Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/6f8a77-b26c-4d24-bb44-15b0c3449907/1/jdlt39DOj2REkUeU9PkbpDMlcoU.roa
File: jdlt39DOj2REkUeU9PkbpDMlcoU.roa (raw, json)
Hash identifier: hQiTNURrfAZSAEQRkLofFQQWUYLIKWiENLPK0pAQxlM=
Subject key identifier: 8D:D9:6D:DF:D0:CE:8F:64:44:91:47:94:F4:F9:1B:A4:33:25:72:85
Certificate issuer: /CN=022c8ffc50609ec0d8b4a72805c8990a64aae71e
Certificate serial: 0182EE8F670AF62630C2085DF98E1B3CBEF7
Authority key identifier: 02:2C:8F:FC:50:60:9E:C0:D8:B4:A7:28:05:C8:99:0A:64:AA:E7:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AiyP_FBgnsDYtKcoBciZCmSq5x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/6f8a77-b26c-4d24-bb44-15b0c3449907/1/jdlt39DOj2REkUeU9PkbpDMlcoU.roa
Signing time: Tue 30 Aug 2022 11:42:31 +0000
ROA not before: Tue 30 Aug 2022 11:42:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56695
IP address blocks: 195.128.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:8f:67:0a:f6:26:30:c2:08:5d:f9:8e:1b:3c:be:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=022c8ffc50609ec0d8b4a72805c8990a64aae71e
Validity
Not Before: Aug 30 11:42:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dd96ddfd0ce8f6444914794f4f91ba433257285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7b:51:49:09:40:79:2e:a7:4b:5b:37:6c:6d:
55:90:63:9a:36:75:90:39:ab:2b:25:5a:e6:8f:ee:
80:ab:ab:61:61:2c:3a:ac:e9:ff:a6:27:68:8d:28:
07:e1:cc:bb:f9:68:09:b0:bf:ea:3d:d0:51:c7:c5:
28:9e:63:47:90:09:90:a6:87:e1:db:97:be:7f:05:
85:af:38:8f:f9:e7:8c:ae:86:55:80:3f:bf:40:b2:
03:1b:37:7c:29:5a:fd:06:ec:7a:a3:7c:44:a3:c8:
84:25:1d:71:95:e6:39:87:3d:22:1a:91:0b:f6:27:
92:95:06:61:c1:df:3f:22:ee:83:f6:17:7e:91:7d:
5f:ec:e3:a5:59:60:4a:9e:f6:ab:00:18:78:42:b9:
49:1e:0d:3d:cd:d1:18:d1:81:e4:64:ce:e4:37:b2:
a7:72:2b:96:39:7d:b9:f4:04:02:dc:03:b3:19:8f:
5a:51:fb:7d:dd:94:7e:b9:f7:d2:e8:34:0b:b0:16:
d7:b9:47:f2:1d:7c:f6:fe:78:fc:e8:ae:3f:b8:d3:
80:82:74:03:a5:3e:32:20:03:a2:6a:41:49:b2:8a:
51:21:e5:ed:ed:e6:a5:4f:cf:a4:50:b0:02:4c:4a:
38:fb:12:01:b5:76:63:9a:da:42:8b:c0:5a:33:61:
41:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D9:6D:DF:D0:CE:8F:64:44:91:47:94:F4:F9:1B:A4:33:25:72:85
X509v3 Authority Key Identifier:
keyid:02:2C:8F:FC:50:60:9E:C0:D8:B4:A7:28:05:C8:99:0A:64:AA:E7:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AiyP_FBgnsDYtKcoBciZCmSq5x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6f8a77-b26c-4d24-bb44-15b0c3449907/1/jdlt39DOj2REkUeU9PkbpDMlcoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6f8a77-b26c-4d24-bb44-15b0c3449907/1/AiyP_FBgnsDYtKcoBciZCmSq5x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.128.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ab:8e:73:86:63:f2:83:e9:e3:27:28:e0:77:d8:68:d6:8c:
96:d6:a7:e7:2b:92:08:15:24:ec:18:33:b8:62:f5:38:5f:81:
dc:9e:82:eb:97:69:94:a9:6e:56:1a:e1:42:cc:04:13:5d:13:
ff:d3:de:87:f2:9d:ad:4c:df:73:46:5f:c7:e1:65:ed:dd:e0:
e8:21:41:04:ca:d2:55:78:1c:06:50:53:6d:bc:19:ca:2c:20:
76:99:76:ae:b3:c7:1a:fe:e2:56:5d:00:df:da:95:7f:97:64:
de:88:a9:bf:37:2b:2d:dc:94:02:ce:18:34:9b:63:fb:62:de:
f2:7e:6b:55:05:c6:5e:11:8e:63:3b:f3:30:e6:2a:aa:c3:af:
6e:48:3f:79:a6:e9:2f:2b:93:44:19:79:e9:f7:51:3a:34:5a:
bf:2a:37:35:81:93:ff:5a:a1:96:83:f7:28:43:7f:57:5a:f9:
47:d0:1f:b2:35:da:2f:8f:c3:5a:94:8c:be:df:fe:28:6f:77:
c2:fa:38:aa:23:0a:0e:58:29:cd:98:ce:f1:2b:aa:12:37:fb:
0e:2c:d4:e6:f9:16:93:ac:89:7d:0b:d7:3f:35:04:8a:9f:96:
17:52:78:41:e7:ab:fa:87:3d:f2:0f:3a:0c:b4:ef:2b:b9:11:
3d:90:3a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:55 2024 by rpki-client on console-ams.rpki-client.org