Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/j1PA8JkffNTuMo-DjB53pklbHvU.roa
File: j1PA8JkffNTuMo-DjB53pklbHvU.roa (raw, json)
Hash identifier: ple8xUDBW+Kk9RsA2WhMlbn8C9NfXYxgz012RJe+j2g=
Subject key identifier: 8F:53:C0:F0:99:1F:7C:D4:EE:32:8F:83:8C:1E:77:A6:49:5B:1E:F5
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17EC16FB
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/j1PA8JkffNTuMo-DjB53pklbHvU.roa
Signing time: Sat 01 Jan 2022 04:54:46 +0000
ROA not before: Sat 01 Jan 2022 04:54:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209956
IP address blocks: 45.136.0.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401348347 (0x17ec16fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f53c0f0991f7cd4ee328f838c1e77a6495b1ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:06:bf:0c:6a:37:0f:b2:54:9b:eb:d3:b8:bb:
33:8d:5e:ab:53:a9:60:b3:34:50:47:af:1e:ec:30:
8f:2c:3b:da:ce:f4:13:28:21:51:66:8c:51:e7:03:
b7:16:e3:1d:96:a6:0c:77:eb:b9:90:5d:f3:66:0e:
8b:1e:bb:76:68:90:f6:39:f8:79:9c:c0:4c:96:0f:
72:01:16:06:9e:9b:f5:1d:9f:88:99:58:c2:59:4d:
0e:b7:94:ca:9e:ac:85:8c:5d:71:1c:f2:fd:f9:1c:
fd:33:f7:42:44:52:22:df:db:20:40:20:54:f9:8f:
16:e9:d3:41:de:98:f3:c3:36:d3:b7:9e:e9:c1:5a:
6a:0b:d5:f7:63:90:11:dd:ea:00:3d:67:a1:a6:55:
68:4a:8e:8d:27:32:86:cb:84:d2:44:2d:d9:6d:f7:
40:03:f8:85:cb:2b:da:20:d9:d0:83:56:50:bb:42:
be:c4:8a:cd:14:85:82:58:02:34:72:54:86:a2:7b:
3b:e6:8a:89:4d:eb:54:59:56:f9:21:2b:36:4e:d1:
21:fe:c9:76:7c:2e:c3:5b:ef:bc:1a:45:64:8d:47:
86:b4:38:87:85:b9:20:33:46:5b:ea:89:bd:84:bd:
17:af:e6:eb:56:fd:27:38:9d:68:a4:96:df:8d:a4:
3b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:53:C0:F0:99:1F:7C:D4:EE:32:8F:83:8C:1E:77:A6:49:5B:1E:F5
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/j1PA8JkffNTuMo-DjB53pklbHvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.0.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:10:27:87:5b:9a:9f:40:58:5f:e7:75:fc:8d:67:64:64:ee:
7b:9f:5e:f6:5e:0f:0b:28:aa:b6:3d:9e:9b:1b:d3:b5:b7:cd:
6f:9c:ed:85:b4:b0:01:39:9d:4d:23:4a:e7:19:97:2f:48:31:
f6:2f:7a:9b:da:67:43:3e:15:47:0b:54:82:53:07:70:45:35:
17:22:db:48:d6:f3:d5:b6:f7:d8:f9:81:20:e9:7b:d2:f6:9a:
a5:ee:d7:7f:89:93:4f:52:f2:ff:b2:36:b5:49:ad:94:16:ae:
6e:06:57:4c:db:52:df:e0:6f:0a:0b:7f:25:53:1d:18:ca:ef:
5e:6a:ad:62:af:58:a7:33:83:42:ae:b1:4d:65:9e:ee:89:2c:
75:dc:18:12:81:67:05:b2:e1:90:97:23:a5:5c:0c:ce:de:89:
cf:e2:50:17:03:1d:8b:30:3a:4f:fe:93:fd:68:8c:b0:51:ba:
83:11:c2:94:f9:ef:45:db:44:23:92:d1:02:62:b9:ae:52:14:
9e:1e:ad:06:40:00:83:ef:59:73:02:3b:08:29:2a:f1:b2:bb:
1f:7c:94:91:46:01:30:78:a8:7e:5d:6d:88:ff:37:81:9f:e3:
7c:d7:ec:b5:55:85:7b:d4:83:0d:41:b0:15:e1:0d:71:07:e2:
19:cf:a3:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org