Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/JBkjfIPM-VlmUB3aT19hl4r0Hus.roa
File: JBkjfIPM-VlmUB3aT19hl4r0Hus.roa (raw, json)
Hash identifier: eYA2hv1nd10pAlDduuoYmjpVO6CKfU7h/Amb+SlSBzU=
Subject key identifier: 24:19:23:7C:83:CC:F9:59:66:50:1D:DA:4F:5F:61:97:8A:F4:1E:EB
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 0AFBD5C7
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/JBkjfIPM-VlmUB3aT19hl4r0Hus.roa
Signing time: Sat 01 Jan 2022 13:02:47 +0000
ROA not before: Sat 01 Jan 2022 13:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41209
IP address blocks: 195.34.18.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184276423 (0xafbd5c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: Jan 1 13:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2419237c83ccf95966501dda4f5f61978af41eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1c:0f:57:b5:a3:56:fb:d9:8c:95:b8:08:33:
fd:37:44:18:2b:0a:b3:10:d2:39:31:f1:dc:a2:69:
54:19:ca:8b:fb:b6:23:70:5a:30:ad:67:41:92:69:
da:85:3d:11:d4:57:b5:c4:f5:f6:17:a4:b7:6e:a5:
28:03:b9:f7:bb:41:a7:57:59:ce:63:62:a4:79:19:
20:22:10:8c:97:f4:35:1b:10:3e:27:a4:34:2e:76:
af:89:a5:be:84:a4:72:76:c2:95:1e:56:75:92:b3:
e9:33:50:b2:ac:12:25:62:76:32:18:d2:03:a7:57:
6c:f6:9c:f7:18:f8:b0:84:d3:0a:6f:83:0b:c3:26:
68:74:07:9b:91:1f:f8:75:b0:a4:40:b4:54:92:2c:
83:84:88:c6:fb:49:81:5e:12:a1:43:6e:a3:f6:a6:
1b:30:5f:51:64:00:2b:56:d1:98:a0:2d:83:2d:61:
92:7f:63:93:b7:51:e9:ee:eb:ba:fa:cf:da:ae:33:
85:b5:5d:67:c1:3b:fe:70:ba:2c:fd:aa:78:35:b6:
8a:1b:8a:61:aa:c0:4d:64:94:4a:76:75:7a:8a:15:
bc:c2:c8:8f:44:ce:12:5b:54:f9:96:b3:11:45:1b:
84:20:5c:c6:30:be:ea:1b:4b:21:4f:e3:0f:32:0d:
e9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:19:23:7C:83:CC:F9:59:66:50:1D:DA:4F:5F:61:97:8A:F4:1E:EB
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/JBkjfIPM-VlmUB3aT19hl4r0Hus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.34.18.0/23
Signature Algorithm: sha256WithRSAEncryption
61:77:3d:92:bf:8e:8e:fc:85:b4:da:12:52:8e:76:bd:84:ee:
8b:5b:c1:b8:87:47:d5:0c:0c:52:4f:c7:4a:34:04:67:48:4c:
49:4b:43:6d:2b:5c:e0:6d:a4:ce:b8:e5:81:54:1f:40:ae:6a:
55:06:37:7e:60:1c:b1:60:9e:9b:b8:88:2a:8b:c4:b2:6b:d4:
bb:42:c8:f7:f1:85:9f:b7:53:5b:51:95:82:73:84:d3:b9:de:
ff:da:f3:75:fb:7e:2a:e4:a6:b2:7e:9a:f5:0b:2e:f6:38:b7:
2e:18:f2:04:6c:34:a3:90:af:e5:4a:96:df:2b:88:4b:c9:42:
ac:d3:6d:11:b7:92:3a:4a:6f:9f:60:13:87:b8:43:76:3f:7d:
79:fd:4e:16:66:ad:02:30:f4:0b:24:62:05:43:7a:81:96:bc:
34:e5:ee:77:cb:90:0e:f3:0b:d7:16:a1:9a:8f:1b:1b:c2:9f:
41:a4:d7:c8:78:8f:22:5d:07:eb:aa:82:35:7d:37:17:c6:02:
0c:b5:bf:f7:ef:6e:50:81:63:f3:6d:5c:05:27:b3:d2:61:a9:
58:3f:12:18:8d:79:39:5a:c5:2b:31:66:af:6d:25:26:49:ea:
d6:55:7e:f3:fe:99:79:2c:06:5f:d7:9c:68:e6:c7:36:98:68:
7c:a3:f8:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:26 2023 by rpki-client on console-ams.rpki-client.org