Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/CZf5Tzu1LKM_agIaProHD2KiPm0.roa
File: CZf5Tzu1LKM_agIaProHD2KiPm0.roa (raw, json)
Hash identifier: oNtgneE3TJqWtrzAO2VWrxARgTsuUB+UXjb+VDiumRQ=
Subject key identifier: 09:97:F9:4F:3B:B5:2C:A3:3F:6A:02:1A:3E:BA:07:0F:62:A2:3E:6D
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01822C6DB490D913A7D4CBCA948572F8B7E7
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/CZf5Tzu1LKM_agIaProHD2KiPm0.roa
Signing time: Sat 23 Jul 2022 18:59:23 +0000
ROA not before: Sat 23 Jul 2022 18:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204968
IP address blocks: 45.133.104.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2c:6d:b4:90:d9:13:a7:d4:cb:ca:94:85:72:f8:b7:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jul 23 18:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0997f94f3bb52ca33f6a021a3eba070f62a23e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:d4:f9:f0:69:aa:a4:c0:1e:b1:84:62:0f:
e9:79:ff:9b:56:79:7a:ec:c3:d3:ff:8b:88:be:0b:
fc:ff:0c:b5:ea:b1:28:f4:8f:6a:62:04:84:3a:54:
cf:03:11:5e:1a:30:35:89:c8:78:39:b1:cf:8a:64:
f9:c3:ee:86:81:88:a9:b4:c8:38:bb:10:3f:95:2a:
ad:55:fe:a6:eb:c3:96:7a:79:22:a3:da:a0:61:8d:
34:d2:75:1a:9a:81:ad:cb:1b:5a:41:2e:32:29:f1:
c9:95:81:74:b9:6b:4d:7e:18:bb:42:15:a8:3c:11:
68:04:f1:1d:b9:32:32:f4:57:62:24:ea:ea:6f:0c:
82:35:70:b2:c6:24:c3:01:5f:b7:dd:b8:31:b6:ac:
3c:89:bd:91:92:c0:81:33:11:c1:0b:c3:98:d9:8f:
19:87:93:df:0c:98:43:11:e1:29:1a:30:bb:bb:44:
92:d7:a9:ee:9c:62:15:e7:51:63:4e:2c:4b:0d:84:
bd:2e:94:d0:bd:f0:36:9e:a6:c2:88:54:26:0a:21:
c0:95:16:a2:23:ae:cc:b5:2b:a4:b8:2d:44:35:1d:
02:a1:e5:c6:eb:b1:e1:df:97:a9:b7:12:bc:10:5f:
59:aa:1b:82:bd:e0:31:c4:7f:b1:02:c8:49:02:c5:
3d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:97:F9:4F:3B:B5:2C:A3:3F:6A:02:1A:3E:BA:07:0F:62:A2:3E:6D
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/CZf5Tzu1LKM_agIaProHD2KiPm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.104.0/23
Signature Algorithm: sha256WithRSAEncryption
37:44:b1:f8:b8:a6:d2:e5:8a:57:d7:b8:5a:ea:3d:93:26:86:
69:be:a5:e8:71:b6:f2:7f:28:19:1d:df:7e:76:c2:1f:5e:6a:
77:cd:cf:c0:75:3c:63:73:1d:9a:69:3f:f1:27:b9:e0:c9:8b:
38:4d:89:4f:b5:61:72:89:58:6c:5c:90:72:d3:06:39:29:8a:
d8:30:18:84:d4:ab:ad:e5:c3:9d:31:1a:12:60:03:cb:4f:66:
eb:01:a3:94:38:0e:19:27:1d:e5:4e:d6:5f:47:08:58:22:b9:
f1:5a:ea:cc:6e:40:79:2d:84:da:54:46:b5:70:f5:d6:6b:19:
a2:19:63:cc:84:21:58:f6:3c:54:47:d4:4c:5d:64:25:73:bb:
c3:71:2a:5a:85:ea:e6:08:b0:6a:02:e0:b8:21:8d:9e:5f:36:
20:c7:f7:62:bd:31:7b:74:ec:6b:30:4f:2a:76:e2:ce:5c:12:
bd:02:c4:bf:f6:44:e0:40:e2:3e:39:cf:fb:76:7e:7e:5f:ad:
69:e2:3e:1c:41:11:4e:81:7e:79:05:c9:4e:2f:4a:d1:8f:48:
c8:36:b3:84:a0:4d:69:6d:23:f7:dd:c7:e7:32:06:62:8d:32:
5e:24:ab:f6:a8:1c:73:23:c1:a6:fa:4c:85:4c:25:41:4b:5f:
ec:25:36:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:23 2023 by rpki-client on console-ams.rpki-client.org