Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/kzQv49VJ18vWkrhNHOE-bOqNcfg.roa
File: kzQv49VJ18vWkrhNHOE-bOqNcfg.roa (raw, json)
Hash identifier: oIeq+tlDuhYLOKN0zBs8FFSgRlTmjgC14hRQEnGGZEA=
Subject key identifier: 93:34:2F:E3:D5:49:D7:CB:D6:92:B8:4D:1C:E1:3E:6C:EA:8D:71:F8
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 076A7522
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/kzQv49VJ18vWkrhNHOE-bOqNcfg.roa
Signing time: Sat 01 Jan 2022 00:52:07 +0000
ROA not before: Sat 01 Jan 2022 00:52:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58145
IP address blocks: 45.157.8.0/22 maxlen: 22
2a0f:3780::/32 maxlen: 32
2a0f:3780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124417314 (0x76a7522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 1 00:52:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93342fe3d549d7cbd692b84d1ce13e6cea8d71f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6b:ba:58:26:3b:7e:f2:1a:59:ff:8c:c4:be:
69:71:32:14:03:2b:98:7f:57:d2:20:64:e7:76:b9:
77:1b:07:d2:5f:45:4a:00:a2:27:bf:2e:8f:1c:01:
3c:2b:76:de:b9:c3:ae:cb:21:65:52:00:01:2f:5a:
b7:6a:94:26:91:cc:a9:db:95:12:c3:8c:1b:76:3b:
ae:53:68:6c:37:98:50:4c:b7:f7:9c:65:ca:56:f9:
63:5e:db:21:7c:26:56:bb:b0:a8:fc:64:14:e4:e0:
b9:6d:10:9a:c9:e1:a7:a3:be:04:ca:3c:88:7d:48:
34:33:79:88:32:ed:a7:10:04:06:91:49:5f:fe:85:
68:ac:db:da:6d:ee:89:e1:af:13:29:9e:d5:d8:1c:
9a:bd:99:12:a9:2f:a8:33:47:df:f2:1b:e3:db:82:
cd:67:b4:a2:32:88:63:5f:e2:bd:08:42:10:c2:4b:
f8:1c:1f:b7:14:4b:b8:97:39:47:67:fb:e9:3e:fa:
49:cd:c5:95:6d:74:6e:5e:30:ee:76:84:13:6d:34:
47:5c:54:b6:ff:33:e8:b3:43:a2:83:ef:38:a2:2f:
26:6c:90:29:02:10:48:d3:c5:e2:0a:3b:04:84:f8:
90:f6:71:6f:ff:03:e5:1c:e8:d6:7e:09:db:80:43:
c2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:34:2F:E3:D5:49:D7:CB:D6:92:B8:4D:1C:E1:3E:6C:EA:8D:71:F8
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/kzQv49VJ18vWkrhNHOE-bOqNcfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.8.0/22
IPv6:
2a0f:3780::/29
Signature Algorithm: sha256WithRSAEncryption
c1:d2:48:41:21:84:92:4b:b3:77:10:5c:ba:94:c9:01:0a:49:
82:14:31:bd:37:61:f1:e1:5a:21:0e:68:ee:ef:c1:b3:f4:3d:
e8:63:e3:f5:79:9a:f8:bd:3d:c1:05:90:f3:b6:af:ac:76:af:
d7:9a:74:74:e9:00:c8:a7:2e:63:32:7b:87:2b:26:86:0c:42:
35:39:68:7d:e4:3b:0a:86:f6:ac:63:e5:52:e3:39:d4:7e:f9:
9f:22:03:4c:57:60:cb:85:c2:8c:47:1e:79:3d:6a:85:bb:d4:
3b:40:8e:42:d8:33:12:f7:46:e3:a8:03:c2:96:71:4b:b8:68:
d1:50:ce:1d:2c:25:94:a6:c3:bc:b5:96:77:36:f2:9e:b1:63:
d7:12:d4:6e:d5:1a:af:0a:5d:21:b5:b7:74:d2:3a:37:f2:63:
36:8d:f6:4b:40:45:f3:36:bb:29:4d:01:be:c2:a6:5c:05:3c:
e5:a3:6d:2e:b5:3a:f1:e4:4a:b0:67:69:22:c7:56:f8:50:61:
a2:d7:ab:99:59:f2:3c:db:0c:35:e8:49:99:85:bb:5e:a2:07:
10:d9:fa:32:1f:9b:ac:63:3a:fe:5b:4d:03:36:c4:7c:e8:0f:
8e:b8:b8:d8:e0:c5:b1:09:a9:53:ec:66:d4:e7:4a:15:03:e7:
56:65:fc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:48 2023 by rpki-client on console-fra.rpki-client.org