Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/gFi2Z55Zs6tsCivGFK7zjdVbqfo.roa
File: gFi2Z55Zs6tsCivGFK7zjdVbqfo.roa (raw, json)
Hash identifier: 0ZTNiIZaMpeSmGfN9Ed21i8ygqiG2nOHOV4SAQ08Qzc=
Subject key identifier: 80:58:B6:67:9E:59:B3:AB:6C:0A:2B:C6:14:AE:F3:8D:D5:5B:A9:FA
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0184641BA07B2B05FF2756218EAA15DC107E
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/gFi2Z55Zs6tsCivGFK7zjdVbqfo.roa
Signing time: Fri 11 Nov 2022 00:34:02 +0000
ROA not before: Fri 11 Nov 2022 00:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 45.152.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:64:1b:a0:7b:2b:05:ff:27:56:21:8e:aa:15:dc:10:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Nov 11 00:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8058b6679e59b3ab6c0a2bc614aef38dd55ba9fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4c:d0:f7:a5:0f:ee:0e:a4:08:4a:83:4d:48:
b0:56:87:e6:7a:8b:60:4a:7b:f9:46:d9:af:bd:0b:
49:fa:03:29:c5:05:01:01:7a:43:4e:f1:92:bd:1b:
2a:ab:74:6a:84:73:0f:77:0a:0c:45:1c:a4:30:01:
db:06:bb:1a:58:1f:05:54:7b:e6:70:8b:ce:8d:9e:
44:ad:f1:6e:c8:94:3d:14:59:59:f0:3e:c4:bd:4e:
e1:00:c3:a8:a6:fa:0d:d5:df:b3:15:7c:fb:e4:78:
74:df:cf:7b:14:28:fd:5a:99:81:52:2c:d1:88:e9:
ed:a1:97:23:dc:c6:26:d5:60:79:b9:57:40:cd:66:
97:3f:ee:34:9e:62:10:75:37:a6:70:03:27:df:66:
df:29:88:a3:be:0e:67:b3:c0:dd:6c:cf:1b:f9:5a:
8b:7a:3f:7a:aa:b9:b0:6b:85:17:7e:42:86:8a:e3:
26:fa:72:29:f0:d2:58:ae:7a:4b:00:fa:cc:9c:ef:
e8:87:08:aa:63:a0:21:a3:5f:62:ea:58:a6:15:56:
40:97:52:62:89:aa:2e:80:33:fd:4c:41:f5:1b:19:
7c:65:c5:94:b1:12:9e:f1:95:17:4d:63:41:7f:83:
4b:6e:fc:04:b5:e4:d3:b1:8e:a1:30:5e:29:7b:14:
9b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:58:B6:67:9E:59:B3:AB:6C:0A:2B:C6:14:AE:F3:8D:D5:5B:A9:FA
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/gFi2Z55Zs6tsCivGFK7zjdVbqfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.176.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:ff:2b:c1:1f:93:09:bb:01:ad:57:b1:f1:f7:c2:c7:4c:40:
27:36:aa:35:13:93:70:41:12:95:6d:3d:0f:84:37:34:c6:46:
d8:ce:a2:f1:e8:c5:01:70:d2:83:b9:e3:b6:aa:ce:d4:fa:6c:
c2:1b:bb:6b:81:a3:5f:f5:19:b2:3d:f7:91:30:5a:53:9f:63:
32:49:93:0c:5d:e1:78:01:4e:cb:a1:1f:15:d7:2b:b5:84:65:
cc:5c:fc:be:a1:47:bc:f5:53:87:8b:d8:07:5c:5a:e9:ff:e0:
22:0a:63:f2:39:c4:6b:fc:88:c2:8d:4f:50:ac:83:9f:97:18:
e4:cb:2a:69:67:23:28:95:80:1f:32:0f:27:f5:87:5d:f1:f3:
4c:ca:db:50:5a:d5:91:1e:16:eb:e7:26:7c:d2:e9:f8:5c:06:
03:36:b0:6c:0e:33:9e:3d:e2:d1:6e:39:f6:14:f9:3b:2e:91:
58:9a:40:dd:e3:ce:74:7d:e7:91:86:bd:e1:36:43:14:b2:c3:
a7:b0:e8:2d:80:8b:e9:28:7d:ce:74:eb:ae:a2:a5:fd:cb:d2:
3a:b2:a3:49:ed:57:9e:b6:9a:92:33:a2:23:96:44:c5:52:e3:
95:9e:ec:c1:05:bd:82:6f:a1:23:d3:2d:0a:37:5f:8b:1b:d6:
f1:8c:23:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:57 2023 by rpki-client on console-ams.rpki-client.org