Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/eN4zLOILBSV9n7Ys83qderN_sE8.roa
File: eN4zLOILBSV9n7Ys83qderN_sE8.roa (raw, json)
Hash identifier: VBtTJ5RVNDqOU04KiWIdocPgGK3jhLBK3t58fBb+t8k=
Subject key identifier: 78:DE:33:2C:E2:0B:05:25:7D:9F:B6:2C:F3:7A:9D:7A:B3:7F:B0:4F
Certificate issuer: /CN=64f906653fb6732a556ad35528d1d5938d1b0e98
Certificate serial: 1871B748
Authority key identifier: 64:F9:06:65:3F:B6:73:2A:55:6A:D3:55:28:D1:D5:93:8D:1B:0E:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPkGZT-2cypVatNVKNHVk40bDpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/eN4zLOILBSV9n7Ys83qderN_sE8.roa
Signing time: Thu 03 Feb 2022 22:41:24 +0000
ROA not before: Thu 03 Feb 2022 22:41:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208055
IP address blocks: 45.133.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410105672 (0x1871b748)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64f906653fb6732a556ad35528d1d5938d1b0e98
Validity
Not Before: Feb 3 22:41:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78de332ce20b05257d9fb62cf37a9d7ab37fb04f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a8:06:cb:0c:6e:4d:db:17:da:50:c4:e9:a1:
ec:05:4b:de:30:c4:58:ff:d7:9f:e2:a8:1f:4a:cf:
54:78:3d:a1:60:65:d1:6a:a3:2d:a1:61:de:bc:2b:
87:d0:7c:fa:34:c2:16:87:a3:54:10:88:de:d1:96:
44:e0:10:d3:e4:1a:03:bd:3a:dd:1c:50:8f:38:28:
97:d2:37:08:0c:65:57:c1:7b:14:73:91:00:92:f6:
c5:3c:4a:52:ae:47:65:0c:42:40:e3:55:f9:96:7d:
93:63:7f:6b:9f:fb:55:28:5a:c7:45:3b:1a:a8:34:
da:32:c8:98:56:3e:d0:8d:dd:a7:5f:32:d2:58:19:
31:82:2a:3f:f2:93:40:1b:af:20:54:cd:d9:02:39:
dc:ce:08:f4:a4:c2:e2:b5:83:93:f4:1f:ae:2d:0f:
b9:c7:43:55:fc:1f:39:e5:d4:f9:fc:95:03:03:8d:
6b:86:58:be:ff:ff:32:a6:48:46:44:6f:9a:9d:4a:
86:2e:2b:2b:57:3b:b3:c8:08:0d:64:ed:38:09:8f:
02:9f:7a:85:69:72:71:a1:c5:b4:40:29:19:62:50:
52:7a:13:c7:e6:47:15:f4:4c:40:69:75:9d:5e:5f:
79:aa:ac:1d:a5:cc:22:04:d3:5c:4f:51:e0:49:a1:
84:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:DE:33:2C:E2:0B:05:25:7D:9F:B6:2C:F3:7A:9D:7A:B3:7F:B0:4F
X509v3 Authority Key Identifier:
keyid:64:F9:06:65:3F:B6:73:2A:55:6A:D3:55:28:D1:D5:93:8D:1B:0E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPkGZT-2cypVatNVKNHVk40bDpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/eN4zLOILBSV9n7Ys83qderN_sE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/ZPkGZT-2cypVatNVKNHVk40bDpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.160.0/22
Signature Algorithm: sha256WithRSAEncryption
46:5d:80:e4:33:0a:d6:ec:8d:4e:71:f6:43:c0:54:b9:27:c0:
18:1a:65:16:ef:6d:9a:97:3c:23:c8:d5:76:2b:c9:96:b5:a1:
c9:d4:3f:3c:cd:f8:bd:88:23:7c:22:02:f7:7c:4b:4c:53:2c:
69:11:2d:6a:e3:55:12:9e:4b:2c:44:55:b0:f7:6c:80:da:8c:
39:0c:09:bf:ef:ee:6b:73:7d:24:60:3f:db:67:c0:6f:7b:a3:
14:8c:9f:54:e6:41:13:5d:f6:cf:98:5b:04:ec:7a:53:df:ca:
65:8a:d0:96:0b:a2:86:cf:fc:a2:06:ce:92:4e:ef:fc:8a:9c:
65:6f:6c:79:a0:13:f1:ec:2c:70:08:b7:a5:e9:c7:ca:f3:c3:
cb:ae:8f:c6:41:50:56:23:95:a8:87:cd:72:fd:a1:f9:0d:07:
90:28:25:e5:b2:33:02:17:a4:ae:d4:cb:5d:c0:dd:11:8b:96:
6e:90:d4:cf:3d:3b:c2:fd:c1:70:97:40:41:e8:6a:cc:92:d6:
f4:4c:cb:ca:3a:18:f4:49:52:89:2c:b7:67:bb:8a:e5:8a:87:
18:78:de:49:1f:46:2d:d1:fe:7b:72:88:c6:11:b5:d4:2f:e5:
78:2b:f6:12:cb:74:79:d0:bd:71:22:7f:ff:4c:34:44:f7:ae:
56:a2:9c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:25 2023 by rpki-client on console-fra.rpki-client.org