Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/jBcq83vlRdDYRZd5RovzEnt7BNI.roa
File: jBcq83vlRdDYRZd5RovzEnt7BNI.roa (raw, json)
Hash identifier: dSxHT4BoExrCWCkDamh2MG0XlurP2CCw+JfZ8Jyf+R4=
Subject key identifier: 8C:17:2A:F3:7B:E5:45:D0:D8:45:97:79:46:8B:F3:12:7B:7B:04:D2
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14E61993
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/jBcq83vlRdDYRZd5RovzEnt7BNI.roa
Signing time: Sun 01 May 2022 04:29:31 +0000
ROA not before: Sun 01 May 2022 04:29:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206744
IP address blocks: 45.86.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350624147 (0x14e61993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: May 1 04:29:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c172af37be545d0d8459779468bf3127b7b04d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:12:ba:35:9a:ec:92:32:98:9c:2c:48:0c:d1:
66:af:44:93:06:3d:d8:6b:35:ba:5b:6d:aa:77:64:
b0:48:ab:07:fc:ca:57:55:33:a5:5a:23:c4:c2:de:
25:a5:d8:41:35:62:87:62:04:b0:3f:14:6e:c4:b1:
e9:37:cb:31:8e:48:6d:77:e3:56:3f:ca:e2:8e:56:
f1:46:ce:42:ef:f0:7d:d2:64:77:95:d3:a2:20:29:
c0:85:ef:9a:4e:7b:7f:5b:2d:5e:76:28:90:21:0d:
ef:5e:20:bd:c5:57:28:f5:25:c2:a0:67:c1:6c:33:
90:4d:d5:17:be:f6:e2:72:42:6a:a5:a3:50:3c:69:
9c:44:14:43:79:bc:b5:68:bc:c7:a7:19:86:8a:ce:
69:70:0f:b7:96:43:7b:12:60:99:b9:09:95:98:27:
31:02:a8:46:ad:8c:f7:9b:81:33:37:0b:b6:5e:92:
69:5a:e9:6c:55:d9:7e:42:d0:bc:84:6d:16:5f:d8:
d5:75:65:5f:c0:af:5b:93:18:b1:f7:83:3e:fb:ef:
b5:98:e2:c9:b3:3c:ea:ca:ae:16:2a:65:f4:e2:b6:
7a:46:e4:66:8d:b2:e9:f7:23:ab:2f:4d:58:10:58:
cd:89:08:3b:5c:b3:95:40:4b:3c:fe:be:06:5f:ca:
90:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:17:2A:F3:7B:E5:45:D0:D8:45:97:79:46:8B:F3:12:7B:7B:04:D2
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/jBcq83vlRdDYRZd5RovzEnt7BNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.17.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:24:ce:c3:01:23:93:b6:e4:6e:08:fe:be:c0:2b:6b:81:8a:
d8:36:bd:81:01:92:bc:8c:fe:28:77:17:9b:70:75:16:a9:88:
89:89:5c:5f:db:b1:f4:00:1a:23:aa:33:e8:f9:db:0b:9e:b7:
e4:e0:f8:3c:dd:b2:75:e9:7c:02:b9:4d:b7:d7:60:ae:d3:cf:
e6:e5:1d:d5:ae:88:42:16:9c:9e:fd:40:cb:95:c1:37:f3:40:
d4:cc:6f:5d:06:dd:6a:c0:66:a6:d2:03:37:52:91:51:82:83:
2d:e2:d5:b3:ae:03:4d:2c:ae:bf:c2:2e:89:74:25:83:89:21:
fe:cf:53:7f:94:9a:47:b6:2b:56:aa:f3:45:0f:86:45:cd:1f:
80:eb:07:97:49:0e:b6:7a:69:81:9a:3c:93:75:cd:e5:a6:1f:
98:4a:84:32:38:6c:44:7e:68:a2:a8:eb:62:a3:ec:1e:ef:1f:
33:0d:7f:2c:17:1a:8e:36:a8:0e:db:56:6b:36:55:ec:58:63:
1c:cc:54:23:55:3b:19:fe:c2:7d:6e:3a:59:14:ba:8a:75:80:
78:a5:85:dc:3f:ce:a4:7a:b8:01:a8:14:78:b1:9b:76:4f:48:
1d:ed:d3:b6:70:6c:41:d5:49:f7:7a:5f:1b:41:cb:be:5b:ad:
17:6e:45:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org