Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/jvuSNTlYwaR5M3Zt76eeduOOPqg.roa
File: jvuSNTlYwaR5M3Zt76eeduOOPqg.roa (raw, json)
Hash identifier: gIgYLN3f+/hk+ZsNWNH+SNfKC/hiLKBSSIxB9jt05UE=
Subject key identifier: 8E:FB:92:35:39:58:C1:A4:79:33:76:6D:EF:A7:9E:76:E3:8E:3E:A8
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 03E80D59
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/jvuSNTlYwaR5M3Zt76eeduOOPqg.roa
Signing time: Sat 01 Jan 2022 01:58:56 +0000
ROA not before: Sat 01 Jan 2022 01:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208989
IP address blocks: 45.12.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65539417 (0x3e80d59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Jan 1 01:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8efb92353958c1a47933766defa79e76e38e3ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:26:db:39:be:a3:d7:45:b8:5c:2c:79:c3:
ac:b8:85:85:f6:b0:d1:81:d1:70:e1:db:02:77:92:
c5:e7:88:1d:9f:3d:cd:a9:6c:c2:ef:48:bf:eb:0b:
d6:78:b2:ff:ec:0b:f3:2e:59:95:75:59:ba:c1:c9:
83:a8:42:6a:a4:39:b0:05:6e:5c:6e:cc:bd:f2:d2:
49:40:24:67:a1:91:bc:01:78:cf:23:44:43:e2:26:
ed:2d:bd:d3:21:42:d6:78:cd:0d:1e:da:ed:34:e0:
46:06:5b:68:5c:3b:50:d6:68:f4:a2:63:41:b1:20:
33:1b:3a:d0:a4:67:c3:e4:e7:b6:82:34:42:48:4d:
22:c0:ec:ee:26:a4:e5:a8:5c:b8:49:46:f6:5f:b1:
a5:7b:01:1c:5a:67:86:23:69:7d:f0:98:0a:02:1b:
94:1c:5a:4c:40:c8:c7:62:30:d3:2d:89:99:69:9a:
33:75:50:2a:d7:7e:be:7a:fa:62:fd:b9:a3:e1:0a:
1b:bf:05:04:d1:11:cd:1e:ea:28:26:57:e1:f0:1f:
d4:5f:f8:4f:60:07:ba:ab:e4:fb:1a:6e:f9:1f:a9:
d8:29:28:3c:88:16:3c:ae:91:b3:b1:eb:4b:18:d4:
a4:a9:ea:cd:15:26:51:79:c1:14:53:15:00:30:01:
a3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FB:92:35:39:58:C1:A4:79:33:76:6D:EF:A7:9E:76:E3:8E:3E:A8
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/jvuSNTlYwaR5M3Zt76eeduOOPqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.8.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:ee:2b:56:d9:e3:7d:e5:70:26:40:0d:fa:bc:2a:3f:bc:c0:
b4:4c:2b:91:9f:a7:07:0e:4b:ff:36:a8:79:30:4b:ca:5c:df:
9b:a1:97:2f:d0:cd:a7:ec:94:86:6e:7e:16:ed:7b:d4:d7:73:
a0:f5:63:e4:fa:44:24:d7:64:5a:e0:dd:30:67:8e:6a:e3:89:
1e:f8:3b:c9:60:99:76:ad:f0:1e:a1:20:04:5a:b8:85:47:8f:
bd:84:ae:dc:b4:61:42:9b:8b:5b:72:59:0b:53:d3:1c:46:91:
9c:a7:ce:58:5a:cd:d6:9b:fe:c5:15:62:17:dd:c9:82:e0:fb:
39:86:6a:6c:2a:3c:6e:a7:b2:40:7b:43:45:eb:4d:fd:b9:05:
dc:34:0a:8a:26:c9:71:af:34:a5:90:2a:87:8a:46:ed:58:f4:
b6:4b:05:22:03:dc:9d:b0:44:77:cc:08:b4:83:44:a2:15:24:
8a:ea:74:1c:e6:c8:a7:60:94:db:32:ba:51:37:9c:05:07:1b:
c4:61:1e:54:c5:42:98:4f:52:17:09:d6:ae:c5:0f:8f:da:46:
a7:00:ab:02:69:70:78:db:7a:af:b0:f9:05:62:ea:6d:33:c4:
d9:3b:18:6a:00:c5:da:51:6c:13:c2:b4:db:53:33:e9:33:7a:
1d:66:a8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net