Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/pjuH2KNzaXyqeFNVzAKHlgtWCwQ.roa
File: pjuH2KNzaXyqeFNVzAKHlgtWCwQ.roa (raw, json)
Hash identifier: crZdIdMHDmnnY8eHi+2Z7Q+5tzqnIw2qZ6TD/uIDypc=
Subject key identifier: A6:3B:87:D8:A3:73:69:7C:AA:78:53:55:CC:02:87:96:0B:56:0B:04
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 03C375A7
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/pjuH2KNzaXyqeFNVzAKHlgtWCwQ.roa
Signing time: Tue 25 Jan 2022 06:54:42 +0000
ROA not before: Tue 25 Jan 2022 06:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142594
IP address blocks: 45.95.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63141287 (0x3c375a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jan 25 06:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a63b87d8a373697caa785355cc0287960b560b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:19:6d:e8:6c:5b:44:5a:53:1e:6e:73:a0:b3:
97:96:33:ad:21:f6:d8:6d:df:c6:29:a0:ca:84:95:
e4:8a:89:1a:bd:a5:05:72:d3:cc:6a:51:c2:70:c2:
c6:fb:74:b2:ba:c2:7a:bb:8e:dc:0b:26:6a:b2:f0:
66:4b:cf:8a:02:01:2e:d3:0f:b6:89:be:f4:9a:03:
cb:72:89:6a:4a:0d:e1:62:bc:a7:b4:c7:7c:91:dd:
3f:e8:bc:91:a3:9d:11:03:9c:80:84:ea:22:78:d8:
24:6f:6c:ae:c7:e5:68:52:73:f8:3f:76:cf:01:21:
bc:dc:46:30:03:4a:40:62:06:f3:3f:b9:49:db:e1:
3e:88:98:c8:76:11:5e:b3:49:32:ea:80:dc:6f:51:
43:49:1d:53:09:46:c4:92:e1:0e:f2:b4:76:34:84:
40:fe:d1:cc:4c:75:3c:04:bf:bd:57:4e:a4:57:bd:
57:4e:9a:f0:70:b7:10:2c:c2:b8:5b:d5:47:dd:1a:
11:05:e2:49:91:a7:49:47:81:d8:b4:2a:16:50:8d:
cd:6c:a6:f4:95:b8:a2:51:89:f8:12:ae:f2:54:8c:
fc:34:29:03:00:f3:7d:9e:b7:27:54:05:48:53:c6:
36:44:5e:33:7d:50:8a:e0:f3:0d:07:2a:c9:11:00:
46:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3B:87:D8:A3:73:69:7C:AA:78:53:55:CC:02:87:96:0B:56:0B:04
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/pjuH2KNzaXyqeFNVzAKHlgtWCwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.19.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:81:99:1b:d2:c9:64:a7:99:d7:b3:84:b0:7c:b3:d2:d1:0a:
7a:d5:d5:d5:93:ac:0b:59:27:30:45:da:ac:d0:52:82:36:a9:
f5:98:80:1d:5b:bf:29:90:5a:a5:23:e3:16:1c:58:69:b7:4a:
0e:37:f3:0a:0e:76:f0:e9:97:a1:f3:7d:3a:53:5b:0e:5e:02:
99:ab:3d:4b:c6:a0:d6:f2:03:78:66:40:4a:50:c3:8e:e3:77:
bc:7e:59:5c:39:1a:0c:53:6f:e4:e7:97:0f:10:6a:5b:65:69:
ef:d6:ba:b3:f9:06:b5:73:ef:e7:71:a2:3c:c8:7e:4c:2d:ab:
15:2c:10:5f:c4:2f:dc:4f:d0:bd:71:21:b1:c5:48:c8:b6:88:
a8:53:cf:20:2f:de:31:f7:29:90:b0:d2:fc:40:cb:ef:35:1f:
a2:4a:8f:a6:05:6a:06:64:6d:17:c9:05:dc:50:7f:61:ac:f0:
c1:d4:56:c5:9d:07:df:df:3d:77:a0:b6:14:b1:97:5d:ef:73:
78:cf:95:11:c2:3f:da:31:ba:b2:5e:fa:fe:03:9c:f2:50:6e:
89:c7:85:1d:f5:a2:a9:a6:f8:8a:3d:e0:9d:c7:a1:26:14:b3:
cb:7a:f0:a6:f2:3f:b5:41:13:ad:04:8e:11:8c:fb:e9:e0:28:
f9:95:e0:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:17 2024 by rpki-client on console-ams.rpki-client.org