Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/WZmx4f8Hsepy86xb-zUFm8UignU.roa
File: WZmx4f8Hsepy86xb-zUFm8UignU.roa (raw, json)
Hash identifier: B9C4jZZg8E1LJ8MXIERpyF8A1Gd4D3OJzD1jT+yr2UY=
Subject key identifier: 59:99:B1:E1:FF:07:B1:EA:72:F3:AC:5B:FB:35:05:9B:C5:22:82:75
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0182A67BEB0D94CFA3208DBCD518A8282740
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/WZmx4f8Hsepy86xb-zUFm8UignU.roa
Signing time: Tue 16 Aug 2022 11:48:35 +0000
ROA not before: Tue 16 Aug 2022 11:48:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203320
IP address blocks: 45.133.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:7b:eb:0d:94:cf:a3:20:8d:bc:d5:18:a8:28:27:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Aug 16 11:48:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5999b1e1ff07b1ea72f3ac5bfb35059bc5228275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fd:30:8c:5b:c2:9a:e0:0d:24:3d:61:21:9b:
83:59:37:f3:69:0f:a8:2a:b7:ed:24:e8:6d:44:82:
aa:63:5c:94:99:8d:e1:5e:3e:0e:a5:17:33:89:67:
b7:a1:ac:29:75:03:5b:71:86:80:a2:e4:a0:f7:93:
7b:0b:ec:9b:dd:33:e3:0b:2c:2c:b5:06:65:58:b2:
0e:31:05:fe:f4:43:f4:b6:d8:0c:78:e8:5d:7a:9e:
0d:56:cf:1e:5a:f2:a6:32:bd:0f:fa:8d:6b:5a:57:
5a:d1:da:92:43:6d:7b:23:2b:b4:9f:20:64:68:50:
ca:68:bc:bc:c4:a6:6b:b6:72:59:bf:5a:f1:b1:2e:
8e:ab:b7:d2:c7:aa:b8:d3:92:7b:25:92:ba:75:8a:
17:9d:b4:61:ed:e9:35:95:55:d5:ed:22:1e:67:9d:
d9:e6:da:ac:8f:f7:d6:85:1d:e4:ce:c4:b7:52:49:
48:90:09:a4:ba:cf:fa:bf:fe:f7:80:f6:f2:64:8c:
ea:e7:f1:29:0d:47:a8:bc:5c:b8:9b:76:46:07:4b:
a8:d1:ba:a2:66:40:c4:96:71:e7:c8:8e:b9:b9:96:
d6:98:57:b4:8b:2f:bc:8b:f9:83:80:ba:2a:5b:fa:
48:ec:13:4b:8f:11:99:fc:a0:16:fb:5f:fd:b6:45:
f0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:99:B1:E1:FF:07:B1:EA:72:F3:AC:5B:FB:35:05:9B:C5:22:82:75
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/WZmx4f8Hsepy86xb-zUFm8UignU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.1.0/24
Signature Algorithm: sha256WithRSAEncryption
50:15:c5:38:f6:c0:0c:20:42:46:d4:9b:04:99:28:2a:07:96:
36:0c:51:db:13:65:15:03:f8:f7:18:9f:d5:cc:16:01:00:1c:
8e:0b:6e:dd:77:5b:03:66:2a:b6:a0:1b:ad:4f:9c:7f:5d:19:
6c:6a:fe:eb:98:59:28:be:0d:9b:ba:98:0c:b6:f6:63:92:96:
5a:8d:c1:9b:99:66:77:69:c7:1c:db:60:2c:e1:25:df:02:7e:
9e:8f:f1:ce:34:c0:75:8c:ad:94:a8:8a:75:6c:ef:fe:97:9d:
77:80:02:32:2c:47:8b:1e:32:a1:50:24:90:97:34:af:c8:a4:
46:b7:13:c7:2f:3b:4b:06:00:90:2a:a9:88:54:25:89:18:78:
fb:a4:ed:27:85:27:bb:ab:28:50:d4:c8:a1:0c:a8:2a:d6:55:
d4:22:4b:26:9a:42:d1:89:77:ff:76:bb:8f:19:3c:ff:0f:d6:
73:59:8d:bd:b7:f2:04:9c:8b:9e:90:d6:8a:89:d5:aa:62:95:
bd:60:b9:16:87:b0:05:63:6e:98:69:1c:4c:f8:e9:6e:43:95:
62:69:53:20:fd:29:5a:26:c1:a2:b7:3c:fe:c6:2d:10:ba:b3:
91:3a:01:87:b3:e4:e2:c2:e3:87:84:ff:e8:08:c2:bf:d0:12:
22:9b:eb:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:55 2023 by rpki-client on console-ams.rpki-client.org