Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/jjgK6jyzfy3zCQDaxKEvIkw8scA.roa
File: jjgK6jyzfy3zCQDaxKEvIkw8scA.roa (raw, json)
Hash identifier: IfwGTvYUcJyV5MSE72v1GS6YsYyxmk7faOHJA5qTOCs=
Subject key identifier: 8E:38:0A:EA:3C:B3:7F:2D:F3:09:00:DA:C4:A1:2F:22:4C:3C:B1:C0
Certificate issuer: /CN=618855635e4794f5878e3b985fed8935ae06c5a1
Certificate serial: 07B248EB
Authority key identifier: 61:88:55:63:5E:47:94:F5:87:8E:3B:98:5F:ED:89:35:AE:06:C5:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYhVY15HlPWHjjuYX-2JNa4GxaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/jjgK6jyzfy3zCQDaxKEvIkw8scA.roa
Signing time: Sat 01 Jan 2022 06:03:53 +0000
ROA not before: Sat 01 Jan 2022 06:03:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 45.142.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129124587 (0x7b248eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618855635e4794f5878e3b985fed8935ae06c5a1
Validity
Not Before: Jan 1 06:03:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e380aea3cb37f2df30900dac4a12f224c3cb1c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ac:9c:64:76:09:12:3b:a1:9e:7f:5a:9e:77:
2c:e8:ac:ea:23:b2:c3:db:88:e0:9f:34:32:39:fa:
4f:41:e9:0b:e0:71:98:fa:c0:fc:e6:54:6f:87:db:
87:b8:0a:86:04:03:69:a7:7f:02:c3:28:15:28:fe:
9a:92:65:7b:dd:94:5a:ff:b2:29:02:8d:59:52:74:
65:7d:fe:c0:36:e4:b1:d3:81:38:32:13:14:5d:3b:
e4:b1:6f:b5:12:b9:51:9b:34:3b:d3:42:32:8d:9c:
2b:e1:f2:41:cf:0c:c0:09:32:6f:cf:d5:75:71:d8:
52:60:40:b1:2b:87:7c:3d:75:9c:ba:51:32:e3:50:
ce:d7:f4:e1:57:ac:50:2d:89:3d:b2:81:cc:1a:91:
6e:03:a0:6e:91:4b:8d:9c:e7:75:24:a0:3c:d6:76:
8b:9b:bd:e1:d4:0d:22:53:34:3c:0e:fa:8b:09:e3:
9a:ee:09:8b:13:20:fa:25:35:e1:7e:df:7f:55:10:
f0:a6:5e:2b:21:83:e8:eb:51:09:15:72:b7:0d:80:
a4:1e:cf:ba:c2:58:82:98:4f:bb:b2:aa:14:ad:a9:
b2:db:b3:38:60:74:79:e8:91:9d:de:ec:25:ac:0f:
b9:4b:65:7f:61:ca:45:55:d7:e3:7a:20:19:e9:fd:
41:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:38:0A:EA:3C:B3:7F:2D:F3:09:00:DA:C4:A1:2F:22:4C:3C:B1:C0
X509v3 Authority Key Identifier:
keyid:61:88:55:63:5E:47:94:F5:87:8E:3B:98:5F:ED:89:35:AE:06:C5:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYhVY15HlPWHjjuYX-2JNa4GxaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/jjgK6jyzfy3zCQDaxKEvIkw8scA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/YYhVY15HlPWHjjuYX-2JNa4GxaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.128.0/22
Signature Algorithm: sha256WithRSAEncryption
57:39:a3:b4:12:52:cd:5b:93:06:a4:3b:c6:52:bc:01:93:db:
0e:06:a9:1f:cf:58:c5:03:91:f8:a9:a0:33:fc:da:7c:f2:4d:
b9:43:66:9b:91:f3:e7:83:17:f6:f1:c8:a9:b3:6e:b8:70:bd:
cc:61:0d:ba:3a:49:39:c6:fe:18:c3:cc:b6:57:02:4d:d3:7b:
a0:53:bf:df:45:71:e1:a5:e9:67:56:4d:00:de:f3:5b:5c:4c:
94:6a:3a:3b:ac:6c:e9:af:ff:30:ab:52:7b:f3:f8:69:82:89:
d5:af:80:27:9b:b8:06:36:69:2e:c0:30:ad:a3:99:47:2a:a8:
85:ed:1b:d0:a3:3d:ea:57:d4:56:28:22:d5:2f:9a:52:2b:1c:
ac:09:2f:8a:ec:96:2c:13:57:75:97:93:4a:1b:ab:61:14:d1:
d5:95:49:0e:22:e9:05:35:d9:03:ac:86:05:28:81:ad:5d:46:
94:a2:b5:fc:e2:17:83:83:75:5b:8f:bf:2a:14:bc:b2:bb:0c:
33:88:74:f3:3c:ac:19:22:2b:f9:00:78:8b:a4:07:65:a3:9a:
d9:06:c1:09:f2:ec:6e:af:4a:3f:9d:d8:46:22:ec:4d:32:72:
db:5b:d9:c2:a4:09:f4:a5:ad:fd:fc:1a:2d:ef:05:83:f2:c2:
18:dd:78:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:43 2024 by rpki-client on console-fra.rpki-client.org