Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/jkpd4zulCFeYDFr7w1ArJnNhOdE.roa
File: jkpd4zulCFeYDFr7w1ArJnNhOdE.roa (raw, json)
Hash identifier: ZCBavR4JlJ1HAgRKxharyTaPmlpGoibUdjjsn5v372Q=
Subject key identifier: 8E:4A:5D:E3:3B:A5:08:57:98:0C:5A:FB:C3:50:2B:26:73:61:39:D1
Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624
Certificate serial: 05384855
Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/jkpd4zulCFeYDFr7w1ArJnNhOdE.roa
Signing time: Sat 01 Jan 2022 11:58:02 +0000
ROA not before: Sat 01 Jan 2022 11:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138968
IP address blocks: 45.150.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87574613 (0x5384855)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624
Validity
Not Before: Jan 1 11:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e4a5de33ba50857980c5afbc3502b26736139d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3e:d7:23:78:11:e7:56:16:d2:8b:82:a9:da:
bb:8e:e6:55:67:44:52:27:4d:93:53:23:3d:de:e8:
7a:61:ac:d0:89:29:5f:f2:e0:30:91:62:1d:e7:1d:
f9:14:71:a1:fa:56:f9:fe:42:db:32:de:82:e7:3b:
7e:2c:f3:19:80:48:50:6c:e0:81:5f:42:f9:84:20:
fc:d3:38:c3:4d:8f:8b:ea:0f:43:1d:9e:3d:34:fb:
24:5c:64:54:fd:8b:89:c1:95:67:0a:1d:14:bb:54:
6f:1b:4a:fe:2f:65:3e:9c:5e:e9:83:23:9b:2c:52:
28:03:1b:9c:93:6e:23:5d:f6:02:49:ad:f4:2c:60:
b1:04:dc:a5:7f:75:11:b5:7f:f6:fe:96:b9:a0:f4:
d5:c1:52:eb:cb:f1:d3:27:b0:0a:b0:6e:d1:c2:8c:
a0:c0:88:1e:21:0f:85:ae:9a:27:a6:12:e5:81:d7:
80:52:e0:65:3c:0b:8e:b5:03:6c:54:89:72:22:a1:
8f:95:06:d5:27:96:3b:e8:07:77:40:6f:40:2a:02:
96:c2:a8:7c:d1:0b:af:0c:65:ef:31:19:62:e2:ba:
3e:22:9e:b5:a2:37:26:66:f1:92:b9:1f:71:ef:6e:
d4:6e:38:66:bb:ad:09:0b:6f:f2:3a:05:7e:7d:ef:
9a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4A:5D:E3:3B:A5:08:57:98:0C:5A:FB:C3:50:2B:26:73:61:39:D1
X509v3 Authority Key Identifier:
keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/jkpd4zulCFeYDFr7w1ArJnNhOdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.236.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:cf:a8:be:1f:82:84:87:21:29:b5:d0:89:70:c8:52:be:03:
fb:b2:22:69:83:98:47:97:75:06:49:f2:58:82:48:9f:07:04:
1b:27:03:bb:36:cb:e6:fa:ba:bb:a7:6e:7a:25:9e:7c:f2:56:
16:8a:0f:cd:f5:18:9f:7d:0f:a2:e4:4e:f7:2f:33:85:f4:df:
be:5c:43:d9:27:10:ee:91:bc:e5:00:f4:97:26:67:66:f7:a0:
ba:22:29:e6:f5:f5:7f:f2:08:a5:22:73:ee:09:b9:fc:5b:c0:
4c:cb:6f:f9:87:87:ea:16:e6:b1:1b:63:b3:50:bb:c5:9e:b1:
fb:3e:ae:ac:fd:6c:9f:90:6d:7a:48:fa:c1:96:b4:1d:fd:84:
b9:44:90:4a:61:db:4f:6c:5b:ae:b9:2f:df:a0:5a:e6:71:f5:
2a:e6:5e:01:e2:ba:56:d4:eb:1d:aa:b1:46:58:e8:57:ab:c5:
84:62:67:ee:3f:8b:aa:6b:b8:d7:21:98:d7:ee:e3:b7:28:79:
1d:38:b9:88:77:70:59:1e:83:25:97:2c:7f:38:e9:28:3e:14:
e5:20:df:bc:52:cc:b6:ea:07:58:b7:d8:3e:d5:10:c5:5c:b1:
fe:84:76:45:70:22:f3:75:bb:25:08:89:6e:ba:f3:9e:b4:b4:
aa:fc:94:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:43 2024 by rpki-client on console-ams.rpki-client.org