Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/zH-0NdAbjJbFMSDPkDwwp8iXBxg.roa
File: zH-0NdAbjJbFMSDPkDwwp8iXBxg.roa (raw, json)
Hash identifier: cCJBFp7qxVAH2fJKb/w0P9UWzpCGVq+OO7bAP0mUNqo=
Subject key identifier: CC:7F:B4:35:D0:1B:8C:96:C5:31:20:CF:90:3C:30:A7:C8:97:07:18
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 0498038A
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/zH-0NdAbjJbFMSDPkDwwp8iXBxg.roa
Signing time: Wed 25 May 2022 17:07:13 +0000
ROA not before: Wed 25 May 2022 17:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210512
IP address blocks: 45.130.68.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77071242 (0x498038a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: May 25 17:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc7fb435d01b8c96c53120cf903c30a7c8970718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fb:6c:f9:53:3b:fa:36:bf:7c:51:32:3a:09:
ca:26:47:e5:6d:1c:75:ef:84:1b:ff:30:d1:42:3e:
fb:91:47:91:54:d7:31:50:a2:59:1a:a3:74:45:e8:
55:a0:04:80:77:4a:75:94:15:64:aa:d1:50:0e:5b:
b4:38:dd:ce:22:0c:5d:fc:e8:c5:eb:8d:39:bf:a2:
c0:54:78:8f:90:e0:59:a4:97:f4:66:72:5a:29:eb:
63:05:38:16:32:ef:d2:6e:b4:6d:38:5f:75:4e:8d:
e9:23:6e:92:fc:22:a8:8e:ea:7f:7d:62:9e:6d:0d:
04:30:19:13:c0:0e:6e:22:e1:7d:e7:41:50:a1:66:
cd:ba:d1:74:00:68:40:c7:39:2e:b4:7b:7a:f7:aa:
75:61:f9:e3:7d:b6:1c:2e:91:94:4f:9b:8c:f3:04:
ea:30:3b:14:56:e0:73:55:7f:f3:30:2d:3b:ac:34:
94:88:30:0f:92:31:e0:06:40:c9:27:8f:fa:83:45:
5b:72:44:41:74:54:e7:21:ff:5d:61:28:d2:75:46:
d6:2b:7f:81:a3:9c:fb:c8:06:81:89:62:d2:33:3f:
b5:b8:74:56:ba:15:d6:1b:ee:b2:b2:5c:a5:a4:66:
52:d4:4d:ba:49:3e:fa:68:f5:c8:e2:74:f1:f4:6a:
34:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7F:B4:35:D0:1B:8C:96:C5:31:20:CF:90:3C:30:A7:C8:97:07:18
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/zH-0NdAbjJbFMSDPkDwwp8iXBxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.68.0/22
Signature Algorithm: sha256WithRSAEncryption
72:e2:16:b1:9c:0e:9a:48:83:d9:af:95:25:53:c6:65:4f:7e:
08:60:40:21:85:20:e3:cb:49:83:e0:47:28:81:1e:73:0a:c3:
ee:d8:77:03:41:83:7a:48:a2:2c:cd:96:d1:a9:ad:02:ad:2e:
a4:5b:26:df:c0:40:39:45:eb:26:56:52:17:da:ff:9e:84:5b:
16:dc:8d:5b:3b:88:39:7a:37:6a:45:62:f1:e6:78:1c:0c:5e:
39:10:0d:ee:98:cb:82:b8:79:89:a3:c9:42:c0:af:81:ac:16:
e5:2a:78:9e:48:70:ed:a4:b5:22:03:23:ff:ee:6a:5f:ef:48:
66:26:cb:69:9b:a4:d3:ee:c0:be:25:9a:bc:4e:25:2c:7a:16:
41:a2:82:78:d5:f6:4d:03:17:26:aa:1a:5e:c4:ff:2c:68:bf:
7f:3a:fd:5c:af:af:63:79:c1:80:6e:b8:53:c9:4b:dc:d8:48:
1a:35:62:24:38:41:61:b9:ff:48:9e:34:a1:68:84:93:a9:27:
70:be:0e:16:cc:f5:ae:74:97:30:d9:3e:d5:26:7b:12:90:ce:
46:bc:4c:c1:03:48:eb:33:f6:c5:e8:3e:6a:b8:eb:71:f3:c4:
f3:93:57:d2:91:7a:fc:b1:9e:41:74:11:bc:29:66:ed:d1:4e:
2d:92:0c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:11 2023 by rpki-client on console-ams.rpki-client.org