Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/jNdqesuFqma89ZuC8K4PQ3lQI0U.roa
File: jNdqesuFqma89ZuC8K4PQ3lQI0U.roa (raw, json)
Hash identifier: lEsoTlpWasV1sDXC6ZLcCqaqzTzSro3qX6A1dPSf5uE=
Subject key identifier: 8C:D7:6A:7A:CB:85:AA:66:BC:F5:9B:82:F0:AE:0F:43:79:50:23:45
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 0425D02F
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/jNdqesuFqma89ZuC8K4PQ3lQI0U.roa
Signing time: Thu 10 Mar 2022 05:30:52 +0000
ROA not before: Thu 10 Mar 2022 05:30:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 45.95.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69586991 (0x425d02f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Mar 10 05:30:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cd76a7acb85aa66bcf59b82f0ae0f4379502345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:ce:a8:ae:65:3c:3f:37:6c:d1:0b:ea:d5:
d2:69:e4:d7:7d:81:4f:6e:cc:3b:fa:a6:d5:5b:cb:
f8:62:d0:3d:22:df:e0:86:02:f6:0b:40:2e:27:f3:
d8:d0:91:f5:b3:42:27:2a:06:42:13:27:43:f0:72:
14:66:a4:8d:98:ea:b0:cc:c2:42:1d:dc:b7:2f:4f:
d6:7f:18:bb:f7:2a:b3:d9:62:ef:26:cd:8e:4b:e1:
bd:37:b0:15:85:cb:41:7c:14:66:43:68:4d:b0:87:
55:ec:ca:b8:ba:a8:ec:08:70:60:28:81:49:34:36:
22:72:d7:38:63:5e:d7:9c:87:aa:2b:92:30:d4:a3:
55:6c:1d:b4:30:75:3e:69:ac:c3:c5:54:d1:ef:7b:
ff:db:d4:16:20:66:42:6d:27:be:c9:8a:27:95:c0:
22:42:14:0b:8d:dc:c0:a1:86:98:45:28:ad:0f:20:
d9:87:27:3d:f7:c4:f4:8b:dd:9a:0a:6d:fb:75:9f:
06:cd:3c:3b:cf:dd:94:b7:05:5d:e5:be:ae:ae:81:
e4:2e:32:66:cd:b7:2d:e7:a2:f0:a2:1b:9d:d8:51:
40:39:3e:a5:3a:6e:f0:1c:84:e7:17:ac:07:96:75:
d4:b1:a4:98:dc:a8:1e:66:ec:0e:b1:00:16:bb:7d:
3f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D7:6A:7A:CB:85:AA:66:BC:F5:9B:82:F0:AE:0F:43:79:50:23:45
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/jNdqesuFqma89ZuC8K4PQ3lQI0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.19.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:7e:a0:42:ea:48:e2:7c:42:1f:de:f5:29:e4:c6:14:d1:1b:
7f:a1:4f:38:4d:b2:67:85:0e:36:84:ee:5e:12:4c:50:f6:dd:
38:43:85:06:e7:aa:92:47:62:15:09:a0:b5:28:38:fd:c5:2e:
25:e0:8c:b9:31:0c:84:a9:f2:be:dc:12:5a:9d:f8:b3:ff:c8:
c6:0d:9e:8a:ce:ae:ac:c1:36:d7:ae:b3:21:f6:a1:46:96:30:
aa:14:23:73:8e:e4:e8:c4:92:03:9d:6a:33:74:e5:2d:af:64:
f1:94:a3:04:2c:03:c0:80:05:c9:35:63:e9:38:fb:f0:02:37:
9f:df:fd:ff:32:03:53:56:92:08:2f:38:04:44:63:6c:4c:00:
74:b8:8c:dd:75:f0:18:a0:7d:37:7f:61:0e:93:cf:01:d1:39:
49:46:63:2e:2b:09:61:8c:f8:1e:02:75:f7:67:e2:19:9b:d2:
2a:8c:d8:17:66:3d:a2:22:f5:27:91:9e:6b:e4:49:25:aa:3a:
25:1f:ba:fb:24:40:76:50:20:ad:9a:fb:75:1b:64:cc:c8:fa:
02:f1:6e:a1:e6:66:b3:92:e3:3c:db:28:26:5b:a4:1a:01:6c:
08:ee:b8:7a:87:f7:b3:55:b5:53:a4:c6:00:d7:4b:96:6d:49:
29:df:dc:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:17 2024 by rpki-client on console-ams.rpki-client.org