Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/JSj3UaL-LNiG-9-tzPNuTi1-1qk.roa
File: JSj3UaL-LNiG-9-tzPNuTi1-1qk.roa (raw, json)
Hash identifier: QCzy7GMB85xCjCsJ3E5Mlz30cmdGiXitbuQEDA1m+ao=
Subject key identifier: 25:28:F7:51:A2:FE:2C:D8:86:FB:DF:AD:CC:F3:6E:4E:2D:7E:D6:A9
Certificate issuer: /CN=d64065a5415d9942390145f2247901d9364589d7
Certificate serial: 0184083B8F262A24EEA95C820AB57572DEC0
Authority key identifier: D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/JSj3UaL-LNiG-9-tzPNuTi1-1qk.roa
Signing time: Mon 24 Oct 2022 04:23:51 +0000
ROA not before: Mon 24 Oct 2022 04:23:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 135391
IP address blocks: 45.82.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:08:3b:8f:26:2a:24:ee:a9:5c:82:0a:b5:75:72:de:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d64065a5415d9942390145f2247901d9364589d7
Validity
Not Before: Oct 24 04:23:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2528f751a2fe2cd886fbdfadccf36e4e2d7ed6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:01:be:50:86:a4:70:c7:87:6a:65:41:b9:00:
68:7d:ad:46:9f:41:eb:c7:ff:c3:fc:c3:ca:44:8e:
15:e4:13:7c:89:ed:51:58:9e:7c:8a:cb:59:81:17:
aa:ef:47:5b:01:03:06:43:15:23:ea:56:b8:70:e7:
db:c2:bd:e2:ad:12:4b:ae:60:dc:8c:d1:0c:f8:f3:
b4:22:75:46:5a:1f:2e:2f:e4:be:b2:31:34:7a:27:
96:c6:47:f8:4b:68:6a:cf:27:4a:30:74:c1:89:e9:
d4:b3:13:56:c7:51:6e:ad:bd:5c:ad:c2:8b:5b:f5:
8e:c0:04:04:2d:0a:7d:0b:29:b4:a1:b2:38:c6:08:
67:d6:e1:2c:eb:f1:cf:7b:5c:d6:2f:40:9a:14:45:
63:5c:9b:10:88:2b:a3:ca:bd:0d:76:46:fb:79:a9:
b9:45:2a:97:ce:fb:41:48:5b:27:8b:77:ed:04:bd:
88:33:5a:ef:2b:44:a2:f9:ed:35:de:2e:33:e0:f7:
be:9a:45:a8:e9:01:cb:3b:cd:35:e5:4e:27:ed:e8:
68:f8:09:3a:a2:0b:da:58:68:bb:cc:48:64:2b:40:
bc:d6:6e:96:c6:eb:f0:3f:3a:d0:6c:6f:91:0b:be:
cd:cd:c5:fb:1c:d8:53:93:90:1b:44:cd:5f:40:ad:
0a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:28:F7:51:A2:FE:2C:D8:86:FB:DF:AD:CC:F3:6E:4E:2D:7E:D6:A9
X509v3 Authority Key Identifier:
keyid:D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/JSj3UaL-LNiG-9-tzPNuTi1-1qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.242.0/24
Signature Algorithm: sha256WithRSAEncryption
64:bb:89:88:11:f7:4f:57:c9:26:36:0b:11:c2:b7:57:ad:0a:
ef:c7:b1:27:a5:a1:e1:3e:79:f7:f4:17:9b:28:ce:4b:09:a3:
d9:f8:00:74:41:83:72:45:d5:65:1d:72:63:c9:6c:7c:8c:96:
