Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/1a58d7-4b04-4a22-83b9-d04cc45864e2/1/JU7GKmUQijBAJECeDqDzSdQcXuk.roa
File: JU7GKmUQijBAJECeDqDzSdQcXuk.roa (raw, json)
Hash identifier: h60FIu/sKRx9DdlruC4ChAosdN19ZT1Rdr2jvlwiC9Y=
Subject key identifier: 25:4E:C6:2A:65:10:8A:30:40:24:40:9E:0E:A0:F3:49:D4:1C:5E:E9
Certificate issuer: /CN=93c8ae210ea49b4eada48b1da222023c734d3211
Certificate serial: 067DA5BC
Authority key identifier: 93:C8:AE:21:0E:A4:9B:4E:AD:A4:8B:1D:A2:22:02:3C:73:4D:32:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k8iuIQ6km06tpIsdoiICPHNNMhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/1a58d7-4b04-4a22-83b9-d04cc45864e2/1/JU7GKmUQijBAJECeDqDzSdQcXuk.roa
Signing time: Sat 01 Jan 2022 02:59:21 +0000
ROA not before: Sat 01 Jan 2022 02:59:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 45.87.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108897724 (0x67da5bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93c8ae210ea49b4eada48b1da222023c734d3211
Validity
Not Before: Jan 1 02:59:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=254ec62a65108a304024409e0ea0f349d41c5ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3f:b4:74:a6:2b:0d:de:4f:47:bd:88:c8:20:
48:18:ae:58:68:d7:0d:3b:f3:a0:81:fc:bd:e5:30:
3a:46:65:e0:54:1a:90:06:c5:e2:72:ca:ef:17:f6:
c5:4f:9a:7f:85:21:5c:7f:eb:25:65:78:d2:96:98:
ef:ba:29:67:e4:a0:f1:1e:4b:e4:6a:86:a1:03:bd:
b0:d3:fe:4d:40:90:ac:7f:b3:a9:ac:67:4a:2c:c9:
69:2d:78:4d:8a:cb:b6:4a:15:69:c7:17:ff:48:7b:
3f:8b:e0:8e:f8:59:57:62:e1:0e:2e:ea:71:52:6e:
9d:a3:4f:ac:f8:6a:d9:62:74:d5:ae:b8:81:40:26:
66:a8:36:78:29:b7:39:61:52:a4:ba:b4:63:00:f6:
c6:02:cf:2e:51:03:cd:62:52:43:3f:93:0c:68:00:
b2:84:f1:3c:c1:d9:7b:86:a7:a2:30:72:91:cb:6b:
f6:b1:9d:46:45:0c:2e:17:bb:9c:f1:f2:4a:31:58:
24:af:03:90:1c:45:0c:f5:00:87:92:43:16:99:d2:
2d:d4:fa:cf:4c:f5:82:9b:b3:84:eb:d2:ee:0b:05:
65:19:95:49:1b:61:dd:b9:14:03:e7:c5:f4:d4:bd:
79:aa:82:68:e5:89:a5:35:69:6b:5d:88:04:f3:e0:
f8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4E:C6:2A:65:10:8A:30:40:24:40:9E:0E:A0:F3:49:D4:1C:5E:E9
X509v3 Authority Key Identifier:
keyid:93:C8:AE:21:0E:A4:9B:4E:AD:A4:8B:1D:A2:22:02:3C:73:4D:32:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8iuIQ6km06tpIsdoiICPHNNMhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1a58d7-4b04-4a22-83b9-d04cc45864e2/1/JU7GKmUQijBAJECeDqDzSdQcXuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1a58d7-4b04-4a22-83b9-d04cc45864e2/1/k8iuIQ6km06tpIsdoiICPHNNMhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.180.0/22
