Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/j5Koxi5Fm0jdnZbLniXL2QKHZKE.roa
File: j5Koxi5Fm0jdnZbLniXL2QKHZKE.roa (raw, json)
Hash identifier: kB5dKK0PuEbmHQZT2hrS/yX65RYXFw80mVASWpqlbxQ=
Subject key identifier: 8F:92:A8:C6:2E:45:9B:48:DD:9D:96:CB:9E:25:CB:D9:02:87:64:A1
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 036AA065
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/j5Koxi5Fm0jdnZbLniXL2QKHZKE.roa
Signing time: Sat 01 Jan 2022 11:54:08 +0000
ROA not before: Sat 01 Jan 2022 11:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210117
IP address blocks: 188.95.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57319525 (0x36aa065)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jan 1 11:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f92a8c62e459b48dd9d96cb9e25cbd9028764a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1f:84:c8:75:c0:08:3f:9f:da:37:65:24:96:
25:f0:a7:28:ab:86:e2:ea:47:e9:6f:a2:d0:1c:73:
1b:01:a3:6f:f6:5d:b7:58:ad:23:c6:df:b1:b2:24:
d2:86:d5:b1:00:b6:7c:ac:0d:3f:29:50:60:f0:18:
f8:13:25:92:d4:6a:88:c4:b9:28:94:10:72:c9:a8:
5f:de:dd:4f:1f:17:ae:bb:37:98:e7:ac:99:61:b0:
3c:a9:c4:26:be:dd:d4:1d:0b:a4:2a:df:a4:fe:13:
c0:8a:19:65:39:41:17:9b:28:03:44:3f:63:40:e6:
c1:7d:a9:fd:f4:b9:49:4d:4d:00:a7:ed:f0:1e:86:
63:e9:2b:af:d1:a3:04:f6:a9:d6:e2:72:63:60:6c:
23:d4:01:0b:71:06:22:c2:d2:93:d6:7a:75:4e:2f:
e8:3e:d5:05:40:39:c0:46:d2:60:4e:25:ac:71:29:
78:dc:ad:80:06:45:71:50:5b:64:ba:ce:ff:65:da:
5b:2f:c6:e0:b2:fa:d3:23:1c:4d:8a:24:3c:9c:57:
66:dd:c2:2c:b0:ef:15:95:95:28:06:ba:64:1c:6f:
02:cd:fe:4c:66:e7:33:a7:a2:a1:be:1b:30:f4:56:
d9:a7:1f:dd:2c:5f:84:76:b5:2a:dd:f1:28:97:3e:
2a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:92:A8:C6:2E:45:9B:48:DD:9D:96:CB:9E:25:CB:D9:02:87:64:A1
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/j5Koxi5Fm0jdnZbLniXL2QKHZKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.150.0/24
Signature Algorithm: sha256WithRSAEncryption
22:97:e6:26:40:59:4d:25:6b:ef:41:65:2d:38:c2:7f:8e:3b:
ff:5b:44:71:81:dd:df:0c:85:fc:57:30:ff:5e:58:e5:f1:64:
39:77:9f:42:7d:7a:51:34:94:d8:d2:0d:07:43:f2:62:54:95:
21:35:ae:ad:e4:eb:25:59:96:f7:cd:f0:7f:d9:4d:75:e9:30:
b7:e8:38:10:f8:ce:11:61:5e:e4:ac:ce:14:99:ef:b9:c6:fb:
93:cb:8b:92:63:04:36:55:70:dc:21:29:88:0f:34:61:3d:a6:
20:d1:de:0d:1b:11:2b:f4:63:a0:58:f1:95:82:31:d3:68:fe:
06:46:07:5b:f2:58:8f:50:23:32:17:a4:6e:af:f1:be:f2:eb:
33:de:18:10:39:94:19:e3:fa:58:59:a5:08:0c:55:03:37:fb:
35:3b:0b:9b:6c:c3:7a:d0:ab:20:50:62:b2:d2:87:04:9a:85:
89:7c:52:29:0d:66:73:e4:dc:e9:90:79:8e:de:ee:92:87:97:
5e:bc:52:e0:d8:88:ca:5d:10:87:d8:cd:f1:44:ff:1c:86:81:
e8:d9:02:1c:e9:dc:e5:d2:0d:77:cf:c9:52:38:44:91:4c:a9:
1c:c9:89:aa:73:89:e3:e1:11:8c:22:d9:3e:fd:a5:e8:63:6f:
92:cd:35:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:13 2024 by rpki-client on console-ams.rpki-client.org