Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/jZFsJfbg3_TxFwLWfBNWfHchQKY.roa
File: jZFsJfbg3_TxFwLWfBNWfHchQKY.roa (raw, json)
Hash identifier: PFvAfxBC+/+q1a+NLr+PN/o4rj7kvAH5XsXpc0QX1HE=
Subject key identifier: 8D:91:6C:25:F6:E0:DF:F4:F1:17:02:D6:7C:13:56:7C:77:21:40:A6
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 01150B87
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/jZFsJfbg3_TxFwLWfBNWfHchQKY.roa
Signing time: Thu 12 May 2022 06:03:02 +0000
ROA not before: Thu 12 May 2022 06:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 45.156.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18156423 (0x1150b87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 12 06:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d916c25f6e0dff4f11702d67c13567c772140a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:73:49:9c:0d:c9:4a:a8:e9:1f:cd:a0:b8:10:
6c:f2:7c:4a:61:4f:f5:d4:3a:2b:5b:9e:39:84:7c:
58:f2:05:f6:69:8a:16:d8:7b:4c:69:64:2a:bf:5c:
fd:26:6c:d9:32:f0:d3:13:eb:55:14:0c:a4:79:3d:
db:5a:e8:cd:45:b9:39:66:4f:fe:8a:11:c6:6c:2f:
d3:dd:fd:d9:81:8d:a0:1b:c0:87:ea:42:95:c1:ca:
69:d2:2a:88:98:03:a4:13:58:f3:86:f9:d0:19:06:
1e:d0:c4:52:f0:71:fb:52:b6:28:4a:db:87:e7:fd:
37:2f:a5:12:fb:a0:d9:be:c2:4a:e9:a0:68:c8:60:
d0:10:ae:33:fc:b4:6c:03:a8:ad:94:79:54:47:d8:
6c:13:63:13:64:ae:40:e8:0e:73:c5:6e:04:3c:d7:
53:36:7d:aa:6c:db:02:7d:e3:05:53:b8:fb:10:e9:
3c:2d:08:56:be:48:78:7c:ea:35:11:18:84:87:8d:
3c:b2:f5:d3:20:aa:b2:d3:7c:84:62:de:43:ae:1d:
ca:6a:5e:b6:bb:1a:12:c4:1c:bc:b4:03:d2:43:7a:
dd:cb:bf:1b:0f:9c:ab:11:13:b1:cc:fe:7c:5d:1e:
aa:1c:2a:fa:a2:37:53:83:bd:0e:2d:80:29:ae:8d:
61:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:91:6C:25:F6:E0:DF:F4:F1:17:02:D6:7C:13:56:7C:77:21:40:A6
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/jZFsJfbg3_TxFwLWfBNWfHchQKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.147.0/24
Signature Algorithm: sha256WithRSAEncryption
14:a0:da:00:a4:eb:2b:4f:15:56:0a:e1:87:20:42:7b:5e:29:
52:d5:62:4f:d2:9b:17:78:38:b3:5e:60:c2:57:90:f4:86:a1:
62:4a:40:94:c0:1c:dc:a1:26:3c:b4:bc:2a:96:ea:91:58:64:
05:d9:db:ac:70:f9:cb:d5:61:24:37:50:1d:f2:89:5d:a7:48:
8b:8c:91:1e:9c:d4:b8:75:f7:60:67:50:f1:2f:f0:c6:ce:57:
6b:c2:bc:5c:87:3f:6b:6e:b8:1a:4e:4e:10:fa:2b:01:1f:35:
f3:47:c7:24:2c:48:7a:a1:53:22:cf:99:eb:b4:9b:ff:79:b0:
60:a4:ca:d7:b8:b5:d3:f5:d2:24:13:f3:99:92:de:bb:17:a9:
f5:a9:31:1c:cc:61:f6:5e:db:e7:a5:81:d1:a9:ef:7c:01:de:
f8:6a:c6:b0:f3:4d:f7:21:1b:8c:1e:da:68:6e:d4:b0:4b:f7:
4e:b9:13:ec:c2:82:01:da:8d:a4:cb:98:ca:70:b5:47:b0:08:
0e:78:84:c2:af:41:f1:9b:89:08:ff:d5:14:66:dd:db:f6:73:
92:81:71:8b:0c:03:6b:84:09:ca:b1:94:5c:1e:da:4d:57:5e:
43:63:53:c9:d1:88:81:27:75:2a:d0:92:84:16:4f:c6:09:58:
22:82:73:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org