Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/wwZiO5ApGcfapbVoykPTEkWQmWc.roa
File: wwZiO5ApGcfapbVoykPTEkWQmWc.roa (raw, json)
Hash identifier: Fn9rPav2J1U0CSfV+01C326Ja5IH/FPL3sHF9ikSC5s=
Subject key identifier: C3:06:62:3B:90:29:19:C7:DA:A5:B5:68:CA:43:D3:12:45:90:99:67
Certificate issuer: /CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Certificate serial: 01851B1F535FFC297D2115CDC21B565AF225
Authority key identifier: 6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/wwZiO5ApGcfapbVoykPTEkWQmWc.roa
Signing time: Fri 16 Dec 2022 13:28:35 +0000
ROA not before: Fri 16 Dec 2022 13:28:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.145.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1b:1f:53:5f:fc:29:7d:21:15:cd:c2:1b:56:5a:f2:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Validity
Not Before: Dec 16 13:28:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c306623b902919c7daa5b568ca43d31245909967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:04:42:24:e1:99:4c:53:1d:bc:63:e3:57:32:
de:cc:4d:aa:d9:93:e1:72:69:3c:a4:f1:f8:db:f1:
0a:9d:c6:0d:ed:1d:8a:7a:c8:27:f2:bf:48:7c:ac:
82:19:88:fc:82:a9:f0:d2:31:df:e0:d1:20:5b:5b:
ac:a0:c1:a7:e3:e0:44:31:e2:19:e7:86:85:ed:54:
4d:53:65:05:f9:8d:d0:a1:d8:ff:d3:28:f3:00:89:
15:d7:10:65:2d:8c:42:c9:d9:76:fb:91:53:6d:9f:
6c:2d:de:f4:20:51:a9:ac:a1:70:d7:1b:b0:78:f9:
93:9f:29:12:1e:21:08:83:9f:18:9b:7c:8b:99:9e:
db:7e:01:8d:84:92:74:0c:61:11:14:3d:c1:23:a3:
9d:21:95:f5:48:78:83:a3:61:5f:b3:fd:c7:ce:0d:
8b:36:2f:86:e3:aa:ed:23:38:45:49:07:a9:0d:56:
2d:7d:54:5d:3c:d0:1f:b8:f6:0e:09:af:bf:26:dd:
e9:07:04:aa:11:cd:a9:35:84:d2:56:da:4a:42:e0:
0f:09:39:f2:ad:00:44:c8:be:f0:9a:7d:dc:92:94:
86:04:df:0b:39:a4:ed:63:66:e8:7a:97:e4:a2:ff:
2b:0f:1c:97:13:cf:63:41:9b:13:95:7a:c8:1a:08:
b3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:06:62:3B:90:29:19:C7:DA:A5:B5:68:CA:43:D3:12:45:90:99:67
X509v3 Authority Key Identifier:
keyid:6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/wwZiO5ApGcfapbVoykPTEkWQmWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/ag9YMNvEu6u2gnd-vThD11BInsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.120.0/22
Signature Algorithm: sha256WithRSAEncryption
91:2d:dc:73:b7:c5:2c:52:fa:38:6f:f8:1c:f4:45:70:77:9e:
83:fe:fe:d4:a5:c1:fe:7a:b0:5c:26:29:5a:56:23:68:8f:36:
6e:e6:cc:33:15:f2:62:45:3c:da:e1:aa:9b:12:4d:55:12:00:
ff:24:48:56:4e:81:12:1b:1f:81:20:93:19:09:ff:bc:fb:dc:
5e:e9:66:ba:90:e4:bb:ee:30:85:de:8f:7e:c9:7d:b7:19:d5:
a5:cb:ae:36:7c:7c:76:ff:c9:76:ac:f9:0e:c0:2d:4f:2a:8d:
a0:e3:15:e8:c3:bb:91:11:22:08:08:18:4b:fe:a6:a0:ce:7f:
9d:cf:6a:cf:3d:6f:3d:41:66:2e:6e:0a:2f:dd:95:07:db:cb:
26:f4:35:10:d0:e6:0c:a9:7f:56:f1:fa:cb:f7:c9:1c:04:82:
42:29:31:a5:52:13:4e:25:e1:32:67:e1:41:71:58:6b:5e:8e:
ca:1f:bb:a7:c5:de:80:cc:42:95:42:76:ac:09:01:4b:6d:a6:
84:d3:89:73:d5:3a:53:0c:56:ee:f4:9a:ef:37:d2:57:c9:e0:
45:bb:7b:03:65:c0:3a:0f:63:a4:41:ca:8f:82:be:8f:7e:5c:
4b:9e:1e:79:28:60:c8:94:ce:e7:82:34:85:71:10:28:4b:5a:
39:eb:cb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:07 2023 by rpki-client on console-ams.rpki-client.org