Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/Jg0Sy0j-1QX7BSL4WE4s38X1jow.roa
File: Jg0Sy0j-1QX7BSL4WE4s38X1jow.roa (raw, json)
Hash identifier: FgkZg7qQF/bx2A6dLmeApEScD5GA0RgJF/XtNtMq2Iw=
Subject key identifier: 26:0D:12:CB:48:FE:D5:05:FB:05:22:F8:58:4E:2C:DF:C5:F5:8E:8C
Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Certificate serial: 0AA526F4
Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/Jg0Sy0j-1QX7BSL4WE4s38X1jow.roa
Signing time: Sat 01 Jan 2022 00:54:53 +0000
ROA not before: Sat 01 Jan 2022 00:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200069
IP address blocks: 45.14.148.0/22 maxlen: 22
87.253.232.0/24 maxlen: 24
87.253.232.0/21 maxlen: 21
185.189.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178595572 (0xaa526f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Validity
Not Before: Jan 1 00:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=260d12cb48fed505fb0522f8584e2cdfc5f58e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0e:8a:f6:3a:e6:75:f5:5d:4b:20:a9:93:c2:
65:ea:c9:9f:b9:19:17:00:b0:7a:be:28:70:3e:a2:
dc:8a:f3:93:b7:e8:be:55:93:fa:c1:7b:c4:c9:9a:
1a:5c:d7:3d:48:eb:96:81:3b:9e:6f:c7:b9:34:21:
6a:f7:0e:21:a1:88:fa:f7:38:13:3f:4c:e4:06:71:
04:1c:9b:25:b7:9e:de:23:8a:f0:a3:b8:7d:69:f6:
6f:c7:c5:6a:4d:bf:34:09:41:a5:7d:70:fb:8d:fc:
af:51:30:65:ed:d0:ab:3f:53:77:36:92:e9:ab:94:
5f:48:31:46:00:b3:d3:31:50:ab:80:69:9f:07:c7:
3e:c0:89:b7:a8:fe:8f:95:3d:14:6a:21:ca:bf:75:
eb:46:8a:37:50:3c:d4:d7:38:06:76:81:75:e7:57:
94:b6:9c:ed:67:b3:97:54:b3:5d:26:cf:73:22:9f:
a5:a7:f4:40:21:46:2a:2c:b9:c4:40:a4:35:ca:29:
52:f4:df:85:90:c9:54:4d:d6:7a:46:5c:d5:0b:c5:
08:72:7b:84:ae:3e:c6:9c:12:07:c7:25:bc:bc:ee:
43:3e:e3:da:0d:ea:90:64:9c:61:ca:ac:78:09:71:
18:ad:df:32:56:c3:13:5a:87:e4:cc:61:07:40:aa:
45:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:0D:12:CB:48:FE:D5:05:FB:05:22:F8:58:4E:2C:DF:C5:F5:8E:8C
X509v3 Authority Key Identifier:
keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/Jg0Sy0j-1QX7BSL4WE4s38X1jow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.148.0/22
87.253.232.0/21
185.189.236.0/22
Signature Algorithm: sha256WithRSAEncryption
56:17:c5:78:b2:c1:ed:1d:b9:10:2a:ff:93:63:c0:a2:8a:d0:
e9:a7:ea:4d:ee:a1:e0:82:6a:aa:86:96:17:22:b6:cc:f5:5d:
25:f0:3b:05:d4:11:df:c9:9a:2f:8d:0e:b2:ff:0d:44:fc:11:
4b:8e:f7:71:52:5e:3a:37:43:6a:33:1e:75:d9:b7:0f:c0:4c:
ac:7d:fe:df:df:8e:5f:1b:8d:0d:ba:24:b9:e8:1d:81:f7:d3:
c2:b0:3c:c5:e0:98:71:74:ab:c8:b8:67:9a:0b:98:2a:f2:f2:
eb:2c:88:e5:f3:d8:a0:64:06:21:4c:eb:3c:93:bf:f8:b9:ed:
02:e8:0e:86:f2:88:f3:7a:70:bb:0c:e4:84:cd:17:3a:48:c1:
b4:38:59:ba:8f:62:77:80:25:73:a1:5c:d2:0b:8a:ee:7b:df:
72:63:ed:de:c8:cc:31:31:83:02:54:91:24:8d:29:bd:23:40:
c4:2b:72:ea:0e:35:69:3a:c3:0b:c7:a7:8f:25:b9:52:64:7e:
75:9b:0e:8e:5a:33:b8:3e:54:40:14:f3:26:80:6d:f1:46:1d:
92:33:fb:1c:4e:df:94:cc:c9:2a:4a:d5:03:2e:2e:8d:a0:8e:
9e:21:23:66:22:3a:ae:4d:db:bf:c3:d0:66:c9:52:c0:db:41:
1a:03:cd:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-ams.rpki-client.org