Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/zwxfQ9sJgeceZWssFYi0wyeiyL0.roa
File: zwxfQ9sJgeceZWssFYi0wyeiyL0.roa (raw, json)
Hash identifier: pSCBkgZ97TZn/0aYuqzLh+z7wFEfMN4xnxuo0om4C00=
Subject key identifier: CF:0C:5F:43:DB:09:81:E7:1E:65:6B:2C:15:88:B4:C3:27:A2:C8:BD
Certificate issuer: /CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Certificate serial: 0183E82AF163A062D1BB5C3CBF4B9F07A587
Authority key identifier: 0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/zwxfQ9sJgeceZWssFYi0wyeiyL0.roa
Signing time: Mon 17 Oct 2022 22:57:51 +0000
ROA not before: Mon 17 Oct 2022 22:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.95.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e8:2a:f1:63:a0:62:d1:bb:5c:3c:bf:4b:9f:07:a5:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Validity
Not Before: Oct 17 22:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf0c5f43db0981e71e656b2c1588b4c327a2c8bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:72:28:e3:c9:03:09:e6:ce:9b:db:0c:8f:48:
0e:f2:6d:67:c9:51:1c:9b:22:5b:e0:af:3a:9d:3d:
e9:62:42:89:21:6e:be:7d:d3:70:a9:89:d8:dd:39:
57:52:42:a9:92:6c:80:57:11:7e:3e:fb:48:c3:53:
24:0a:02:be:c7:26:ca:1a:5d:44:4b:33:ee:73:1d:
8e:b3:e3:7f:44:48:24:1a:a0:10:cd:27:8c:67:fc:
12:70:ce:e1:8a:61:c0:b5:a7:50:a6:50:f2:62:32:
bf:ee:a2:00:e8:1c:46:37:31:0d:85:3a:56:34:ce:
63:79:90:a6:01:ef:a4:a6:0a:b5:40:3f:72:50:7b:
3d:00:a3:31:4e:f4:19:03:db:ec:a7:86:0e:04:66:
45:2b:ba:9d:55:3c:67:d4:a3:29:99:99:43:3d:fa:
c4:b5:56:92:a2:e6:58:5e:5d:ac:c4:9d:a1:2f:cf:
77:ca:f6:70:b4:96:22:db:18:de:1d:56:cd:5a:9a:
8d:4a:da:e9:d3:93:33:db:46:49:11:46:07:0d:6b:
7b:f1:45:66:89:41:1e:83:cb:2a:9b:88:e2:fa:e4:
ac:c7:0c:a2:63:c6:0b:40:7d:6d:d1:2e:71:aa:f5:
05:e1:0b:45:f8:32:bd:76:e3:37:53:21:9c:2a:e9:
42:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0C:5F:43:DB:09:81:E7:1E:65:6B:2C:15:88:B4:C3:27:A2:C8:BD
X509v3 Authority Key Identifier:
keyid:0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/zwxfQ9sJgeceZWssFYi0wyeiyL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.116.0/22
Signature Algorithm: sha256WithRSAEncryption
23:36:ad:7c:96:14:50:9d:60:f3:2d:c6:60:2c:03:aa:b0:24:
57:28:49:04:19:ac:03:65:15:00:60:57:a6:ea:5f:f4:c7:72:
86:55:a5:78:9a:00:e0:64:5a:79:bc:3b:e9:5f:5a:72:0d:ea:
20:6e:a7:23:0a:cb:e8:4a:5b:59:31:a8:e9:7d:0b:12:74:2c:
dc:76:4b:11:2b:f7:8c:44:32:fb:73:3b:0c:47:13:16:31:10:
1a:63:a2:17:f3:4c:cf:e0:63:63:e2:86:3a:b1:aa:87:7a:89:
f3:49:2d:43:9e:ab:0c:3b:62:96:6b:a6:b6:35:86:5e:c1:5c:
fd:f7:94:de:59:7a:aa:0c:ca:01:e8:10:b8:38:71:d9:3a:07:
82:ae:14:2c:8c:83:08:f8:32:c3:b4:b6:88:8e:54:5d:46:51:
ee:52:0a:34:97:57:89:2e:d8:47:40:5d:cf:c9:fb:c2:1b:62:
b1:5f:13:14:24:de:41:85:56:cc:00:98:34:69:c8:61:0d:5f:
76:ef:fd:76:0b:64:ba:26:a6:55:a4:b7:9f:94:e8:c7:2c:86:
78:17:97:28:78:26:69:26:2a:d9:ea:a2:e0:88:b1:85:40:a0:
2d:da:26:9a:8c:65:fe:cd:a9:6b:c1:56:58:d4:d1:44:f7:3c:
a8:aa:c5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-ams.rpki-client.org