Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/ZaUrosxABAV7Wyf6oANhT-RbRAA.roa
File: ZaUrosxABAV7Wyf6oANhT-RbRAA.roa (raw, json)
Hash identifier: k0WEg+SXGNwfmKvTGWk2/xwi7LVVvmTTlqSa31/dvrY=
Subject key identifier: 65:A5:2B:A2:CC:40:04:05:7B:5B:27:FA:A0:03:61:4F:E4:5B:44:00
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1BE03991
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/ZaUrosxABAV7Wyf6oANhT-RbRAA.roa
Signing time: Fri 01 Jul 2022 08:30:02 +0000
ROA not before: Fri 01 Jul 2022 08:30:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39351
IP address blocks: 45.92.231.0/24 maxlen: 24
45.130.118.0/24 maxlen: 24
2a07:e341::/32 maxlen: 32
2a07:e340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467679633 (0x1be03991)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 1 08:30:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65a52ba2cc4004057b5b27faa003614fe45b4400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6b:90:b9:1d:af:b5:4f:ef:a1:98:e3:45:65:
43:8a:9d:33:25:30:b4:8a:05:b4:62:4d:1f:7a:70:
ea:86:c9:ae:c8:98:5c:8b:90:6b:0f:49:24:c2:83:
2c:ac:a0:98:01:54:0e:63:a8:4d:95:b8:13:80:22:
f6:31:00:d2:27:09:f4:9e:69:49:bc:7b:ed:31:ea:
76:9e:13:3d:70:0d:9b:9e:5b:6e:da:8f:85:4d:e3:
5e:c0:55:87:1b:6e:ab:88:43:33:4e:fb:ec:2f:ab:
da:ec:0b:f8:a8:03:71:4f:d2:30:99:50:61:78:0a:
f6:6f:d9:e1:45:4c:82:24:6f:5a:05:25:23:98:ea:
9c:56:60:32:6c:4b:0b:cc:e9:72:e2:1a:a8:ef:a1:
65:58:6e:17:44:f5:79:e1:b0:18:ad:95:b3:9e:83:
c3:b1:9d:91:f1:c8:75:52:f2:0b:04:f9:1d:cf:ed:
ac:44:91:4a:49:85:57:cc:45:f0:4e:65:14:31:06:
65:5a:cb:6c:19:a2:b9:3c:ed:17:a7:78:8a:b0:01:
37:0b:42:8d:16:40:66:ed:6b:99:94:f6:d5:75:fb:
b4:ad:d5:87:13:a9:2e:03:6a:47:2e:a4:65:9b:d7:
03:f8:0d:e9:62:29:de:b4:72:10:a4:b9:b4:cc:a0:
af:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A5:2B:A2:CC:40:04:05:7B:5B:27:FA:A0:03:61:4F:E4:5B:44:00
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/ZaUrosxABAV7Wyf6oANhT-RbRAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.231.0/24
45.130.118.0/24
IPv6:
2a07:e340::/31
Signature Algorithm: sha256WithRSAEncryption
78:ee:90:1c:37:db:41:17:54:48:6c:b6:b3:cb:a4:10:ba:af:
77:d6:2a:26:91:a1:0c:d2:5f:94:61:bc:46:23:27:3f:5c:f6:
9b:d4:a1:20:c6:d1:74:16:95:0b:a0:64:eb:d3:d9:0d:8a:62:
75:e0:17:8b:a1:1d:a0:4b:c3:5c:30:95:41:07:3a:9b:81:97:
08:ee:2d:68:c4:96:08:e1:d2:a3:64:83:81:26:e0:f7:13:9c:
00:82:65:b5:f7:ff:b1:ce:32:e2:92:1c:0d:a0:22:89:c3:fc:
4f:b5:66:5f:cb:1a:32:07:e3:f2:4a:44:98:2a:e7:2e:e6:a5:
c1:8c:c2:e5:25:2a:0a:56:f6:16:da:aa:b7:9f:a5:94:7d:4c:
f0:b7:79:63:d8:11:79:71:9a:1f:75:2f:dc:f0:ee:a7:46:14:
a7:29:84:26:26:9d:96:92:d9:99:fd:0d:5a:71:af:89:df:1c:
20:f9:f6:8e:ce:41:2a:3b:9a:b3:9d:9e:c6:c2:47:3a:b8:7d:
c6:3c:b8:f4:9b:42:34:83:d7:b2:7f:99:a4:36:09:0c:27:35:
07:6f:32:db:00:31:b5:dc:69:a0:7d:a9:60:59:1c:c7:b5:ec:
07:3d:c4:32:91:c4:46:57:73:a2:52:4f:b7:c2:d5:39:01:eb:
21:56:c2:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org