Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/Ms4g1z_uvxQI6E4piqdtXeaeMe0.roa
File: Ms4g1z_uvxQI6E4piqdtXeaeMe0.roa (raw, json)
Hash identifier: ZyP15h4NJZMRPHD5MMYYihMtSdcMEVFd3o6D4i7yr9w=
Subject key identifier: 32:CE:20:D7:3F:EE:BF:14:08:E8:4E:29:8A:A7:6D:5D:E6:9E:31:ED
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 087F1E12
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/Ms4g1z_uvxQI6E4piqdtXeaeMe0.roa
Signing time: Sat 28 May 2022 04:07:13 +0000
ROA not before: Sat 28 May 2022 04:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 45.157.132.0/22 maxlen: 24
2a0f:4280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142548498 (0x87f1e12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: May 28 04:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32ce20d73feebf1408e84e298aa76d5de69e31ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e0:14:a4:5b:6a:15:55:2c:fb:ef:80:53:cb:
29:0a:7a:5d:4e:99:64:f7:31:bd:af:a9:c4:b3:7a:
70:cb:d6:87:19:99:e8:a7:71:3f:8f:29:85:f5:6e:
96:c4:1a:7f:aa:02:8a:31:e8:bd:30:d2:d5:d7:12:
92:78:e7:70:b8:f5:7b:ed:88:b1:37:8f:0a:12:2c:
de:e1:80:3a:29:93:a8:19:d4:e7:ef:f3:e1:8c:4d:
1d:1d:54:9c:cd:93:4c:6b:b8:0c:c5:9f:fe:26:46:
54:9a:f6:1c:a9:cc:96:94:80:7d:01:cd:2b:c5:1e:
31:2f:78:2f:64:84:a1:45:66:97:0e:54:d6:39:2d:
bc:a5:17:8e:e6:ad:c2:86:5c:9a:7f:72:1c:d9:05:
b0:7d:ea:e1:83:6a:60:b4:97:cc:5f:5b:8c:69:9a:
cf:92:25:b4:27:b6:ee:93:a8:ec:dd:b1:1d:ba:7b:
1d:03:a9:e5:1a:6c:08:b2:f5:22:bf:99:96:05:37:
26:b9:1f:e0:1b:56:b7:f9:24:8c:77:49:77:5e:97:
1b:9d:87:2f:29:89:ee:d0:c2:bf:33:c6:ab:3f:8c:
19:4f:47:21:c4:85:a7:81:dc:56:2e:00:fd:f2:bb:
89:e6:5c:ee:fe:61:47:0d:45:d4:e3:47:bb:85:d2:
ca:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CE:20:D7:3F:EE:BF:14:08:E8:4E:29:8A:A7:6D:5D:E6:9E:31:ED
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/Ms4g1z_uvxQI6E4piqdtXeaeMe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
IPv6:
2a0f:4280::/29
Signature Algorithm: sha256WithRSAEncryption
64:4f:ab:20:05:b8:1c:58:04:bb:87:ec:d6:b3:93:15:f5:a9:
01:cd:69:a1:90:94:0f:16:2e:b8:04:58:77:ba:22:69:a2:bc:
95:9f:f8:6a:db:56:3e:a3:93:e4:b4:f0:6c:60:2b:d9:d1:4d:
f1:ed:55:ca:c1:aa:5e:07:66:60:cc:f9:93:11:e9:d3:62:41:
7c:b9:a2:59:5d:01:91:24:ad:fa:ff:c4:98:d7:62:d3:d7:61:
eb:81:df:a5:48:5e:1c:38:33:fe:60:2a:dc:c9:4c:5f:73:92:
8f:72:6e:41:95:f6:ea:46:5e:f6:a5:c6:44:0c:d5:d0:6d:98:
62:23:48:32:e9:7e:41:51:b8:ab:96:60:be:98:bc:ed:79:29:
3c:4f:ba:71:8e:f1:91:87:29:d5:45:ef:ca:57:89:2e:5a:c5:
cc:2e:ff:7b:c6:2d:8a:b2:26:4d:b4:9f:29:b3:77:00:c9:74:
70:10:35:bd:c4:5a:ba:b6:32:d1:da:32:4b:12:8b:eb:ba:47:
aa:c7:ce:5d:36:6f:5f:de:29:95:2c:b2:58:87:c0:59:c9:c6:
51:50:b5:9a:69:76:25:ca:5a:0e:e1:89:6e:7d:4d:a6:38:12:
e6:09:4b:aa:d2:8d:b4:73:aa:6b:69:c9:0f:05:99:f9:15:30:
86:61:70:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-ams.rpki-client.org