Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/ZoLUwYVv5OoucJCSF7LDFTbf2_Y.roa
File: ZoLUwYVv5OoucJCSF7LDFTbf2_Y.roa (raw, json)
Hash identifier: pwNpA+5X+5yFtWKxbkFWLnTE10A9VVDUR6+xt49uBmQ=
Subject key identifier: 66:82:D4:C1:85:6F:E4:EA:2E:70:90:92:17:B2:C3:15:36:DF:DB:F6
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 011C257E
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/ZoLUwYVv5OoucJCSF7LDFTbf2_Y.roa
Signing time: Sat 01 Jan 2022 06:03:51 +0000
ROA not before: Sat 01 Jan 2022 06:03:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133736
IP address blocks: 45.132.120.0/22 maxlen: 22
45.88.84.0/22 maxlen: 22
45.82.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18621822 (0x11c257e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 1 06:03:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6682d4c1856fe4ea2e70909217b2c31536dfdbf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8a:74:b5:3e:48:f7:20:12:3a:9b:bb:95:ac:
1b:83:72:10:4e:18:fc:cd:de:76:11:46:5c:8f:8f:
af:e9:ea:1c:3a:1d:50:c7:40:9e:8d:95:63:fa:56:
85:e4:b0:76:3f:4a:65:20:6c:6d:fc:6a:5c:5a:cd:
0e:8d:e7:f9:06:3d:c3:6b:d2:56:37:56:85:b9:4e:
6e:cd:b5:94:cc:49:ec:b0:28:69:b8:a4:91:f9:b9:
6d:37:60:2a:cd:f6:a4:07:cd:d9:ec:c2:4d:db:47:
ca:f9:ab:32:6a:2d:d9:be:7b:6d:9a:91:35:e0:4c:
76:c0:62:30:b7:e4:58:9c:c8:77:04:2c:12:4b:6b:
4e:78:e5:f5:69:06:79:bb:e5:b6:01:3f:d8:84:e4:
96:7e:f2:d2:f2:14:49:d0:b7:dd:1a:a6:25:95:4a:
a6:b4:03:34:82:fa:bd:25:6a:db:74:ff:89:d4:8d:
25:d3:ce:67:b8:ec:22:a6:ee:dc:f3:81:47:6e:9d:
bb:1e:be:de:5c:72:4f:b4:1a:6d:09:64:8a:d0:be:
5d:eb:49:de:b3:02:04:1f:bb:e6:8e:ea:ff:a5:a4:
8d:6f:9f:77:c1:46:4e:38:a6:fa:bc:7e:29:40:91:
e8:cd:a6:c9:02:9a:06:8c:84:b0:23:a5:ea:24:02:
33:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:82:D4:C1:85:6F:E4:EA:2E:70:90:92:17:B2:C3:15:36:DF:DB:F6
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/ZoLUwYVv5OoucJCSF7LDFTbf2_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.4.0/22
45.88.84.0/22
45.132.120.0/22
Signature Algorithm: sha256WithRSAEncryption
27:33:9b:ba:dd:99:a1:72:4b:65:0a:68:6e:30:86:48:80:99:
d4:6c:5f:4e:fe:78:fb:5c:b0:6f:49:26:a6:43:bf:c6:a6:0b:
bc:1e:c6:64:b2:44:7a:ff:ef:40:d8:b3:ec:13:47:89:2e:d4:
36:87:4b:f8:5d:fe:6b:d2:8d:8f:a7:38:00:cd:f2:65:35:3a:
04:7c:65:11:79:7c:67:29:97:81:7d:1d:52:b4:6e:3e:61:56:
f1:68:ea:fd:49:13:e2:33:64:46:0a:a3:b6:ca:49:32:87:96:
4b:b7:1b:8f:c8:96:b2:99:db:27:46:d5:71:cd:83:af:47:7f:
08:f3:f5:ca:4f:8d:53:1a:2c:cc:98:a6:2d:bf:b7:75:9c:b3:
b4:f6:b5:b0:63:d7:e7:f2:ae:a8:6c:06:07:7f:51:9c:8b:1d:
6b:74:aa:fa:cb:87:bf:30:ae:62:fa:4c:d5:c1:c5:9a:f4:e1:
47:aa:7f:a2:a8:9b:65:6d:a6:c3:e3:c2:a2:ea:07:26:87:e6:
02:1b:21:fe:31:94:95:04:9f:91:aa:68:a9:3f:bf:03:17:17:
09:1a:61:4a:6a:19:be:a2:70:1b:e3:91:d1:1c:c4:2d:4b:18:
8a:46:9d:ac:29:ca:fe:72:20:11:9f:f5:49:a9:96:d8:2d:5d:
19:2b:23:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org