89:f1:a5:bc:ba:18:4f:76:c3:55:14:9d:94:6f:9f:41:8e:c9:
01:60:2e:c6:e7:76:0c:7a:ee:7a:78:23:38:1d:b7:1e:1a:1e:
ed:ac:47:f3:6e:8b:27:73:6f:2e:78:82:47:f1:17:bc:99:29:
31:81:ed:18:41:24:ac:ad:58:e1:42:5b:87:70:58:03:dc:dc:
c9:77:ff:b6:af:f2:bc:c8:fb:1f:eb:26:05:a0:b5:c0:6d:2e:
7c:75:86:74:80:ce:f6:1f:9e:18:e2:95:a5:9c:19:d9:32:81:
22:cd:84:7e:37:ac:4e:fb:0d:2f:8f:6a:7c:4b:5b:68:46:f0:
02:79:70:6b:de:83:8f:66:4c:08:80:2e:18:e8:ea:31:15:f0:
04:09:bf:21:f6:43:6b:4b:48:de:a3:20:ed:af:e1:f7:9b:a6:
91:cb:ff:1e:df:bb:92:ab:7c:1e:de:ed:4c:f0:82:7b:25:e8:
f1:ce:b5:6a:fd:a9:c4:7b:48:b3:f8:4b:9d:aa:d7:48:6b:9a:
15:ad:89:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQIO48mKiTuqVyCCrV1ct7AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NDA2NWE1NDE1ZDk5NDIzOTAxNDVmMjI0NzkwMWQ5MzY0
NTg5ZDcwHhcNMjIxMDI0MDQyMzUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTI4Zjc1MWEyZmUyY2Q4ODZmYmRmYWRjY2YzNmU0ZTJkN2VkNmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogG+UIakcMeHamVBuQBofa1Gn0Hr
x//D/MPKRI4V5BN8ie1RWJ58istZgReq70dbAQMGQxUj6la4cOfbwr3irRJLrmDc
jNEM+PO0InVGWh8uL+S+sjE0eieWxkf4S2hqzydKMHTBienUsxNWx1Furb1crcKL
W/WOwAQELQp9Cym0obI4xghn1uEs6/HPe1zWL0CaFEVjXJsQiCujyr0Ndkb7eam5
RSqXzvtBSFsni3ftBL2IM1rvK0Si+e013i4z4Pe+mkWo6QHLO8015U4n7eho+Ak6
ogvaWGi7zEhkK0C81m6WxuvwPzrQbG+RC77NzcX7HNhTk5AbRM1fQK0KpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUo91Gi/izYhvvfrczzbk4tftapMB8GA1UdIwQY
MBaAFNZAZaVBXZlCOQFF8iR5Adk2RYnXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWtCbHBVRmRtVUk1QVVYeUpIa0IyVFpGaWRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS85YTJkODYtMGY1ZS00NDZiLWFkMjkt
ZjhhZjJkMGFlMjhjLzEvSlNqM1VhTC1MTmlHLTktdHpQTnVUaTEtMXFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS85YTJkODYtMGY1ZS00NDZiLWFkMjktZjhhZjJkMGFlMjhj
LzEvMWtCbHBVRmRtVUk1QVVYeUpIa0IyVFpGaWRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVLyMA0G
CSqGSIb3DQEBCwUAA4IBAQBku4mIEfdPV8kmNgsRwrdXrQrvx7EnpaHhPnn39Beb
KM5LCaPZ+AB0QYNyRdVlHXJjyWx8jJaJ8aW8uhhPdsNVFJ2Ub59BjskBYC7G53YM
eu56eCM4HbceGh7trEfzbosnc28ueIJH8Re8mSkxge0YQSSsrVjhQluHcFgD3NzJ
d/+2r/K8yPsf6yYFoLXAbS58dYZ0gM72H54Y4pWlnBnZMoEizYR+N6xO+w0vj2p8
S1toRvACeXBr3oOPZkwIgC4Y6OoxFfAECb8h9kNrS0jeoyDtr+H3m6aRy/8e37uS
q3we3u1M8IJ7JejxzrVq/anEe0iz+EudqtdIa5oVrYk5
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-ams.rpki-client.org