Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/zVcM9I2QrDisPuG-WDLZHj2zREA.roa
File: zVcM9I2QrDisPuG-WDLZHj2zREA.roa (raw, json)
Hash identifier: /PxC9tk6Br52mjoL8OCDw6DeZDl0PcZ4EdAQaN0ER9w=
Subject key identifier: CD:57:0C:F4:8D:90:AC:38:AC:3E:E1:BE:58:32:D9:1E:3D:B3:44:40
Certificate issuer: /CN=5cf88adc19eaad13d685b81ec39935bd4b2c69ad
Certificate serial: 05158DFD
Authority key identifier: 5C:F8:8A:DC:19:EA:AD:13:D6:85:B8:1E:C3:99:35:BD:4B:2C:69:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPiK3BnqrRPWhbgew5k1vUssaa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/zVcM9I2QrDisPuG-WDLZHj2zREA.roa
Signing time: Sat 01 Jan 2022 15:59:31 +0000
ROA not before: Sat 01 Jan 2022 15:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208862
IP address blocks: 45.82.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85298685 (0x5158dfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf88adc19eaad13d685b81ec39935bd4b2c69ad
Validity
Not Before: Jan 1 15:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd570cf48d90ac38ac3ee1be5832d91e3db34440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8e:7c:b9:b0:5f:fa:77:04:ff:be:8d:68:1a:
72:f4:06:ac:02:0a:ee:81:ce:e9:07:92:4c:b4:7b:
e9:83:f9:db:be:e7:48:7d:a3:cc:a6:09:63:60:80:
70:a4:04:6b:05:09:f2:a8:14:2c:fc:48:59:30:a5:
98:50:82:a8:c5:de:4d:03:b0:53:1f:4c:54:40:20:
77:e8:4e:51:11:71:7d:8e:d7:49:e0:9c:14:ca:53:
25:32:d2:cf:19:4e:d4:1f:10:54:ca:95:d9:d8:56:
83:88:6a:31:23:c6:aa:c6:d6:81:49:bb:cd:21:76:
2a:fc:79:43:2f:79:54:5b:a2:86:80:d7:d7:67:c0:
ab:4b:2c:d8:12:10:96:a4:b8:ce:e5:ca:ba:05:75:
99:37:90:82:d1:b2:be:ab:4f:07:69:53:30:30:d8:
b7:7b:d3:a6:d5:19:e6:fe:2c:1b:94:e2:1c:f0:94:
ac:86:50:fc:c4:b5:d1:2b:5d:05:ea:bf:34:60:af:
23:82:5d:fa:46:00:78:9f:1f:07:64:0d:08:a0:c6:
aa:53:a6:6c:03:78:aa:33:dd:b9:2b:63:d4:be:e8:
51:cd:21:c1:0d:f7:56:bf:8e:1b:4d:02:70:5f:aa:
c3:32:9f:b9:77:37:2b:74:9b:bb:37:e7:68:f5:47:
57:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:57:0C:F4:8D:90:AC:38:AC:3E:E1:BE:58:32:D9:1E:3D:B3:44:40
X509v3 Authority Key Identifier:
keyid:5C:F8:8A:DC:19:EA:AD:13:D6:85:B8:1E:C3:99:35:BD:4B:2C:69:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPiK3BnqrRPWhbgew5k1vUssaa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/zVcM9I2QrDisPuG-WDLZHj2zREA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7c166c-24b2-4a07-9115-17ce67bdad7b/1/XPiK3BnqrRPWhbgew5k1vUssaa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.0.0/22
Signature Algorithm: sha256WithRSAEncryption
62:35:6b:18:0c:3e:04:f1:c3:18:d1:87:e2:bc:63:62:7f:86:
39:28:fe:96:c3:f8:f0:c8:24:7a:19:d9:cf:fc:22:26:d5:62:
f4:c1:f1:b4:bc:1f:c5:f1:a3:90:01:bc:8f:c3:22:09:d5:7f:
c2:d7:41:36:d2:ab:ba:62:08:ab:bb:98:9a:6a:82:25:ba:ff:
c0:4d:d7:9f:4e:4e:cf:2b:10:de:72:01:47:2a:1c:f8:d9:33:
bb:ac:cc:0d:2d:cb:97:16:8f:9e:f0:af:b4:bb:19:b6:62:19:
2a:13:28:17:8c:4c:d5:63:54:8f:f3:2f:36:57:7a:26:e5:47:
a4:6e:ae:b7:b3:a5:24:eb:c9:a0:6e:40:28:8e:60:0e:cb:7d:
9e:b4:f2:dc:83:40:d4:07:ee:f1:4d:23:4f:e6:55:27:ad:b3:
34:33:e7:05:84:58:12:57:69:18:14:9e:84:56:be:a9:5a:b8:
34:6a:6f:d3:07:ad:9b:19:65:83:6c:49:0f:cb:4c:6c:70:bd:
ac:d1:c7:e2:b4:11:9f:4d:68:f2:c8:bd:35:52:83:ab:ab:71:
39:0c:9d:bb:aa:2d:6d:ab:ac:aa:5e:28:43:8f:a1:ce:23:29:
12:69:82:72:85:1f:71:ec:94:d2:6c:fd:78:52:f6:23:7f:5d:
f1:61:6c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org