Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5a49bf-c059-4bea-88d3-cf0124ced4d6/1/jEsNokT9VAR2aWcni7JchDEDgws.roa
File: jEsNokT9VAR2aWcni7JchDEDgws.roa (raw, json)
Hash identifier: u8i75G4PQoUYeNhLJZihRROOvM2b+m5H1vZre+bfRvg=
Subject key identifier: 8C:4B:0D:A2:44:FD:54:04:76:69:67:27:8B:B2:5C:84:31:03:83:0B
Certificate issuer: /CN=cdee78ad857607523b50b60acd9e22ca5a107854
Certificate serial: 09498385
Authority key identifier: CD:EE:78:AD:85:76:07:52:3B:50:B6:0A:CD:9E:22:CA:5A:10:78:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ze54rYV2B1I7ULYKzZ4iyloQeFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5a49bf-c059-4bea-88d3-cf0124ced4d6/1/jEsNokT9VAR2aWcni7JchDEDgws.roa
Signing time: Sat 01 Jan 2022 11:58:16 +0000
ROA not before: Sat 01 Jan 2022 11:58:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48455
IP address blocks: 195.162.2.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155812741 (0x9498385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdee78ad857607523b50b60acd9e22ca5a107854
Validity
Not Before: Jan 1 11:58:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c4b0da244fd5404766967278bb25c843103830b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6d:86:5a:bd:17:55:c2:fe:25:7b:67:0a:85:
ea:cb:33:19:c8:51:8a:9b:9e:1d:f3:6a:8c:67:25:
d2:3a:55:03:cc:93:15:c0:d4:e2:00:b2:12:e8:f3:
bf:4e:ce:73:85:c8:d9:5a:5b:9f:a9:8b:36:4a:41:
a0:48:45:23:44:9e:e5:7a:e9:52:4c:03:68:c8:74:
83:ca:e7:e3:16:dd:dd:27:dc:86:19:9e:9d:0d:26:
d3:79:85:c3:38:d3:d2:0f:1f:6c:20:a0:f5:26:9f:
23:8a:5c:ed:d3:ac:1d:85:d3:6e:6e:65:22:18:65:
49:3b:39:f9:e4:60:1b:6c:0a:03:b2:f8:6c:41:25:
25:20:98:02:57:8d:25:d1:30:1e:df:43:fa:65:c1:
3c:50:38:1d:01:5a:19:2c:67:06:10:25:2a:a8:07:
94:49:5e:20:d5:8c:3a:1a:8d:1e:86:d4:f7:c4:77:
d2:ed:a7:92:be:15:45:33:e6:af:82:c4:2b:1f:c2:
3f:91:39:91:bb:82:bd:7d:20:06:d4:ab:bc:52:25:
9b:89:ea:aa:d9:8b:87:c4:ff:8c:7e:8d:1b:6f:3d:
b8:73:6f:01:d0:21:8d:a1:ee:1a:b0:88:37:c9:9f:
a5:4f:c2:52:da:fb:2c:88:80:91:76:e4:1e:84:cf:
c9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4B:0D:A2:44:FD:54:04:76:69:67:27:8B:B2:5C:84:31:03:83:0B
X509v3 Authority Key Identifier:
keyid:CD:EE:78:AD:85:76:07:52:3B:50:B6:0A:CD:9E:22:CA:5A:10:78:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ze54rYV2B1I7ULYKzZ4iyloQeFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5a49bf-c059-4bea-88d3-cf0124ced4d6/1/jEsNokT9VAR2aWcni7JchDEDgws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5a49bf-c059-4bea-88d3-cf0124ced4d6/1/ze54rYV2B1I7ULYKzZ4iyloQeFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.162.2.0/23
Signature Algorithm: sha256WithRSAEncryption
97:87:28:8e:a4:24:6d:e8:c6:db:ef:5c:51:8a:b9:1e:22:69:
f6:40:7c:84:18:73:9b:2e:ed:9b:1e:c4:df:df:3b:a7:f8:85:
aa:3a:33:97:d1:a0:4a:f2:17:19:21:d0:23:9c:c6:9d:2a:3a:
73:5b:a4:a1:40:b5:09:99:d5:ac:ad:7f:07:8c:09:d7:a2:81:
30:84:be:07:ab:8f:71:98:fd:f3:c5:3a:93:7c:0e:83:f8:88:
7f:6b:53:a0:db:3d:8d:dd:72:99:9d:0d:87:d1:aa:9a:2d:1a:
b9:1e:bd:f2:b5:9c:57:80:ed:e1:19:8f:67:b5:f9:2e:5f:bf:
03:db:9f:cf:59:68:da:db:96:bc:47:d0:f5:af:f0:fe:ee:f8:
d3:62:48:92:2e:8e:cb:af:d3:09:36:41:e5:f2:32:75:e4:8e:
bf:35:fe:d1:9e:75:c6:34:53:6e:3d:c2:1c:25:5c:3b:e5:4f:
83:9e:1a:83:51:84:83:d5:6b:7a:4f:0f:67:c7:72:b7:4b:2f:
26:84:88:a1:79:8e:40:d7:06:48:54:ad:e7:0b:a7:e2:12:7c:
39:0a:62:61:6a:b6:4d:bb:2f:82:bb:a2:b2:6a:7d:2c:d5:34:
ff:d1:f3:93:a7:64:6c:ed:ed:88:64:f2:5a:c5:72:db:00:0a:
dc:f5:0a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:05 2024 by rpki-client on console-ams.rpki-client.org