Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/JaChgJxNJxfP8L0fyd3nnT2UGxU.roa
File: JaChgJxNJxfP8L0fyd3nnT2UGxU.roa (raw, json)
Hash identifier: ssDRDUyOsp/a+E1NYsIbJtQCBAKzJroSCpDH0HX7i+s=
Subject key identifier: 25:A0:A1:80:9C:4D:27:17:CF:F0:BD:1F:C9:DD:E7:9D:3D:94:1B:15
Certificate issuer: /CN=6832c32d2259013991260d530d9120031aaefcd0
Certificate serial: 0182C9565A7D1C34567922A14338753832EF
Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/JaChgJxNJxfP8L0fyd3nnT2UGxU.roa
Signing time: Tue 23 Aug 2022 06:14:15 +0000
ROA not before: Tue 23 Aug 2022 06:14:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 145.46.192.0/18 maxlen: 18
145.46.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c9:56:5a:7d:1c:34:56:79:22:a1:43:38:75:38:32:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0
Validity
Not Before: Aug 23 06:14:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25a0a1809c4d2717cff0bd1fc9dde79d3d941b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b0:5d:d0:9e:a3:51:81:e9:40:d9:f6:e1:12:
42:bb:56:96:71:4a:1a:76:ac:b7:c9:c1:7e:49:49:
1b:7a:af:bd:63:dd:78:9a:3f:2a:c0:ab:5a:ec:2e:
9c:a1:62:20:3c:f3:11:b7:ed:4d:b0:35:e1:5d:25:
a1:26:04:cb:c3:8a:37:46:3b:94:f3:86:34:76:34:
44:33:18:3d:f6:65:a9:1d:2e:ee:a4:7b:56:a8:d3:
fb:50:d0:2f:4f:2d:00:d5:a1:4a:c4:62:f4:62:66:
ce:1f:f2:e4:bc:ad:d1:bf:21:8a:de:1e:cb:61:b3:
f1:68:9d:e7:68:32:ba:86:f2:d1:0d:5a:23:aa:fe:
34:8c:b5:95:67:8e:66:0c:1e:fd:e3:a8:90:d9:83:
cb:28:28:26:4e:b6:05:fd:2b:b6:97:d7:51:4f:3a:
ce:2b:29:4b:95:20:aa:79:18:6b:dc:7b:37:93:24:
6e:98:43:29:cf:4f:b6:f5:fe:e9:85:c2:ba:e9:37:
a7:3a:73:13:5d:01:c4:35:fa:aa:cb:42:bb:66:ed:
7b:6c:7b:34:38:f1:bd:06:d7:3c:56:3f:81:f6:f7:
7d:3c:b7:4c:3b:57:7e:f7:df:75:30:5f:e4:59:ec:
3d:06:47:2d:6d:15:64:d6:5e:74:19:86:77:ca:89:
10:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A0:A1:80:9C:4D:27:17:CF:F0:BD:1F:C9:DD:E7:9D:3D:94:1B:15
X509v3 Authority Key Identifier:
keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/JaChgJxNJxfP8L0fyd3nnT2UGxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.46.128.0/17
Signature Algorithm: sha256WithRSAEncryption
78:f2:c1:ce:9b:ff:b9:17:9c:ee:6f:ae:45:2e:08:ab:80:03:
ae:a7:1b:f4:cb:23:5b:d8:f6:ed:65:8e:82:36:50:cb:c4:30:
92:38:4f:75:d4:16:7b:d4:58:4d:f6:3f:45:32:83:07:cb:90:
8f:93:be:e7:20:ad:a8:66:4b:47:e7:53:8c:c9:62:f3:42:71:
dd:d2:be:77:42:d8:8f:41:c3:d0:04:89:9a:df:d2:72:e9:3b:
f0:da:f7:3f:94:a2:1a:6f:2f:4d:f7:12:4a:93:7a:e6:f5:77:
ec:5e:c0:af:3b:b3:c0:61:42:83:64:e4:70:b7:67:11:82:ed:
d6:53:2e:fc:23:fa:5f:66:ac:99:99:a2:1d:11:e3:c3:b6:bb:
33:4d:e5:52:b9:a7:ec:74:77:bb:f5:bf:a0:16:1f:4a:9d:1f:
75:a9:a3:87:38:79:c6:37:fa:0d:97:e7:dd:b9:f6:19:94:24:
82:15:53:fb:8c:14:d8:b9:cc:58:90:6c:12:5c:e7:2e:4c:aa:
98:28:47:9a:3b:3b:5b:17:e9:58:f3:64:00:8a:6a:d7:bd:65:
a3:f8:65:98:00:5a:30:bf:8c:3e:54:42:52:12:3d:61:36:4e:
96:39:d3:18:39:5b:a3:11:ec:ce:cc:66:48:76:40:ab:9b:1d:
5e:58:02:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:31 2023 by rpki-client on console-fra.rpki-client.org