Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/747113-591d-4808-92d9-7a794d5ced3d/1/JmdEAilPja1Np1pGzuPDmp3AQqw.roa
File: JmdEAilPja1Np1pGzuPDmp3AQqw.roa (raw, json)
Hash identifier: D6S7ZysmPEMxMAPXX31QbR2PpnRD6ZS80PBW/lUvv9I=
Subject key identifier: 26:67:44:02:29:4F:8D:AD:4D:A7:5A:46:CE:E3:C3:9A:9D:C0:42:AC
Certificate issuer: /CN=8df51d0670715eb69efa2fbff1998c3bdbd8a9f5
Certificate serial: 018530B1F1B452FD4F6588E089C72C8A33A1
Authority key identifier: 8D:F5:1D:06:70:71:5E:B6:9E:FA:2F:BF:F1:99:8C:3B:DB:D8:A9:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jfUdBnBxXrae-i-_8ZmMO9vYqfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/747113-591d-4808-92d9-7a794d5ced3d/1/JmdEAilPja1Np1pGzuPDmp3AQqw.roa
Signing time: Tue 20 Dec 2022 18:00:46 +0000
ROA not before: Tue 20 Dec 2022 18:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8838
IP address blocks: 212.42.0.0/19 maxlen: 19
194.50.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:b1:f1:b4:52:fd:4f:65:88:e0:89:c7:2c:8a:33:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8df51d0670715eb69efa2fbff1998c3bdbd8a9f5
Validity
Not Before: Dec 20 18:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26674402294f8dad4da75a46cee3c39a9dc042ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bc:d9:2c:5d:67:f6:fd:1f:6f:ec:ed:40:e1:
a0:e8:f0:a8:10:26:b2:23:29:c4:b3:ad:10:9b:c4:
6d:f6:88:c0:ce:33:57:cd:28:d3:1d:a2:2b:72:4e:
46:c0:47:1b:89:b2:85:9d:cc:a9:a1:05:4d:2d:c1:
4e:5b:23:d5:de:0c:1c:80:ba:c4:76:57:7c:18:7f:
33:77:e4:fa:7b:0d:73:a0:11:d1:1f:b0:19:41:46:
45:1b:b7:f4:65:d2:72:8c:44:9a:36:10:b0:40:49:
95:66:3b:ea:a1:d0:3c:b0:40:da:9d:cf:13:62:10:
d2:4b:84:e6:70:69:3a:2e:85:31:2c:bb:fb:af:8c:
14:6c:16:ac:92:31:23:f5:39:61:90:f3:de:1d:01:
78:c1:2f:62:48:e5:fc:6d:3f:ed:e4:2e:0c:cc:f6:
65:0a:49:de:71:5b:e6:36:4e:26:ea:ae:bd:36:a0:
1e:6e:18:77:c7:94:b5:7a:2b:09:0a:f8:80:b1:2f:
7f:de:a0:90:6a:f5:01:6f:e6:1d:f4:74:76:d3:bd:
b7:19:7f:03:04:07:01:79:49:d9:2e:19:5d:54:47:
98:50:f7:b5:19:54:e8:b7:5a:68:2b:9f:98:3e:b1:
66:45:ce:e1:fd:5a:b9:f0:08:1a:db:b0:a0:a2:a6:
2d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:67:44:02:29:4F:8D:AD:4D:A7:5A:46:CE:E3:C3:9A:9D:C0:42:AC
X509v3 Authority Key Identifier:
keyid:8D:F5:1D:06:70:71:5E:B6:9E:FA:2F:BF:F1:99:8C:3B:DB:D8:A9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jfUdBnBxXrae-i-_8ZmMO9vYqfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/747113-591d-4808-92d9-7a794d5ced3d/1/JmdEAilPja1Np1pGzuPDmp3AQqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/747113-591d-4808-92d9-7a794d5ced3d/1/jfUdBnBxXrae-i-_8ZmMO9vYqfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.108.0/24
212.42.0.0/19
Signature Algorithm: sha256WithRSAEncryption
54:9d:78:33:d8:c6:9a:18:5e:81:a4:0c:06:36:9b:2d:87:bd:
78:fc:13:99:c2:78:bb:58:98:04:8b:3e:77:79:3c:b7:99:d1:
5b:37:f4:e9:b3:29:e5:c2:9d:db:78:53:31:6d:e1:b6:5d:f7:
8b:68:4b:4a:40:9d:ca:39:b6:85:bb:8e:11:b6:71:5b:2c:fa:
1a:6b:16:17:2c:a9:61:ea:ec:25:5b:a5:81:37:19:06:d6:c9:
4c:44:89:47:ea:cb:20:4a:49:cd:51:48:90:49:2f:b4:cf:e5:
02:10:c7:25:f0:8c:6f:0c:a1:1f:02:59:d5:a0:f9:56:da:60:
50:16:40:c4:9c:9a:a6:df:f1:cb:ef:4e:90:8a:c9:4e:3b:3e:
ed:88:db:b9:26:5a:9b:a1:7e:a8:ea:4b:6d:2d:5d:02:cc:11:
6d:6d:b1:6e:f0:05:b3:f7:79:cb:9e:cf:8e:57:df:9f:70:be:
5a:00:0c:15:5c:0d:d1:f8:80:d5:d8:b2:68:0c:c6:e4:88:af:
f2:71:b9:74:fb:73:09:dd:05:fd:98:90:8c:58:c0:c0:60:46:
44:31:f7:28:99:60:ed:2b:fe:f5:6f:29:f0:23:7f:c5:f2:10:
3f:12:7a:3f:67:a5:5d:5f:d0:6d:2f:b6:e9:a3:2b:fc:73:70:
6e:ca:86:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:21 2023 by rpki-client on console.sobornost.net