Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/jUQZlQIvJzc36DYdrO2wADYulqY.roa
File: jUQZlQIvJzc36DYdrO2wADYulqY.roa (raw, json)
Hash identifier: Zbq+pszScaRW73cdqAdn2cFSVWkMq9uYmkgzScvXh+c=
Subject key identifier: 8D:44:19:95:02:2F:27:37:37:E8:36:1D:AC:ED:B0:00:36:2E:96:A6
Certificate issuer: /CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Certificate serial: 0184A6A9CC730D9DDB25434353FA7994E1EC
Authority key identifier: 33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/jUQZlQIvJzc36DYdrO2wADYulqY.roa
Signing time: Wed 23 Nov 2022 22:44:16 +0000
ROA not before: Wed 23 Nov 2022 22:44:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 45.95.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a6:a9:cc:73:0d:9d:db:25:43:43:53:fa:79:94:e1:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Validity
Not Before: Nov 23 22:44:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d441995022f273737e8361dacedb000362e96a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5f:c9:45:51:fe:f4:c7:d7:87:07:d9:43:79:
86:81:73:20:e5:de:cc:11:b4:4b:62:d2:a4:2e:0b:
75:6d:75:33:03:d4:ef:67:04:44:e1:60:ec:02:2e:
6d:22:32:92:7d:c7:90:71:58:87:78:f4:58:3c:5e:
6b:7b:34:8e:7a:ae:98:f5:69:9c:b7:38:62:5d:b8:
f4:3b:09:b7:69:d9:d4:e8:c9:e6:ce:2e:dc:67:fc:
6a:97:58:db:95:6d:d0:01:c7:0c:cc:65:eb:14:10:
22:76:19:18:7a:63:70:1e:56:2c:81:83:40:59:ad:
a8:fc:c3:28:b4:e8:76:cb:16:4a:7d:52:71:98:0c:
d8:b8:29:d8:60:12:77:09:02:0d:5c:15:54:9a:74:
16:d8:3c:8d:a1:21:0a:45:95:49:bf:21:03:22:66:
58:ee:44:a2:4f:9f:c7:e1:c3:8d:74:f8:6c:82:e5:
d0:13:2b:e3:a3:c0:12:81:3c:39:19:e9:20:e9:84:
5c:c4:d7:82:31:4a:31:dd:ba:67:bf:db:b2:ee:d8:
a7:3e:ee:09:ad:13:02:55:f5:07:b8:eb:e1:70:67:
05:b6:27:a7:82:4c:0d:ae:91:47:6e:3e:14:40:a8:
1a:0f:88:31:eb:a8:c7:b8:79:51:b7:8c:ad:5b:23:
b1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:44:19:95:02:2F:27:37:37:E8:36:1D:AC:ED:B0:00:36:2E:96:A6
X509v3 Authority Key Identifier:
keyid:33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/jUQZlQIvJzc36DYdrO2wADYulqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/M41C-7P0P1bduHguZUkKI9hbcuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.94.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:d1:04:ec:06:fa:09:ba:4c:34:16:1e:66:45:88:67:ea:39:
42:57:01:44:47:b3:bb:3b:43:5d:4a:ff:ce:e0:03:34:74:51:
f1:a7:bb:5b:46:12:f7:02:ad:83:b0:66:e7:69:7d:f9:7e:f9:
ec:33:75:94:fe:c0:10:bb:f9:a1:b5:a5:ce:2e:de:1b:13:5f:
71:56:de:2e:12:d7:1c:6b:55:0b:34:31:35:f4:14:12:d5:88:
47:75:25:34:00:54:6c:a4:d8:36:7b:cf:ab:7c:de:f5:30:7b:
6a:da:ac:0d:cd:41:1a:a8:66:34:db:08:f0:3e:7b:4d:2c:11:
26:d6:3f:82:52:d4:ef:2c:70:10:51:54:e6:06:14:2f:b1:ed:
48:9c:24:7f:ba:9e:34:af:35:87:c5:dd:c1:47:26:eb:15:61:
e3:f3:bb:ef:e3:83:c0:75:ba:27:f7:23:0b:6b:41:55:fd:9a:
bb:30:25:44:f0:1b:5d:d2:32:b0:a5:b3:2f:2b:6c:18:60:70:
d6:b2:66:43:e2:1b:14:3b:d9:c6:61:d6:63:be:92:76:d6:ae:
ad:85:cf:17:e0:21:7a:07:2d:b4:f1:90:c2:50:b7:1e:bf:4c:
ab:a7:66:85:ce:10:4e:3e:b5:42:8f:59:47:9a:9f:49:68:f0:
48:60:5c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-fra.rpki-client.org