Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/JLKOmKqcuam9WrSIw2CdxmxGdyM.roa
File: JLKOmKqcuam9WrSIw2CdxmxGdyM.roa (raw, json)
Hash identifier: OHQU46zwXR/yrqGsOl7vvhiMb2XuK4pcn1F1yhgIaYU=
Subject key identifier: 24:B2:8E:98:AA:9C:B9:A9:BD:5A:B4:88:C3:60:9D:C6:6C:46:77:23
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 03ED89E5
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/JLKOmKqcuam9WrSIw2CdxmxGdyM.roa
Signing time: Sat 01 Jan 2022 09:56:08 +0000
ROA not before: Sat 01 Jan 2022 09:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202629
IP address blocks: 45.153.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65898981 (0x3ed89e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Jan 1 09:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24b28e98aa9cb9a9bd5ab488c3609dc66c467723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a5:a4:3e:3e:05:0a:76:f9:d0:39:79:f3:f2:
5f:96:41:1e:77:fc:e1:1c:ad:4c:d2:3e:5b:fa:30:
c0:29:51:0c:77:b3:72:f7:a3:41:34:47:64:a9:f6:
1d:9a:22:5b:16:25:93:0f:8e:e5:c5:99:82:77:a7:
14:b6:5f:f5:42:08:45:bf:e9:a5:fd:89:ac:04:4b:
bc:71:bb:a9:3a:b1:24:12:a7:14:c8:99:e5:5c:a0:
04:30:73:9e:8c:ca:55:b3:01:8e:23:95:cd:74:43:
8e:3c:41:7a:b3:af:36:34:2e:96:06:28:59:bf:f1:
42:40:66:62:90:5e:85:39:ae:a3:fd:f0:a6:8a:bb:
45:7e:bb:2b:92:1a:00:aa:26:af:30:3b:80:14:8f:
ff:9b:97:2d:bc:4f:23:19:a8:cc:51:b0:be:a7:69:
97:de:59:8a:bf:a5:cc:00:7b:f1:97:aa:e2:8f:94:
f9:b7:2c:35:c8:27:10:e5:0c:2d:9b:8c:db:8a:00:
e6:08:cc:4e:d4:ff:c0:e8:2b:2a:fe:66:9f:c8:1d:
2d:77:2d:c2:60:94:b0:23:cf:42:c5:7e:c0:2b:bc:
f1:38:c1:ed:79:8c:29:c4:cf:c4:d8:38:86:a4:af:
d0:fe:cf:1c:72:a1:5b:a0:0a:8c:78:36:6a:0e:48:
94:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B2:8E:98:AA:9C:B9:A9:BD:5A:B4:88:C3:60:9D:C6:6C:46:77:23
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/JLKOmKqcuam9WrSIw2CdxmxGdyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.28.0/22
Signature Algorithm: sha256WithRSAEncryption
12:0b:af:d3:52:3d:cc:0d:63:76:73:78:f5:95:0c:bb:0f:64:
d1:d6:76:6b:46:f3:a7:93:11:54:8d:e6:d7:98:1a:31:3b:e3:
00:fb:2b:8b:74:93:b3:67:87:bc:ca:6f:37:54:fc:4f:5b:e2:
b7:c5:90:87:88:52:bb:3d:45:92:f2:2f:52:31:1e:f8:1f:86:
3a:c7:4c:51:b2:f3:bb:22:61:16:1d:31:04:d9:3b:c1:25:3f:
c1:c0:0c:06:cc:8b:9e:02:6b:13:b8:bb:fd:bd:ec:3c:a6:66:
47:3b:6a:31:44:49:1b:3a:aa:3a:2b:87:32:07:49:8b:8e:ed:
8e:e8:5d:13:49:5c:1c:ad:27:33:41:82:28:0d:25:93:14:27:
f1:05:02:87:89:b2:1d:af:bb:d1:41:eb:ee:89:6e:54:a9:9f:
03:6e:f8:72:9c:68:28:0f:90:08:42:79:36:d9:c4:01:cc:0d:
f9:9d:ca:9f:f5:e2:53:88:7b:7b:ad:61:76:0f:de:08:c8:8b:
98:35:93:69:3e:00:7d:ed:af:5c:37:4d:c0:5a:c1:dc:e3:3f:
ef:cb:f8:ce:c6:6b:b7:8b:c8:06:ff:34:4e:bf:74:2e:8b:2a:
1f:3e:39:e6:92:6d:5d:26:ca:5f:85:5a:45:99:cc:8f:be:60:
32:c5:44:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org