24
185.26.198.0/23 maxlen: 23
185.26.198.0/24 maxlen: 24
2a00:8c60:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163647 (0x27f3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Validity
Not Before: Feb 28 13:10:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26148f2f25602de7d0a8c24136a9f53a9f241e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:08:c6:b7:46:ff:d2:60:06:69:18:a7:46:6b:
df:4e:0e:d8:36:f0:cc:60:5f:57:08:5f:c0:63:95:
45:ec:39:d6:dd:56:c6:7f:c8:73:55:dd:c5:40:2c:
9c:26:2d:02:98:99:f3:38:bf:6e:6d:22:e4:52:dc:
60:54:66:96:da:e5:02:11:80:03:e2:43:88:e6:7f:
8e:46:cf:5f:09:2a:46:a9:08:d8:cb:8e:b0:70:96:
18:81:1c:e0:3a:27:23:dd:ce:2d:da:6e:24:52:7b:
6f:6e:4f:d8:78:4d:fc:5b:4f:d0:f7:29:36:7e:06:
db:95:b4:c1:f8:5e:8d:51:e8:80:78:b4:7a:d7:10:
f0:e5:4c:d1:7c:72:c9:16:12:8e:74:18:b9:a7:40:
aa:4d:4d:2c:38:d4:84:e4:7b:f6:e9:9d:92:e2:ca:
54:ef:7e:97:59:68:bf:fd:17:e8:8f:73:94:1c:0d:
bb:43:b0:b3:89:bb:38:78:a0:0c:1e:29:5e:64:34:
bf:73:7a:ec:3c:be:62:9e:69:1f:93:22:0a:d4:70:
9c:9e:fb:77:1b:9e:b0:be:6a:56:1b:fe:26:e2:5e:
6a:e6:2a:e6:90:e6:d9:29:f7:f6:4a:a0:02:a5:08:
73:41:57:f4:a9:96:e7:81:cc:23:a2:3f:f6:65:5f:
19:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:14:8F:2F:25:60:2D:E7:D0:A8:C2:41:36:A9:F5:3A:9F:24:1E:2A
X509v3 Authority Key Identifier:
keyid:CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/JhSPLyVgLefQqMJBNqn1Op8kHio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.198.0/23
IPv6:
2a00:8c60:2::/48
Signature Algorithm: sha256WithRSAEncryption
84:0e:08:72:1e:74:2d:cd:0a:c4:19:90:f2:49:41:c4:7e:56:
be:53:45:cb:94:bc:9a:64:cf:75:3c:79:1e:8c:1a:7b:e3:92:
9c:83:f2:68:36:b0:71:32:a7:aa:96:6a:c0:6f:b6:8c:45:89:
3b:7b:22:24:fa:70:1a:b6:c6:25:ca:8f:6e:8b:0b:20:b3:9b:
c0:9b:ca:6f:d4:1e:6c:77:11:cf:07:b9:34:39:f8:66:00:82:
5b:d2:ad:c9:a3:8e:9e:d7:ba:af:54:50:78:16:55:fd:90:17:
50:80:65:2e:e7:13:dc:24:94:82:9b:cf:76:2b:be:b6:6e:c7:
0d:e7:90:00:1f:2a:20:99:37:86:61:4f:52:9e:23:3b:7d:09:
d4:db:6f:19:05:cd:19:c0:d5:8e:fb:68:66:e2:19:99:55:70:
37:d7:d9:67:91:8a:aa:17:8b:f4:be:2f:89:64:21:13:42:4c:
1f:70:22:c8:78:71:3b:7d:6b:35:6a:21:8e:4c:ef:c8:35:4d:
39:f4:30:39:d0:cf:9d:0a:c7:5a:d8:a1:1a:44:b6:47:11:8e:
da:49:dc:25:16:96:0c:22:f1:40:80:59:d6:81:04:b3:09:3b:
a7:89:d1:61:f3:46:70:a4:58:e7:97:00:dd:e7:76:24:40:23:
93:16:14:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:28 2024 by rpki-client on console-ams.rpki-client.org