Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/GZ9emw9YBfQ4OKw9n6LLCU1ZMJ4.roa
File: GZ9emw9YBfQ4OKw9n6LLCU1ZMJ4.roa (raw, json)
Hash identifier: IGB+dwgMr4s/zYEPt4F5JtIyrh2p5+R57Tqpkem6UwM=
Subject key identifier: 19:9F:5E:9B:0F:58:05:F4:38:38:AC:3D:9F:A2:CB:09:4D:59:30:9E
Certificate issuer: /CN=839c87178ff28099472f2f7fe9716bfc13b68240
Certificate serial: 02BDCF26
Authority key identifier: 83:9C:87:17:8F:F2:80:99:47:2F:2F:7F:E9:71:6B:FC:13:B6:82:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5yHF4_ygJlHLy9_6XFr_BO2gkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/GZ9emw9YBfQ4OKw9n6LLCU1ZMJ4.roa
Signing time: Sat 01 Jan 2022 08:58:11 +0000
ROA not before: Sat 01 Jan 2022 08:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 395800
IP address blocks: 45.157.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45993766 (0x2bdcf26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=839c87178ff28099472f2f7fe9716bfc13b68240
Validity
Not Before: Jan 1 08:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=199f5e9b0f5805f43838ac3d9fa2cb094d59309e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d5:57:71:c1:e9:20:f4:39:ba:4b:38:58:e4:
7b:f6:3e:e4:74:91:c8:6a:65:c2:a2:54:45:a2:6f:
c5:84:69:4f:de:ac:a9:56:1e:0c:71:00:1a:db:ca:
d9:5e:9d:2d:1d:f4:48:d5:56:df:8a:bc:b3:31:a6:
9d:47:13:93:67:da:29:98:8c:4f:7f:41:72:17:b5:
27:3d:0e:de:b9:0f:28:64:28:a7:87:49:fa:51:e7:
ec:45:0c:e8:06:be:1d:0c:3d:81:0b:9c:01:9b:02:
4d:c4:c2:b6:19:70:8d:b9:41:fb:7c:19:74:1d:04:
51:e5:df:65:3c:e3:9a:6b:c8:52:65:be:49:c8:35:
9c:1d:0a:00:eb:20:70:58:8f:80:17:04:7f:70:08:
4e:60:7f:be:e9:b7:4c:8a:44:c3:cb:c7:9e:e0:32:
96:7c:e1:d6:19:5a:40:77:a2:7f:30:79:8f:fd:52:
c8:3b:ca:d5:6f:dc:36:e2:aa:07:98:9f:fb:01:5b:
cc:2d:2e:ee:c9:24:2e:70:4a:3f:3b:48:aa:54:0f:
1a:bd:bd:44:a9:1a:70:d7:94:07:d8:fe:6e:60:08:
e4:82:0c:9d:36:74:97:48:32:f9:fb:aa:b4:22:fc:
5c:a1:4a:f0:a1:ef:48:ba:00:35:33:7d:2d:b6:7b:
34:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9F:5E:9B:0F:58:05:F4:38:38:AC:3D:9F:A2:CB:09:4D:59:30:9E
X509v3 Authority Key Identifier:
keyid:83:9C:87:17:8F:F2:80:99:47:2F:2F:7F:E9:71:6B:FC:13:B6:82:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5yHF4_ygJlHLy9_6XFr_BO2gkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/GZ9emw9YBfQ4OKw9n6LLCU1ZMJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/g5yHF4_ygJlHLy9_6XFr_BO2gkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.160.0/22
Signature Algorithm: sha256WithRSAEncryption
14:cb:af:71:00:b9:f1:bb:72:07:69:ce:14:08:70:54:3c:20:
6e:80:6f:1c:70:80:76:c4:05:db:6d:e7:c6:f9:78:40:05:b0:
d3:f4:5b:08:69:35:02:df:92:3a:50:aa:a3:1f:c3:c8:2c:02:
1f:03:ae:db:e5:fd:f7:55:63:83:54:df:52:84:2b:3a:1e:87:
48:f6:07:64:db:6c:38:13:61:19:47:0b:04:fe:e7:6f:b5:24:
3a:3b:86:b3:af:38:95:c3:91:07:87:e9:2e:b8:53:39:ca:be:
53:3d:de:d8:e9:10:6f:f8:4c:85:8d:c9:08:49:a6:c3:4b:1d:
40:4a:bd:3c:22:8a:7c:76:c6:de:cb:0d:e1:9d:1e:c6:a0:a1:
13:b0:c5:6b:dd:9a:fb:8a:c4:5b:22:10:66:b7:41:c3:29:e4:
ea:dc:9e:5a:b6:0e:36:c4:8c:f1:d7:cf:99:e9:26:18:30:31:
58:09:50:4e:79:f2:f5:d9:2c:2c:10:82:94:a5:5e:2b:35:96:
4d:71:2e:78:56:22:f9:fa:e9:09:95:0d:3b:ad:7c:8b:f6:52:
9c:03:2e:46:b0:19:09:d9:3b:96:68:48:79:81:2d:64:20:f9:
fa:73:94:fa:34:99:ad:ca:bc:27:04:79:4c:32:90:94:69:ac:
e1:3c:c8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:26 2023 by rpki-client on console-fra.rpki-client.org