Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/5c51ce-760d-44a0-a339-cc68e37d245f/1/ziZDVLJKp6FR53X-hngRA1bMGoI.roa
File: ziZDVLJKp6FR53X-hngRA1bMGoI.roa (raw, json)
Hash identifier: mXw/LJYcSHBhRWZYbR2p4vJ7VTPk9dZcYHIsJ/R4hc4=
Subject key identifier: CE:26:43:54:B2:4A:A7:A1:51:E7:75:FE:86:78:11:03:56:CC:1A:82
Certificate issuer: /CN=0f832c10144e4d7f6a642c60dceae1436fc99ca1
Certificate serial: 027A03
Authority key identifier: 0F:83:2C:10:14:4E:4D:7F:6A:64:2C:60:DC:EA:E1:43:6F:C9:9C:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D4MsEBROTX9qZCxg3OrhQ2_JnKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/5c51ce-760d-44a0-a339-cc68e37d245f/1/ziZDVLJKp6FR53X-hngRA1bMGoI.roa
Signing time: Tue 24 May 2022 09:53:13 +0000
ROA not before: Tue 24 May 2022 09:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213281
IP address blocks: 45.133.188.0/22 maxlen: 24
2a0e:77c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162307 (0x27a03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f832c10144e4d7f6a642c60dceae1436fc99ca1
Validity
Not Before: May 24 09:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce264354b24aa7a151e775fe8678110356cc1a82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0f:66:23:96:3e:97:10:ee:ed:fd:9d:ba:3c:
f8:3d:14:0e:4d:4c:5d:ea:f9:29:b4:9d:a5:c9:2d:
ad:c2:cc:a3:0a:41:8d:13:cb:c6:d2:a9:5b:35:68:
7f:0a:47:2a:88:a9:b9:f2:c8:7c:31:c4:2b:35:22:
e4:97:11:a6:07:e0:87:fd:26:ff:54:c7:6b:d0:74:
4f:1e:6c:60:d0:0e:97:6d:3d:13:60:58:54:b2:3a:
53:02:2c:b7:f6:1e:c2:83:ab:93:49:5d:61:a5:7f:
5d:a2:12:96:49:81:5c:bb:b1:c8:64:d9:32:4a:4e:
45:f6:35:8d:f0:4f:61:56:ad:c3:59:df:03:38:b5:
24:3a:71:7c:b8:68:82:72:9f:8f:31:ae:05:e6:40:
f8:42:98:57:68:c0:41:b6:30:1f:82:e4:6e:f8:33:
06:85:b3:a8:08:21:df:ff:78:c6:1b:16:4b:62:2b:
6f:6a:ae:67:46:3b:88:15:d3:9c:67:4f:8e:bc:6b:
99:a1:69:df:3d:9b:e2:b1:ee:cc:8e:b4:b3:c7:aa:
c4:4c:53:d9:09:99:1b:32:d1:cb:76:b1:26:19:47:
d0:91:0a:ba:e2:9e:d5:2c:51:7f:90:14:12:87:6c:
e6:c5:6e:50:0a:07:69:af:e4:3e:02:4a:f3:c2:d1:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:26:43:54:B2:4A:A7:A1:51:E7:75:FE:86:78:11:03:56:CC:1A:82
X509v3 Authority Key Identifier:
keyid:0F:83:2C:10:14:4E:4D:7F:6A:64:2C:60:DC:EA:E1:43:6F:C9:9C:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D4MsEBROTX9qZCxg3OrhQ2_JnKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/5c51ce-760d-44a0-a339-cc68e37d245f/1/ziZDVLJKp6FR53X-hngRA1bMGoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/5c51ce-760d-44a0-a339-cc68e37d245f/1/D4MsEBROTX9qZCxg3OrhQ2_JnKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.188.0/22
IPv6:
2a0e:77c0::/29
Signature Algorithm: sha256WithRSAEncryption
69:fd:b6:0a:d0:a3:ae:cf:35:fc:94:1d:b6:86:4f:d0:83:f1:
9d:31:b9:4e:1b:d1:11:da:5a:40:1f:7a:69:5a:90:d1:16:50:
0e:f7:6c:33:08:12:8b:e9:ab:cd:2e:c3:61:52:01:59:e7:bb:
62:83:87:e4:e8:82:7b:68:6c:8c:30:a5:62:c7:8c:30:32:30:
23:c1:10:2d:dd:c4:6b:ea:44:a8:1f:f2:1d:01:6c:0d:9f:d2:
1b:ec:fe:1f:03:72:30:02:69:3b:51:8b:9a:88:ff:68:99:72:
46:41:42:98:44:73:b5:6c:6e:c7:2c:64:7e:0f:9c:a0:12:4a:
63:e0:9c:28:71:63:cf:08:68:7d:34:83:60:5a:3c:2f:e7:3f:
3b:10:1a:8d:c1:f3:4a:09:18:23:32:c3:40:bb:9e:24:40:71:
8e:a0:9d:a1:25:66:75:e7:d9:77:a0:92:e7:a6:b4:24:ff:8c:
a5:c0:88:af:e8:7a:57:ae:85:a3:57:67:0e:98:65:87:96:94:
c1:81:7e:a1:b2:96:38:1a:b9:23:b8:ba:0d:1f:a2:4c:59:71:
68:1b:54:aa:45:48:7c:1a:e2:b9:1e:68:b6:51:5f:45:93:05:
1a:28:b5:f2:a3:9b:ef:1b:2d:64:64:e9:1b:e9:f7:4c:5e:0d:
02:46:dd:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-ams.rpki-client.org