Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/c6179a-160d-40e2-ae86-7d134980c5be/1/kJ_v03uEXFxw477QkoigCR7tHRk.roa
File: kJ_v03uEXFxw477QkoigCR7tHRk.roa (raw, json)
Hash identifier: gzQp8f13IUrvGFiJQEQPVwuwiviyzdKQCHWtw3bHR/8=
Subject key identifier: 90:9F:EF:D3:7B:84:5C:5C:70:E3:BE:D0:92:88:A0:09:1E:ED:1D:19
Certificate issuer: /CN=02a962c1fe8e2e12a35576fd62987a0cbba463d4
Certificate serial: 07D6389E
Authority key identifier: 02:A9:62:C1:FE:8E:2E:12:A3:55:76:FD:62:98:7A:0C:BB:A4:63:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aqliwf6OLhKjVXb9Yph6DLukY9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/c6179a-160d-40e2-ae86-7d134980c5be/1/kJ_v03uEXFxw477QkoigCR7tHRk.roa
Signing time: Sat 01 Jan 2022 05:05:43 +0000
ROA not before: Sat 01 Jan 2022 05:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211619
IP address blocks: 45.95.168.0/22 maxlen: 22
2a0e:bfc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131479710 (0x7d6389e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02a962c1fe8e2e12a35576fd62987a0cbba463d4
Validity
Not Before: Jan 1 05:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=909fefd37b845c5c70e3bed09288a0091eed1d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c8:96:3d:03:20:7d:a5:18:04:0d:d7:ff:a8:
00:03:0d:a3:f3:a4:da:19:02:60:93:c2:84:a2:63:
90:b2:69:a5:0f:70:ec:d7:c3:8c:7f:9b:ae:d5:8d:
07:2c:1f:97:33:f6:9c:9d:5d:38:f9:34:5c:12:f2:
d8:20:d0:c8:17:72:6c:d1:1f:6a:aa:77:6f:cd:ea:
97:ea:49:4a:2c:04:c1:38:40:e9:16:13:b4:f8:da:
c0:4e:d6:e6:6f:31:e1:16:44:2e:57:80:cc:2c:44:
96:21:6d:27:56:92:6e:81:27:77:ac:0c:6c:34:f4:
2e:cc:fe:f6:9d:1b:db:0f:ab:e2:43:bd:2c:75:31:
a1:b8:08:54:39:e5:0f:e9:df:d0:8a:55:2e:f6:62:
ab:80:00:27:d5:a1:8e:4f:18:4b:4d:bd:22:25:98:
00:18:81:1a:d1:ba:1c:e5:2e:26:c0:0b:39:01:35:
08:16:e4:df:80:92:24:64:ed:bc:e8:c4:2d:a8:43:
40:40:d4:42:5d:f6:33:ca:f8:34:42:5f:61:36:85:
92:50:8f:89:cc:ea:93:ce:e5:e0:63:8a:29:e2:63:
1b:79:b9:b8:55:be:e1:0d:04:f3:94:3c:44:ec:d0:
1a:89:aa:5b:65:72:bd:85:79:b2:41:ba:03:aa:d3:
8d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9F:EF:D3:7B:84:5C:5C:70:E3:BE:D0:92:88:A0:09:1E:ED:1D:19
X509v3 Authority Key Identifier:
keyid:02:A9:62:C1:FE:8E:2E:12:A3:55:76:FD:62:98:7A:0C:BB:A4:63:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aqliwf6OLhKjVXb9Yph6DLukY9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c6179a-160d-40e2-ae86-7d134980c5be/1/kJ_v03uEXFxw477QkoigCR7tHRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c6179a-160d-40e2-ae86-7d134980c5be/1/Aqliwf6OLhKjVXb9Yph6DLukY9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.168.0/22
IPv6:
2a0e:bfc0::/29
Signature Algorithm: sha256WithRSAEncryption
43:3b:e1:ec:96:81:c2:ae:a9:01:d3:12:75:91:44:49:43:e8:
8d:ac:ef:50:4a:46:e7:09:41:5b:ee:f7:66:21:04:70:14:d1:
4e:5d:08:16:60:98:4c:a5:20:f6:ca:ba:a7:9c:1c:af:44:a8:
a6:ec:7d:1b:ad:f3:6d:82:4a:63:72:0f:37:65:c4:35:54:fd:
15:75:8d:e7:69:ec:aa:28:5a:53:86:12:a9:05:27:8a:54:7b:
d1:44:6e:d3:58:e9:4d:87:84:e5:d2:ee:d0:d9:df:29:50:1c:
de:95:3b:ab:52:7b:1f:87:7a:65:3c:5a:26:46:cc:93:67:05:
da:36:7e:56:d1:62:b4:6b:32:eb:e2:6e:45:af:1d:a7:64:0a:
d8:45:99:7d:16:6d:4d:eb:7b:80:21:fc:b8:fd:0a:80:75:4c:
2d:57:4a:02:68:77:1e:8f:a5:09:4b:98:81:cf:84:94:7f:64:
a2:cd:a2:c5:e6:42:27:b4:3a:15:ec:6c:6e:28:e8:c6:53:31:
ca:04:bf:48:f9:73:e2:ed:0f:ac:3e:7d:ee:56:5d:bb:a6:a3:
4c:5b:60:69:07:06:37:b1:e9:66:37:16:b3:06:4c:50:6a:56:
f7:2a:9c:48:af:93:f1:c0:8a:e9:d1:c1:1a:ac:c1:15:f6:ea:
3d:9d:f2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:47 2023 by rpki-client on console-ams.rpki-client.org