Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/amJ-strUT3NGa1h-r8zlQgJsebU.roa
File: amJ-strUT3NGa1h-r8zlQgJsebU.roa (raw, json)
Hash identifier: uuzCm3DADENxMuOYlMZGqZl4Q0fyvpO0KF2pFChsnMo=
Subject key identifier: 6A:62:7E:B2:DA:D4:4F:73:46:6B:58:7E:AF:CC:E5:42:02:6C:79:B5
Certificate issuer: /CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Certificate serial: 0183F468CB0B558595327150DD35468703FC
Authority key identifier: BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/amJ-strUT3NGa1h-r8zlQgJsebU.roa
Signing time: Thu 20 Oct 2022 08:00:51 +0000
ROA not before: Thu 20 Oct 2022 08:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.133.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:68:cb:0b:55:85:95:32:71:50:dd:35:46:87:03:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Validity
Not Before: Oct 20 08:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a627eb2dad44f73466b587eafcce542026c79b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d9:72:8a:3f:34:ff:9e:0d:bb:2b:95:ba:df:
d2:60:b1:31:9b:60:2c:74:17:52:d8:a4:67:a6:a0:
91:09:78:f4:76:1a:60:2d:2e:17:56:8d:33:f4:63:
b1:63:29:e8:91:29:67:05:0d:77:5e:12:28:57:da:
e3:0c:17:82:92:52:43:af:6b:c9:3b:03:b2:1f:8c:
52:ad:9c:ad:4e:00:d4:12:2b:b6:9d:0e:11:63:bd:
d5:e4:01:ac:3b:ce:20:93:07:62:8d:d1:19:0b:b1:
ab:25:81:c7:3c:c4:c9:e6:01:f1:6c:69:86:ab:67:
8b:49:55:a6:94:d5:9c:6c:8a:3a:d7:87:44:95:18:
01:3b:55:cd:22:f5:36:29:d8:e2:8d:1b:12:39:5f:
8b:0e:93:eb:1a:ad:78:14:f1:8f:4c:b4:38:97:3a:
e9:dc:67:9a:44:41:7d:74:65:86:82:0d:e0:ca:13:
77:bf:d5:7f:ba:10:1e:25:0e:54:ea:2b:c0:2b:ce:
c0:55:20:15:1f:a3:fd:1f:3d:c0:ab:da:ce:ba:64:
33:4b:5e:14:84:24:fe:ff:a4:4c:cb:76:32:26:9e:
51:0b:5b:2c:41:d5:30:00:66:d9:78:b7:c6:4b:9a:
3c:25:57:08:6b:3a:62:12:22:5b:45:90:81:c5:01:
d8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:62:7E:B2:DA:D4:4F:73:46:6B:58:7E:AF:CC:E5:42:02:6C:79:B5
X509v3 Authority Key Identifier:
keyid:BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/amJ-strUT3NGa1h-r8zlQgJsebU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.76.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:b0:55:7b:07:4f:77:99:7a:70:4b:f6:8d:ba:19:37:a0:bf:
d5:4f:b0:9f:30:14:28:25:f4:51:88:27:20:90:2e:df:55:66:
4a:a8:92:51:b5:25:59:e9:c6:74:c9:2b:28:ab:73:82:90:7a:
a6:52:89:85:6f:bb:27:b2:6c:65:4c:4b:64:a4:b5:53:36:5a:
26:b0:c1:b2:27:27:0b:8a:d3:38:08:72:58:e0:3e:b8:de:fc:
1c:97:5f:99:46:70:4e:03:c9:6b:69:be:6e:20:17:1f:12:69:
49:65:d9:c2:d7:ac:d0:b7:b3:94:d6:c1:0c:ff:0e:f1:4a:02:
98:f8:89:11:86:1d:6f:0a:74:ff:d0:68:70:00:6e:6a:da:b6:
a2:b2:4b:29:48:77:3a:fa:32:82:6a:20:4b:f6:2d:29:29:90:
f7:15:1b:a9:59:7b:ee:56:6a:09:13:79:6e:6b:17:13:d5:ad:
6e:95:77:23:d5:29:a9:ed:75:6b:d5:0c:12:fc:fa:7a:58:61:
65:77:58:d0:4b:5f:73:70:35:f0:43:8b:3b:2a:7f:b8:01:14:
d3:0d:bd:19:0a:45:e6:10:c4:c8:32:2d:33:9c:7a:29:64:05:
c0:6f:6e:27:28:b1:98:fb:c9:56:d3:95:79:f9:86:18:e9:13:
8f:fa:a8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:55 2025 by rpki-client