Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dzp59AcdN1ZVZDbQXOgPg1dJTfk.roa
File: dzp59AcdN1ZVZDbQXOgPg1dJTfk.roa (raw, json)
Hash identifier: c1v1eq2HoyzxYZd5KB8UmJc9sKkF70i7khbM5pYlZv8=
Subject key identifier: 77:3A:79:F4:07:1D:37:56:55:64:36:D0:5C:E8:0F:83:57:49:4D:F9
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4865F508
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dzp59AcdN1ZVZDbQXOgPg1dJTfk.roa
Signing time: Sat 01 Jan 2022 03:00:27 +0000
ROA not before: Sat 01 Jan 2022 03:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45054
IP address blocks: 46.161.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214641416 (0x4865f508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=773a79f4071d3756556436d05ce80f8357494df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d0:ce:aa:d6:ef:76:11:55:4b:6d:48:6c:15:
bb:b8:c4:83:7f:c2:a0:dd:6d:60:a6:a8:af:1b:e9:
18:7d:e8:61:50:38:63:52:f3:27:ab:11:a4:67:59:
f4:cc:90:e7:ee:27:a8:d1:d0:49:d3:49:5d:b1:57:
91:11:b5:b3:53:04:29:09:d8:f9:7b:bb:ed:fc:b5:
d5:bf:a1:4c:f3:d8:75:33:76:a0:95:11:d9:42:8a:
24:69:d1:07:cc:7c:63:8e:17:70:0d:b1:fc:9d:c7:
87:91:5d:b7:ec:5e:e6:cd:20:42:9f:62:c7:64:ec:
ba:68:54:6d:7c:d5:83:47:47:a4:af:78:4d:19:53:
b3:2d:56:9d:12:16:98:fa:26:a9:47:dd:2e:9c:37:
f4:a7:2e:27:28:03:3c:a4:60:46:6f:25:f2:d0:7b:
ba:61:4f:0a:df:fd:83:54:69:cc:d5:06:cf:b5:71:
9d:f8:14:ea:13:4c:18:c0:5a:cb:89:dc:99:b1:69:
a8:9a:a8:4c:67:66:ba:fb:4e:ef:67:54:ac:e2:b6:
02:c5:b0:4c:4b:91:46:20:de:ea:a7:67:71:67:7c:
20:ab:0b:36:78:64:d3:81:ef:52:c4:79:57:18:31:
fb:dd:3e:66:27:82:7d:a7:5f:ac:3c:96:0d:3e:d9:
8c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3A:79:F4:07:1D:37:56:55:64:36:D0:5C:E8:0F:83:57:49:4D:F9
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dzp59AcdN1ZVZDbQXOgPg1dJTfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.16.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:0b:bd:eb:3d:3a:5e:95:a8:b4:97:ab:1c:36:a4:7f:8e:37:
88:de:73:0c:38:d3:52:a4:3a:b9:02:91:8a:13:19:a2:43:0e:
90:2d:b6:75:28:1b:93:dd:1c:9f:83:c0:ff:88:f6:16:ac:37:
3b:01:dd:9e:68:6f:78:fa:b3:0f:b9:99:74:b9:f6:f5:11:5d:
1d:1f:3d:4b:37:c7:cd:48:f4:ca:01:c6:01:3d:62:41:a4:30:
75:98:d2:88:78:b0:be:34:b5:20:9a:f6:0a:33:2a:0f:48:5c:
4a:b0:fe:02:95:e9:31:1a:89:dd:51:ba:e4:9a:68:9d:e2:fa:
51:7d:93:2b:56:a9:58:e0:f1:50:45:75:46:fc:3a:9f:3d:ae:
56:b0:57:21:3b:8b:1c:a4:54:63:ca:a0:83:a7:27:e3:04:48:
80:bc:73:6e:15:38:af:7e:bf:7b:51:fe:4f:40:de:8f:37:b8:
86:d6:7d:9b:55:89:89:f8:20:22:61:32:ad:ce:49:b1:07:2f:
fd:ff:a9:80:c7:d0:ed:b7:3a:c7:a1:90:e0:3c:a7:08:23:09:
12:33:c1:7a:82:61:67:48:d4:04:aa:a3:c6:83:f5:bb:e1:4b:
35:26:31:c3:ac:c1:5e:99:1d:42:28:c7:fa:9a:ba:53:01:61:
61:b4:f5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org