Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ac5ff9-e19e-4ad0-8c5a-b272778909d9/1/jVP_sNDA5A_3BBAtPE7BKPOEUNY.roa
File: jVP_sNDA5A_3BBAtPE7BKPOEUNY.roa (raw, json)
Hash identifier: HKC4u+ARSnCeADwKjDFi1MTA4Hh/OnOwvUoyAfVbmIQ=
Subject key identifier: 8D:53:FF:B0:D0:C0:E4:0F:F7:04:10:2D:3C:4E:C1:28:F3:84:50:D6
Certificate issuer: /CN=1f120d7e49c9f3bf313d96531adfa7eaae805761
Certificate serial: 2285E0
Authority key identifier: 1F:12:0D:7E:49:C9:F3:BF:31:3D:96:53:1A:DF:A7:EA:AE:80:57:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HxINfknJ878xPZZTGt-n6q6AV2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ac5ff9-e19e-4ad0-8c5a-b272778909d9/1/jVP_sNDA5A_3BBAtPE7BKPOEUNY.roa
Signing time: Sat 01 Jan 2022 01:53:50 +0000
ROA not before: Sat 01 Jan 2022 01:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209842
IP address blocks: 94.154.144.0/22 maxlen: 22
2a09:c500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2262496 (0x2285e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f120d7e49c9f3bf313d96531adfa7eaae805761
Validity
Not Before: Jan 1 01:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d53ffb0d0c0e40ff704102d3c4ec128f38450d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:02:f4:ce:cf:09:ea:c0:be:9a:d3:74:84:3c:
e1:30:a7:4e:46:d7:ad:6a:7b:c9:1d:69:4c:bd:3f:
4c:f6:c1:7a:bb:4e:cf:a6:b3:5d:b6:06:f0:b9:6c:
b5:e9:81:02:05:03:05:35:96:e0:2d:63:55:8e:f0:
52:6d:f5:98:6e:fb:1b:1a:89:b3:f1:04:2c:34:ca:
b6:93:fb:f7:53:26:5d:ea:df:8d:46:1e:4a:33:31:
66:9c:e6:4b:6b:ee:5d:ba:9a:8b:fc:bc:f7:6e:cd:
dc:e6:37:41:76:1a:ec:9c:41:a0:cc:39:fe:26:18:
40:56:64:ce:d8:76:d6:bf:f6:67:17:3c:34:78:6e:
2e:00:18:0e:9f:59:8f:0e:cb:1f:33:2c:d6:a6:33:
25:77:ad:b5:95:b8:a8:1a:e8:13:76:1f:15:2f:80:
47:23:7c:48:ce:77:9e:7d:38:77:9d:e2:79:34:90:
0e:f5:c5:fe:de:f0:a2:92:a6:92:48:5e:b4:db:92:
7e:7e:52:10:59:0c:b6:2c:e7:4f:31:70:2f:37:f8:
57:ed:d2:f9:ba:52:4c:d7:4b:f1:73:95:fb:90:83:
79:5a:1f:66:f4:46:a0:a8:7e:98:86:65:c1:17:4b:
e4:e9:65:c6:3c:7a:e4:94:9a:97:c8:54:29:71:db:
08:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:53:FF:B0:D0:C0:E4:0F:F7:04:10:2D:3C:4E:C1:28:F3:84:50:D6
X509v3 Authority Key Identifier:
keyid:1F:12:0D:7E:49:C9:F3:BF:31:3D:96:53:1A:DF:A7:EA:AE:80:57:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HxINfknJ878xPZZTGt-n6q6AV2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ac5ff9-e19e-4ad0-8c5a-b272778909d9/1/jVP_sNDA5A_3BBAtPE7BKPOEUNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ac5ff9-e19e-4ad0-8c5a-b272778909d9/1/HxINfknJ878xPZZTGt-n6q6AV2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.144.0/22
IPv6:
2a09:c500::/29
Signature Algorithm: sha256WithRSAEncryption
4c:4f:8d:ca:fa:c0:72:85:98:20:c2:ec:20:14:58:f7:e6:2e:
48:93:c9:44:a9:e4:07:50:89:9c:c3:11:da:ad:66:fa:ad:d7:
41:a8:6d:2e:3a:40:e7:de:0c:f9:79:fd:d3:dd:99:20:3b:c1:
1f:0a:38:e3:c2:ad:73:72:86:d4:e1:ee:ab:ee:91:64:ec:e2:
dd:cc:ba:96:eb:e3:d9:6f:df:52:ba:5d:b0:a4:2b:8d:63:ac:
d0:5f:12:cc:de:51:88:45:fe:e7:14:65:ef:e2:3c:6e:68:07:
a0:2b:d9:cf:b8:2d:6b:b3:81:03:13:b0:55:cb:26:3a:5c:2a:
01:2a:28:ad:63:38:36:b3:d9:45:f2:bc:f2:0a:0e:b5:26:c6:
e4:bf:53:8c:d0:f8:b3:5b:87:7b:fa:1b:ab:32:3c:eb:e1:fa:
79:35:62:02:eb:39:f0:72:ff:56:4c:7f:81:10:88:99:ee:c2:
65:0e:59:85:40:cf:f6:5a:78:93:29:b8:a8:74:04:21:25:ed:
da:d0:c7:be:0a:62:3d:0d:8d:64:89:e2:ac:6b:e3:15:66:19:
8c:5c:a1:2e:ae:64:87:ef:f0:ba:ea:55:ad:00:b1:12:31:19:
65:15:16:b2:1c:d1:7f:e1:93:80:81:5d:93:ab:ba:43:0e:6d:
79:de:45:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:50 2023 by rpki-client on console-ams.rpki-client.org