Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/gezlHr6xj3CSvAPdtznO4kUkq8U.roa
File: gezlHr6xj3CSvAPdtznO4kUkq8U.roa (raw, json)
Hash identifier: NITJt9H62ScsLzzszE9BF24a1Me2tc8NME4CEXxNr/M=
Subject key identifier: 81:EC:E5:1E:BE:B1:8F:70:92:BC:03:DD:B7:39:CE:E2:45:24:AB:C5
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 076D6AAC
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/gezlHr6xj3CSvAPdtznO4kUkq8U.roa
Signing time: Sat 01 Jan 2022 15:07:14 +0000
ROA not before: Sat 01 Jan 2022 15:07:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23738
IP address blocks: 45.147.52.0/22 maxlen: 24
2a0f:d800::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124611244 (0x76d6aac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: Jan 1 15:07:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81ece51ebeb18f7092bc03ddb739cee24524abc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:00:31:6f:c1:72:73:00:2a:08:98:47:02:d6:
7f:0c:d4:4e:0d:83:4f:e0:95:ec:62:1e:7c:fe:28:
0e:0a:9b:66:2c:66:df:ca:85:08:67:fd:30:fd:b1:
6c:7b:20:a2:b4:db:65:5e:87:ae:dc:d9:8a:8c:6b:
2f:aa:bf:34:ff:1c:2f:2b:ca:11:ab:1a:c1:85:40:
d2:6d:8d:1c:18:ae:fa:de:92:b6:f2:a0:9f:81:ea:
29:b1:4c:da:ab:10:55:b0:2d:c9:55:f0:03:41:53:
50:71:82:85:36:bd:6e:4f:4e:ec:f7:c0:1f:1a:69:
a4:bc:d8:d7:a3:d9:9d:33:8b:c6:b8:f4:6b:4f:1c:
57:82:3f:fa:13:a5:4d:d9:81:72:0c:1f:40:4a:f8:
22:a2:38:d5:61:28:17:24:3a:f2:e9:44:50:5b:d8:
52:b8:bc:16:5e:27:21:eb:b8:cd:8f:b1:aa:83:da:
2f:8a:a3:27:43:52:33:c1:4f:f7:6b:97:7f:26:75:
81:3d:b4:f3:fa:d4:e6:ca:d0:26:c3:4a:0d:43:0b:
24:3b:54:76:f0:0b:cf:9b:61:02:0c:a3:33:f1:b5:
78:e8:2c:53:e4:b6:c7:c9:a8:b8:bd:ec:94:8a:35:
50:3b:1f:75:18:59:b7:13:a6:45:3d:67:54:8a:16:
91:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EC:E5:1E:BE:B1:8F:70:92:BC:03:DD:B7:39:CE:E2:45:24:AB:C5
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/gezlHr6xj3CSvAPdtznO4kUkq8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.52.0/22
IPv6:
2a0f:d800::/29
Signature Algorithm: sha256WithRSAEncryption
24:58:70:a8:65:28:cb:33:62:6c:31:23:18:06:a3:88:07:49:
b1:cb:db:90:a3:bc:be:fb:fc:2e:0e:2e:94:d8:71:03:e4:df:
7c:75:ad:c7:9e:50:19:82:c1:e8:11:b1:22:ed:68:6e:3b:b6:
b4:08:4a:b1:8b:c6:9a:32:90:72:6c:be:f1:1b:38:97:6f:c6:
39:11:4b:dd:6b:5f:d1:dc:3c:68:b9:1c:f0:7e:92:c4:bd:bd:
fc:aa:c1:9d:81:8d:51:c5:0d:5c:17:6f:90:fa:44:9d:0f:9d:
de:69:95:5f:a2:b6:6e:02:9f:bd:aa:86:e8:13:b5:5c:27:0a:
7f:ec:94:46:03:1d:12:b1:73:af:91:d1:39:c6:89:08:bd:a0:
e0:6b:93:7e:2c:e1:e5:6e:7d:b1:08:fa:f9:a3:69:f2:20:ae:
e6:26:28:ab:9d:ca:1d:a9:07:c9:64:5b:ab:43:5f:68:76:05:
3e:13:a9:09:52:04:de:34:33:db:5a:c3:56:38:3d:d8:c1:05:
0d:8e:f6:28:61:e2:d1:43:39:0e:31:a9:1a:1a:4c:e2:7c:82:
65:b7:1f:3d:47:a6:9d:24:79:7a:24:7d:f6:7b:77:12:d6:29:
ec:68:a5:0b:b4:e5:af:d2:74:bb:fd:9f:d3:23:ca:df:75:96:
3c:49:8b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-ams.rpki-client.org