Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/jqK_EPENO7Ie9Bqt5ZcBwDHH1hY.roa
File: jqK_EPENO7Ie9Bqt5ZcBwDHH1hY.roa (raw, json)
Hash identifier: es6pJ6liEdJbkZf+UCUYMX/pKA86DM0KT4BU6yPjylg=
Subject key identifier: 8E:A2:BF:10:F1:0D:3B:B2:1E:F4:1A:AD:E5:97:01:C0:31:C7:D6:16
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 03189B60
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/jqK_EPENO7Ie9Bqt5ZcBwDHH1hY.roa
Signing time: Sat 01 Jan 2022 06:54:18 +0000
ROA not before: Sat 01 Jan 2022 06:54:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35297
IP address blocks: 45.157.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51944288 (0x3189b60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Jan 1 06:54:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ea2bf10f10d3bb21ef41aade59701c031c7d616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:44:c2:2c:61:84:e5:98:5f:f6:d5:26:2c:
4d:9a:22:cf:b2:9d:7b:3b:39:12:36:ff:ea:69:66:
13:20:91:c8:35:dd:28:13:32:8c:6c:49:af:a6:3f:
c3:ab:2d:b2:0b:6c:a3:16:6f:b4:f8:19:96:aa:ba:
7d:a0:76:73:ea:a8:62:ea:d4:86:9e:10:c4:a1:47:
e0:4f:fc:13:c8:0d:46:b4:1a:5b:97:52:18:f9:a6:
5e:30:5f:cd:2d:c6:22:f4:b4:05:d7:7e:43:a0:83:
2c:56:59:22:23:e5:1d:bc:70:6b:98:f4:94:48:5e:
2e:73:17:2e:b1:2a:61:5e:33:a0:14:0d:0d:6d:9d:
b0:8a:f6:d0:68:01:80:42:23:50:67:d8:2f:15:ef:
d8:cf:f5:93:7c:e3:65:11:39:7c:1e:4c:c8:82:7b:
92:0f:0f:ac:01:0d:8f:3d:d0:03:1e:9b:a0:89:22:
f5:f7:06:70:52:0f:e7:9b:09:bf:dc:df:81:f0:2f:
bd:6b:0d:2a:89:70:da:7a:76:41:20:90:b7:52:b5:
8f:6e:01:b4:fc:f9:aa:04:24:52:51:a5:08:f4:91:
df:d9:d2:ac:45:a3:90:af:94:ce:35:d0:e6:21:b3:
8a:62:a9:60:28:04:5a:ab:00:6c:8a:78:57:06:ab:
d2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A2:BF:10:F1:0D:3B:B2:1E:F4:1A:AD:E5:97:01:C0:31:C7:D6:16
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/jqK_EPENO7Ie9Bqt5ZcBwDHH1hY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.204.0/22
Signature Algorithm: sha256WithRSAEncryption
31:eb:d6:7e:7a:cd:cd:dd:c0:f9:a5:2e:0d:62:e7:e0:a1:eb:
1c:8f:b2:70:3f:03:84:06:e3:94:ac:5c:2a:a5:87:bf:1f:86:
3a:21:47:9a:14:33:33:9f:bd:a5:18:8d:30:4e:2d:33:73:a4:
92:e7:dc:4f:7d:e2:63:d1:57:bf:a1:82:77:93:7e:39:12:c6:
c9:63:6e:c8:ff:68:c7:cc:86:6d:9f:29:9d:0f:c5:12:b7:26:
c9:c2:98:8c:6c:66:69:c6:66:b1:1d:04:ba:cf:ff:fc:5e:c9:
77:6c:71:2f:ee:8d:f9:38:90:63:3f:19:bb:16:8d:97:04:8b:
b3:3c:aa:4b:82:b5:ce:af:aa:41:1e:e0:4f:72:ab:76:83:6e:
dd:25:97:5c:28:83:c9:0d:10:e0:81:f1:58:43:57:c4:44:1a:
8c:5a:18:46:01:32:43:f8:5c:62:d8:cf:c6:26:70:a5:09:40:
1e:91:48:28:01:dd:57:4b:b6:bb:c2:0e:e4:52:e4:01:55:f5:
92:6a:9a:c5:73:83:bc:66:2d:ec:39:b0:93:53:bd:8f:74:0f:
a9:8d:36:5a:5d:1c:fa:ae:ce:61:88:28:f5:aa:25:96:06:32:
68:7e:b4:b1:2f:c2:18:d2:a9:3f:be:2b:37:d2:76:7e:ac:db:
57:d7:f0:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:57 2023 by rpki-client on console.sobornost.net