Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/GZyzVhmRO7WG-MltGJWM7UxfAVk.roa
File: GZyzVhmRO7WG-MltGJWM7UxfAVk.roa (raw, json)
Hash identifier: eDxYAIncTKZaFGHSHhbzp41m71tRK6c0Cz4S0+wLeAI=
Subject key identifier: 19:9C:B3:56:19:91:3B:B5:86:F8:C9:6D:18:95:8C:ED:4C:5F:01:59
Certificate issuer: /CN=1086a7c0dea73dd0f94e2e9fe1ac9ab6701b2253
Certificate serial: 01833652A8740414E19E6A3FFFD2A95C83F4
Authority key identifier: 10:86:A7:C0:DE:A7:3D:D0:F9:4E:2E:9F:E1:AC:9A:B6:70:1B:22:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EIanwN6nPdD5Ti6f4ayatnAbIlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/GZyzVhmRO7WG-MltGJWM7UxfAVk.roa
Signing time: Tue 13 Sep 2022 10:08:50 +0000
ROA not before: Tue 13 Sep 2022 10:08:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34934
IP address blocks: 45.152.252.0/24 maxlen: 24
45.152.253.0/24 maxlen: 24
45.152.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:52:a8:74:04:14:e1:9e:6a:3f:ff:d2:a9:5c:83:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1086a7c0dea73dd0f94e2e9fe1ac9ab6701b2253
Validity
Not Before: Sep 13 10:08:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=199cb35619913bb586f8c96d18958ced4c5f0159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:88:98:2c:f6:c8:2b:35:d2:c9:5f:01:21:ff:
6b:24:2b:96:68:57:1c:d4:f9:c7:d0:8d:2e:eb:59:
cb:92:f6:43:8b:9c:e0:99:5d:88:8c:c6:6b:30:d0:
3a:0a:91:e3:bf:a8:22:cb:84:bf:df:92:d2:d0:4f:
0b:12:c0:a0:81:3f:4a:de:cd:65:9a:e7:09:de:97:
f2:2d:b7:91:6d:16:8b:de:26:62:82:c2:94:7a:86:
cd:05:8d:6c:e3:fc:2c:bb:6c:05:0d:6c:53:bd:1c:
93:96:14:22:cf:9a:00:d1:2c:60:ba:93:20:c0:dd:
2b:48:de:c0:73:f7:dd:2b:e9:7c:fd:51:56:7c:0a:
00:97:8e:78:20:22:5a:a9:56:b0:5b:18:da:3d:77:
ff:8c:ac:a1:b0:65:7a:af:62:8d:f3:5c:64:9c:f3:
16:23:de:d5:f6:49:e8:db:17:b0:b8:52:ba:3e:0f:
1d:ca:1d:d8:97:ea:2e:63:04:cd:7c:08:b5:74:ea:
be:82:31:5a:cf:b1:cf:59:20:83:b3:cf:03:b5:ef:
da:4e:b8:9c:75:75:b3:b5:2d:32:f1:10:f1:25:7a:
06:f4:b0:5e:eb:36:ae:90:5c:8c:14:f9:7b:5c:bd:
47:5f:6c:26:c0:25:59:04:8a:a0:72:52:ee:ce:73:
5c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9C:B3:56:19:91:3B:B5:86:F8:C9:6D:18:95:8C:ED:4C:5F:01:59
X509v3 Authority Key Identifier:
keyid:10:86:A7:C0:DE:A7:3D:D0:F9:4E:2E:9F:E1:AC:9A:B6:70:1B:22:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EIanwN6nPdD5Ti6f4ayatnAbIlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/GZyzVhmRO7WG-MltGJWM7UxfAVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/EIanwN6nPdD5Ti6f4ayatnAbIlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.252.0-45.152.254.255
Signature Algorithm: sha256WithRSAEncryption
12:99:a7:ad:ae:22:63:68:47:ee:b7:f0:d3:71:57:17:27:ee:
a9:ab:fd:08:8e:c1:e6:ab:ab:9d:61:83:95:d2:e4:06:89:98:
77:3d:97:45:7f:30:73:f6:92:64:b0:76:96:fe:59:41:0d:ea:
58:3b:e8:f5:ea:ae:4e:7d:02:10:2c:5c:2d:a5:d7:55:e4:91:
6a:25:63:61:65:3c:75:8f:6a:c8:da:1a:e8:1b:13:6f:fd:cf:
93:f0:af:56:ae:c4:0f:ae:0a:0d:d9:2d:d0:bf:6e:f0:fb:5d:
15:42:2c:a9:60:c2:93:b7:d4:48:08:7d:6b:54:fd:97:e0:7e:
2b:32:a2:6e:e4:69:77:16:22:60:11:7c:17:da:c4:db:c0:75:
ca:32:3e:be:fd:0b:20:b5:42:f8:0e:c3:0d:1c:81:81:55:53:
1d:64:f4:8b:ab:d9:6a:1a:8b:ee:13:e4:fb:20:2a:e9:54:f8:
98:75:04:44:5b:c3:79:f7:a0:1a:92:d8:12:95:2a:3e:8f:3c:
ac:5c:7e:7c:b3:95:93:31:db:55:5c:0a:d0:44:09:e8:e1:f3:
f0:ae:18:b0:6b:79:f1:61:c1:71:d1:e3:33:0b:53:9e:90:5b:
f8:4c:f7:9e:d6:90:44:e5:9c:e6:5f:5d:3d:ff:05:a0:6d:c6:
52:93:56:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:16 2024 by rpki-client on console-ams.rpki-client.org