Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/JsDQSPktTxF09ntPAqcfmmi8tfM.roa
File: JsDQSPktTxF09ntPAqcfmmi8tfM.roa (raw, json)
Hash identifier: IffiojKj/d5Q+KsnLu2O/8ddQFkqjsrUDU6fqr+GVa8=
Subject key identifier: 26:C0:D0:48:F9:2D:4F:11:74:F6:7B:4F:02:A7:1F:9A:68:BC:B5:F3
Certificate issuer: /CN=440ce684d5701ddb02a26b55e29eac9fe804deda
Certificate serial: CE789C
Authority key identifier: 44:0C:E6:84:D5:70:1D:DB:02:A2:6B:55:E2:9E:AC:9F:E8:04:DE:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RAzmhNVwHdsComtV4p6sn-gE3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/JsDQSPktTxF09ntPAqcfmmi8tfM.roa
Signing time: Sat 01 Jan 2022 05:53:18 +0000
ROA not before: Sat 01 Jan 2022 05:53:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 94.103.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13531292 (0xce789c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=440ce684d5701ddb02a26b55e29eac9fe804deda
Validity
Not Before: Jan 1 05:53:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26c0d048f92d4f1174f67b4f02a71f9a68bcb5f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:19:a9:2e:9a:29:59:54:db:99:19:f6:c7:
44:f6:b4:17:54:7a:d5:89:b3:20:86:8f:09:2f:f4:
d8:3f:b3:fe:84:b2:4b:fe:c2:b5:9f:c8:ab:28:d2:
b1:a2:e8:b3:77:1a:67:8a:86:aa:e5:96:2b:e3:9f:
86:d3:7f:5b:e1:69:cb:64:cd:a6:04:e7:4c:3e:57:
02:00:ec:44:ca:05:3b:8c:fe:a3:10:13:70:ba:26:
42:e3:62:f7:0a:f3:13:70:40:b5:13:7f:b8:f7:5f:
67:e7:0e:cc:f1:5e:81:23:a9:4a:e0:4e:85:79:19:
e9:c3:08:7b:ed:f1:4b:bb:17:c4:74:c7:d0:6e:c5:
90:6c:a2:8e:40:d7:9f:0e:a2:18:89:93:c2:58:cd:
85:c6:b2:6a:ab:76:0f:9d:f9:4b:1b:9d:6e:f9:86:
54:15:47:9e:b7:1f:72:25:01:37:d0:5f:77:8a:40:
e8:4c:20:b4:a6:f4:7d:43:62:51:86:3e:e2:35:7d:
8e:68:25:9f:cf:8d:2f:58:41:7e:a0:7a:db:66:60:
95:9b:11:a7:b5:b9:c1:56:52:17:ba:58:30:eb:72:
63:9b:50:23:1d:83:b7:f0:4b:ff:16:6d:d0:44:7e:
3c:28:67:ed:0c:7b:03:f5:78:da:b6:34:44:d0:8b:
7a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C0:D0:48:F9:2D:4F:11:74:F6:7B:4F:02:A7:1F:9A:68:BC:B5:F3
X509v3 Authority Key Identifier:
keyid:44:0C:E6:84:D5:70:1D:DB:02:A2:6B:55:E2:9E:AC:9F:E8:04:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RAzmhNVwHdsComtV4p6sn-gE3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/JsDQSPktTxF09ntPAqcfmmi8tfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/RAzmhNVwHdsComtV4p6sn-gE3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.176.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e8:be:6d:a1:ab:a1:2d:aa:dc:01:0b:85:fc:ef:d0:63:a1:
42:d0:fb:19:44:29:be:0a:04:54:57:3b:37:fb:f5:4e:e1:15:
a9:0b:01:e3:d9:a2:2a:9a:c7:72:8f:ee:1b:58:27:8d:9f:31:
f3:1e:03:2d:a5:9e:e9:ae:9b:ec:41:40:80:5a:20:10:15:9f:
39:91:83:26:d4:c6:9d:ce:63:5d:32:cf:cb:f2:c2:41:d2:ce:
b7:12:e4:05:e3:4b:ea:f1:91:6c:da:4b:b0:7f:be:9d:81:5c:
9c:aa:27:ba:d0:aa:01:f7:09:b3:92:2b:58:ab:ee:d6:4b:70:
3e:6d:a1:e7:53:bb:2e:ad:52:80:d4:f4:ad:1c:11:92:f9:23:
4f:e9:9d:56:e1:1c:60:59:60:64:d8:49:f4:2e:7d:81:21:a6:
47:95:47:6b:c0:52:db:0d:91:a0:e2:fa:21:a0:71:ff:51:fd:
4b:9a:55:f3:de:94:e7:a5:cb:be:6f:26:79:d6:cb:93:96:2a:
87:58:6e:3a:9a:bc:aa:1b:78:6e:5e:8b:47:2c:30:11:ec:94:
bf:da:f5:12:cf:5a:fa:dc:ea:6e:ed:75:69:1b:6d:9f:24:57:
da:88:bb:a5:df:32:e6:53:25:71:8b:1e:06:63:ed:40:db:0a:
e6:c3:9f:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:26 2023 by rpki-client on console-ams.rpki-client.org