Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/AyJ2ZVbaOIjbVsD7RhippwLsWgA.roa
File: AyJ2ZVbaOIjbVsD7RhippwLsWgA.roa (raw, json)
Hash identifier: TCQ1W0YEmmCKDFEHELJpX4nOsSV5/dM2oszYctAHRi4=
Subject key identifier: 03:22:76:65:56:DA:38:88:DB:56:C0:FB:46:18:A9:A7:02:EC:5A:00
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 0816ABE6
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/AyJ2ZVbaOIjbVsD7RhippwLsWgA.roa
Signing time: Sat 01 Jan 2022 02:59:51 +0000
ROA not before: Sat 01 Jan 2022 02:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57112
IP address blocks: 45.84.40.0/22 maxlen: 24
2a0e:9680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135703526 (0x816abe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Jan 1 02:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0322766556da3888db56c0fb4618a9a702ec5a00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0c:1a:4b:28:62:1b:a8:05:cf:5c:dd:f7:0f:
4f:56:25:2e:40:0b:99:68:a7:20:c2:09:89:eb:b8:
00:ea:d1:ae:27:ab:e8:f0:d8:21:0e:4b:14:3f:e6:
18:13:8c:57:a9:ac:78:0d:7f:fc:0e:fe:19:9b:3d:
59:21:74:33:22:cf:16:e7:57:14:1a:51:4e:76:12:
bd:72:8d:7e:d6:81:9b:26:79:b9:62:ae:71:35:53:
fe:22:92:b2:78:57:9a:36:37:78:33:ef:c1:0e:1a:
b6:d7:02:0d:88:3d:8b:d2:8c:7f:f1:a0:04:82:77:
b4:6e:53:3a:52:b4:a9:9f:89:85:f0:90:aa:a1:a3:
01:33:3e:cd:e1:a9:c1:60:4d:8d:34:a5:95:0d:91:
28:21:20:14:2f:e4:63:54:b4:2d:cc:1b:13:8c:98:
a5:3b:33:97:7c:a3:13:c3:55:84:27:55:3f:58:5f:
82:8f:09:94:31:8c:87:0b:df:a0:be:4b:a4:ce:71:
20:6e:51:cb:20:00:0f:e4:6b:81:27:56:1a:e0:01:
e0:d5:bf:72:fd:68:c5:f1:fe:9c:b8:cc:b4:ac:92:
57:4b:33:91:c4:84:61:81:46:04:c8:63:ab:56:2b:
41:8a:56:b7:1d:92:5f:a4:7f:e5:d3:22:ac:29:c6:
89:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:22:76:65:56:DA:38:88:DB:56:C0:FB:46:18:A9:A7:02:EC:5A:00
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/AyJ2ZVbaOIjbVsD7RhippwLsWgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.40.0/22
IPv6:
2a0e:9680::/29
Signature Algorithm: sha256WithRSAEncryption
a2:53:19:70:87:96:3d:81:4f:4c:a3:6b:ff:48:03:be:67:a1:
56:98:9c:97:f3:5d:a0:46:44:d3:fd:64:53:68:e1:0b:60:e2:
67:b0:9d:0a:a0:83:a3:28:a8:b1:cb:e1:bb:25:dc:f4:7e:c3:
ac:e5:4c:e8:8f:1f:11:da:f0:bd:a1:23:48:6e:de:07:1d:3d:
41:92:cf:af:6b:23:af:74:83:47:41:2b:d4:0b:06:fe:cf:46:
d8:a8:d8:a3:78:43:32:15:ca:cd:84:73:29:1c:7f:59:ba:22:
fc:0d:fa:1a:3d:03:05:95:3f:2d:04:c4:86:19:b0:a6:39:c3:
f4:28:a4:77:9d:fb:06:df:72:df:b6:07:c1:c8:ef:20:d5:41:
8f:8d:f3:2b:92:f3:dc:3d:89:5f:d2:a3:9f:69:d6:46:53:37:
bc:80:08:e4:61:b7:a2:85:5b:66:7c:94:47:f4:ef:86:9b:f0:
df:bc:f4:dc:89:c9:fb:58:c6:7c:7f:52:5d:21:1f:be:bd:54:
47:6a:90:d6:bb:2f:be:9e:20:72:30:3c:29:c5:16:a4:64:85:
09:a9:aa:97:ee:09:c3:dd:62:c4:f2:cf:71:09:30:1d:b3:f6:
7f:cf:b2:64:32:1a:91:c9:f4:37:26:05:02:6d:87:0e:d7:d5:
56:53:73:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:18 2023 by rpki-client on console-ams.rpki-client.org