Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/0jB04hy-OVv8OHM0mKYRsZ3Cz28.roa
File: 0jB04hy-OVv8OHM0mKYRsZ3Cz28.roa (raw, json)
Hash identifier: HXRomHXjpqpLgX+dMHtn3P6scTMKsTJu5VHIO7TyuUE=
Subject key identifier: D2:30:74:E2:1C:BE:39:5B:FC:38:73:34:98:A6:11:B1:9D:C2:CF:6F
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38C877E0
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/0jB04hy-OVv8OHM0mKYRsZ3Cz28.roa
Signing time: Sat 01 Jan 2022 07:55:08 +0000
ROA not before: Sat 01 Jan 2022 07:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1132
IP address blocks: 145.120.16.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952661984 (0x38c877e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d23074e21cbe395bfc38733498a611b19dc2cf6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0b:1f:7e:49:6e:f7:b9:e4:28:80:9d:24:70:
f8:22:4d:ca:f4:da:d1:22:2e:f8:e8:b5:02:a2:8a:
58:f2:61:06:00:74:23:fb:9f:a9:14:2b:0c:0c:23:
d2:86:dc:25:8d:5f:3d:ee:57:e0:45:ba:f8:a2:72:
f4:c7:2a:11:ca:04:a4:b9:d1:e1:93:d0:cc:e3:b6:
26:57:d0:ad:49:8f:73:69:62:e9:2b:74:7f:08:6b:
77:36:66:a6:ce:c2:3a:80:8d:fe:bf:03:c2:0d:97:
14:82:1a:b8:d2:1a:a3:03:9c:80:e6:76:f4:38:66:
1b:95:56:c2:bb:65:7c:4e:ab:9e:f4:4d:59:ce:af:
8c:71:97:02:0f:03:c3:d9:7d:a6:dd:c8:38:3d:3c:
15:f3:b7:c3:b6:2c:87:30:73:71:e0:7e:58:07:c1:
f5:e3:b2:50:cf:31:95:34:d8:68:7e:52:f0:58:25:
81:4b:68:8f:70:66:7c:84:32:26:ab:c3:c9:cf:4f:
55:1e:42:ac:8d:a2:2d:79:36:a9:9e:28:b8:3f:10:
a6:6b:96:bb:d0:4a:ae:1f:fe:06:0d:14:a3:04:1a:
2e:ee:44:a9:5c:aa:c7:b1:81:30:6e:b5:4f:f1:ce:
44:36:18:80:29:a2:58:11:79:d5:7a:0a:16:5d:73:
cc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:30:74:E2:1C:BE:39:5B:FC:38:73:34:98:A6:11:B1:9D:C2:CF:6F
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/0jB04hy-OVv8OHM0mKYRsZ3Cz28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.120.16.0/23
Signature Algorithm: sha256WithRSAEncryption
10:69:5c:1c:1c:bc:e6:84:76:c8:35:91:61:3c:fb:2e:40:ac:
72:9c:33:35:8e:14:91:f6:de:1a:cf:43:3b:c5:c4:1c:4a:da:
13:10:8e:4c:cc:6e:88:9b:c3:36:06:61:0c:64:db:4b:cc:a2:
8c:88:97:bb:9a:2a:89:a4:b5:4d:18:82:b9:78:ea:b7:85:99:
da:df:a5:db:5c:95:52:cf:95:f2:94:25:84:67:99:30:d1:dd:
4d:ae:e2:34:b9:3e:14:81:79:a4:b2:4b:ad:1b:a5:0e:a9:9f:
c1:d4:d8:5e:55:3c:f1:9d:7a:4a:79:9a:14:a5:e5:bc:a1:d7:
03:90:d0:7f:d0:e1:d9:14:cc:5a:87:ed:cb:fa:65:87:1c:ab:
21:f1:01:d5:09:92:a8:59:89:7e:8c:2f:41:35:9e:7c:66:78:
f7:20:b7:bf:39:40:6a:b7:8e:25:63:a6:93:db:5a:98:6f:53:
c6:75:7b:e5:72:06:ce:d4:38:2b:82:0a:fa:6c:c9:41:b9:3f:
f4:b1:43:af:2e:40:ee:a9:5e:4d:66:be:be:2b:35:92:23:20:
ae:15:f0:43:27:f5:37:9b:73:2d:9c:34:23:25:6a:18:9d:d5:
3f:8d:4c:0a:55:16:dd:55:36:fc:7c:bc:fa:4d:81:79:3b:54:
69:e9:c4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org