Signature Algorithm: sha256WithRSAEncryption
44:9f:35:6c:16:69:eb:f3:b2:c2:91:f2:f8:59:31:9d:ba:c2:
17:92:4b:2b:c3:1b:e0:18:c3:d6:ce:be:c2:00:ac:49:9c:33:
a9:89:a1:7e:c0:bd:f9:88:ef:93:57:12:57:f6:57:fb:96:a2:
d9:af:46:4b:03:e0:b8:8d:3e:31:ea:f9:ee:63:fc:a6:22:dc:
14:56:c5:bd:e4:6f:db:11:20:7c:bd:9a:21:6f:86:a4:6c:13:
1e:7c:37:88:0a:f8:dc:44:5f:97:f0:88:a1:26:16:8b:43:7d:
d8:6e:7c:51:69:17:b7:e7:06:1b:bc:87:7d:51:83:28:b5:99:
6d:77:19:a0:86:1e:19:e6:51:77:39:44:86:f6:e6:44:af:2b:
45:67:ae:50:be:97:9d:58:35:8b:28:e7:2d:ed:a3:7d:26:eb:
a4:c4:56:4c:20:81:fd:50:8e:62:c5:6b:28:20:ed:5c:bb:5e:
7e:59:7e:43:ae:20:3e:70:e5:70:57:0b:0d:80:a4:57:45:74:
24:47:98:e6:5d:9c:4e:a2:d1:dd:af:26:66:3d:0c:02:95:fc:
44:07:45:40:06:76:ed:00:4a:ba:c8:e7:3f:71:a4:87:d4:25:
54:cb:11:84:d8:48:db:27:34:d5:f6:d0:a5:1f:2c:d3:76:7a:
12:40:07:bc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBn2lvDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
M2M4YWUyMTBlYTQ5YjRlYWRhNDhiMWRhMjIyMDIzYzczNGQzMjExMB4XDTIyMDEw
MTAyNTkyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjU0ZWM2MmE2NTEw
OGEzMDQwMjQ0MDllMGVhMGYzNDlkNDFjNWVlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMY/tHSmKw3eT0e9iMggSBiuWGjXDTvzoIH8veUwOkZl4FQa
kAbF4nLK7xf2xU+af4UhXH/rJWV40paY77opZ+Sg8R5L5GqGoQO9sNP+TUCQrH+z
qaxnSizJaS14TYrLtkoVaccX/0h7P4vgjvhZV2LhDi7qcVJunaNPrPhq2WJ01a64
gUAmZqg2eCm3OWFSpLq0YwD2xgLPLlEDzWJSQz+TDGgAsoTxPMHZe4anojBykctr
9rGdRkUMLhe7nPHySjFYJK8DkBxFDPUAh5JDFpnSLdT6z0z1gpuzhOvS7gsFZRmV
SRth3bkUA+fF9NS9eaqCaOWJpTVpa12IBPPg+JsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQlTsYqZRCKMEAkQJ4OoPNJ1Bxe6TAfBgNVHSMEGDAWgBSTyK4hDqSbTq2k
ix2iIgI8c00yETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2s4aXVJUTZrbTA2dHBJc2RvaUlDUEhOTk1oRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvMWE1OGQ3LTRiMDQtNGEyMi04M2I5LWQwNGNjNDU4NjRlMi8x
L0pVN0dLbVVRaWpCQUpFQ2VEcUR6U2RRY1h1ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
MWE1OGQ3LTRiMDQtNGEyMi04M2I5LWQwNGNjNDU4NjRlMi8xL2s4aXVJUTZrbTA2
dHBJc2RvaUlDUEhOTk1oRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1XtDANBgkqhkiG9w0BAQsFAAOC
AQEARJ81bBZp6/OywpHy+FkxnbrCF5JLK8Mb4BjD1s6+wgCsSZwzqYmhfsC9+Yjv
k1cSV/ZX+5ai2a9GSwPguI0+Mer57mP8piLcFFbFveRv2xEgfL2aIW+GpGwTHnw3
iAr43ERfl/CIoSYWi0N92G58UWkXt+cGG7yHfVGDKLWZbXcZoIYeGeZRdzlEhvbm
RK8rRWeuUL6XnVg1iyjnLe2jfSbrpMRWTCCB/VCOYsVrKCDtXLtefll+Q64gPnDl
cFcLDYCkV0V0JEeY5l2cTqLR3a8mZj0MApX8RAdFQAZ27QBKusjnP3Gkh9QlVMsR
hNhI2yc01fbQpR8s03Z6EkAHvA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:06 2024 by rpki-client on console-ams.rpki-client.org