Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/gtT2svWEGI-bKoJ9Z2A7LCpxRwc.roa
File: gtT2svWEGI-bKoJ9Z2A7LCpxRwc.roa (raw, json)
Hash identifier: 9YXdynOvM2HViW59tuTvF92ppD/SZ0j7jO1qI1xmM3Q=
Subject key identifier: 82:D4:F6:B2:F5:84:18:8F:9B:2A:82:7D:67:60:3B:2C:2A:71:47:07
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 0183DDEACDBD91D14842686EB72566FADE8C
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/gtT2svWEGI-bKoJ9Z2A7LCpxRwc.roa
Signing time: Sat 15 Oct 2022 23:11:36 +0000
ROA not before: Sat 15 Oct 2022 23:11:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34427
IP address blocks: 45.157.132.0/22 maxlen: 24
2a0f:4280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:dd:ea:cd:bd:91:d1:48:42:68:6e:b7:25:66:fa:de:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: Oct 15 23:11:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82d4f6b2f584188f9b2a827d67603b2c2a714707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:db:d3:60:11:7f:14:2d:fb:f2:7d:47:4e:82:
78:64:44:ce:10:09:c1:4d:18:a1:c6:f9:21:62:cd:
ee:8d:df:65:24:d7:fc:c2:07:f8:46:47:87:5d:d3:
e9:18:e2:a6:77:e3:88:82:a0:17:fb:63:d3:da:ac:
42:1d:e3:a1:19:98:51:84:24:ff:98:68:06:97:47:
70:21:2a:e4:ce:1d:a5:2e:af:6c:91:8e:b2:58:71:
04:86:cc:53:13:ae:e4:63:17:a4:80:9e:b8:59:cc:
78:7b:e6:e4:a3:58:7c:35:88:de:3c:1c:c9:2e:1f:
87:c6:32:2e:f9:c5:1f:5e:a7:a4:99:a9:10:b8:22:
c6:e1:8b:1d:39:b5:91:82:34:e3:0a:a4:ba:58:1a:
63:62:20:ee:0d:50:21:fc:6c:d4:ad:c7:15:5a:1f:
a1:4d:36:25:ff:d4:15:57:c3:0d:13:6d:a9:2f:9f:
ab:43:48:f7:2f:7a:24:eb:fe:7c:79:01:e2:db:91:
38:9b:5e:b1:19:25:58:2a:a4:b5:e0:39:2c:e6:2a:
1c:e3:b0:e1:33:d5:ba:36:62:8b:d5:8a:64:a7:49:
63:2f:66:8f:0d:37:dd:ab:56:a7:a0:32:f1:47:31:
ad:09:73:b1:9b:b9:27:5a:95:c3:5b:db:ee:f5:d9:
ec:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D4:F6:B2:F5:84:18:8F:9B:2A:82:7D:67:60:3B:2C:2A:71:47:07
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/gtT2svWEGI-bKoJ9Z2A7LCpxRwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
IPv6:
2a0f:4280::/29
Signature Algorithm: sha256WithRSAEncryption
94:55:09:ee:96:24:b4:59:e1:77:af:59:9f:a6:3f:ac:fc:d8:
f6:a0:bf:1c:82:ba:dd:a7:6c:75:0a:cf:28:59:40:db:1a:a1:
a7:5e:88:ee:6e:e4:04:0b:16:96:d4:c3:c3:5d:ba:04:46:89:
5e:fb:da:a5:9c:1f:5c:e6:02:fa:f2:e5:31:42:74:f5:3e:61:
9b:01:d0:9a:5d:ca:f2:a7:66:ae:46:ac:16:29:1e:b1:ee:ee:
3d:58:98:36:d4:74:84:21:bc:90:eb:d0:41:cf:9f:97:6a:53:
d4:50:c8:28:06:ff:7b:af:7a:13:0b:27:05:57:42:65:3c:20:
91:ed:39:9d:b2:94:15:98:a3:f0:88:2a:05:3c:da:e6:5b:ba:
4c:22:96:10:16:de:f3:6f:57:4e:3f:b2:ee:78:9a:e5:ad:79:
59:3a:ee:68:66:0e:ce:ba:58:53:d2:01:7d:e4:dc:52:eb:9a:
7b:d7:3c:e5:be:9b:fe:31:de:a8:5c:02:07:18:04:17:ab:1f:
1a:4d:42:41:ca:1d:ab:c7:4d:8b:da:05:1a:b6:cd:92:ee:b5:
95:2e:dd:dd:47:20:7d:3c:66:73:93:70:27:7b:f5:3b:ed:69:
f4:b1:d3:eb:56:35:66:cd:c7:ab:bd:c1:95:45:ad:b0:47:1d:
97:1e:eb:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org