Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/juQ8XfYHEKSyxjdssZnqNKRQPTc.roa
File: juQ8XfYHEKSyxjdssZnqNKRQPTc.roa (raw, json)
Hash identifier: Y5/IvSuUcw55sJMldgp40nYV9bcTFOA4xTZzKTil/sU=
Subject key identifier: 8E:E4:3C:5D:F6:07:10:A4:B2:C6:37:6C:B1:99:EA:34:A4:50:3D:37
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0C4B3889
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/juQ8XfYHEKSyxjdssZnqNKRQPTc.roa
Signing time: Wed 22 Jun 2022 15:07:32 +0000
ROA not before: Wed 22 Jun 2022 15:07:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62425
IP address blocks: 45.133.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206256265 (0xc4b3889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jun 22 15:07:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ee43c5df60710a4b2c6376cb199ea34a4503d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:07:eb:b6:a7:3a:4c:ec:db:a0:94:35:38:f2:
ce:88:51:13:08:cd:e2:ee:37:51:13:b2:96:e2:83:
ac:ff:4d:d7:60:74:cd:26:cd:b1:90:28:bb:e9:d3:
88:87:dd:ce:a2:31:4d:14:02:06:32:ab:65:ab:6c:
7b:1d:b3:ab:76:3c:4e:f9:cc:ea:f0:6a:4c:3d:3f:
fb:82:b8:ed:47:d5:8b:b6:8b:14:3c:9e:b2:88:97:
3f:8f:49:de:3a:d3:aa:75:a5:61:63:25:fb:db:3c:
69:e9:68:93:7f:64:c8:cb:2c:82:c9:75:e3:af:7d:
fa:40:85:2d:9e:aa:32:df:82:6c:c9:89:38:14:01:
4b:b0:02:b9:0d:b0:ef:a9:41:be:07:88:97:b5:39:
a6:1f:5b:6d:10:bf:db:56:6d:d0:31:02:4a:bc:8b:
56:50:71:8f:a6:49:0b:07:c1:48:fc:20:e6:12:1e:
34:05:b3:f1:d7:a3:e8:45:06:90:41:1c:dc:20:4f:
a2:b2:ea:7a:3a:3b:8b:6f:68:7d:f9:1c:68:5a:02:
58:61:cc:a9:99:62:bb:40:62:9b:69:82:d7:53:e3:
25:5c:ba:11:ca:0f:bf:c8:c0:10:64:60:07:b4:ee:
42:66:61:a3:dc:f3:26:c8:18:ff:94:8e:61:d6:b1:
d6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E4:3C:5D:F6:07:10:A4:B2:C6:37:6C:B1:99:EA:34:A4:50:3D:37
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/juQ8XfYHEKSyxjdssZnqNKRQPTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.39.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d8:3e:1b:c1:2c:fe:16:06:bc:b4:50:d7:a4:b9:37:96:46:
a8:f1:5c:6d:ae:05:2f:4d:58:69:7e:4d:c3:fe:c3:90:52:90:
0f:09:0e:17:2f:54:10:97:12:13:d7:ca:d9:2c:f2:5f:d6:ee:
e3:84:4a:da:87:19:76:5b:ca:91:cd:ff:39:db:8a:59:14:d4:
cc:9e:c7:d0:06:8b:ce:53:28:17:3d:1c:0c:6e:9b:7d:9e:db:
1f:a1:09:51:17:32:d0:17:6e:09:bb:c6:59:47:01:79:22:cc:
3f:c7:38:ba:81:35:4e:6e:39:ec:8e:e6:75:ee:57:cf:b4:49:
14:b2:39:96:a7:6a:1c:66:ec:c2:1e:e9:de:ed:81:05:45:45:
0d:d9:23:c7:54:a2:55:63:36:26:46:29:f2:fe:82:a7:6a:44:
42:16:0d:c6:6c:bb:38:6d:a5:79:73:68:89:68:8b:f2:ef:c8:
2b:c3:e0:6a:66:f7:f0:51:e2:48:b5:41:93:b0:fe:0f:3d:b2:
61:0e:a6:c4:6d:9d:a4:4a:28:31:5c:b4:f4:3c:f2:2d:3b:9d:
a2:82:a6:82:1f:58:29:01:cc:d9:89:c6:5d:de:d6:84:eb:15:
83:5e:d9:3b:a2:09:76:88:f7:33:27:46:4c:28:5b:37:72:c5:
40:28:6c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org