Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/RYAQwIaOHJ130i9hKI-WnVqL8sQ.roa
File: RYAQwIaOHJ130i9hKI-WnVqL8sQ.roa (raw, json)
Hash identifier: yWH/n6DS+Pi2ziKfmXVAzuVPXzjkOXPoqd/3JMA6GHE=
Subject key identifier: 45:80:10:C0:86:8E:1C:9D:77:D2:2F:61:28:8F:96:9D:5A:8B:F2:C4
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 0275DEC7
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/RYAQwIaOHJ130i9hKI-WnVqL8sQ.roa
Signing time: Sat 18 Jun 2022 13:09:45 +0000
ROA not before: Sat 18 Jun 2022 13:09:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.156.30.0/24 maxlen: 24
45.94.4.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
45.94.7.0/24 maxlen: 24
2a10:9f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41279175 (0x275dec7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jun 18 13:09:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=458010c0868e1c9d77d22f61288f969d5a8bf2c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ad:d6:75:2c:79:87:44:72:22:50:17:87:45:
ae:fe:91:b1:cb:1f:9c:8d:73:88:51:14:a6:8f:7c:
e5:5f:9d:f4:44:31:81:5c:e5:8a:b0:a1:af:58:83:
d5:ba:ae:ce:a9:9a:ce:ba:5c:3a:a1:ad:c7:5f:8b:
27:d4:36:f1:da:59:60:c9:a1:5f:0d:1f:db:60:e0:
a0:eb:2a:49:d2:27:a4:72:ff:bf:35:35:05:df:72:
e2:ef:1c:c6:9a:7f:d6:04:f1:84:af:5b:19:35:83:
a3:43:4a:a0:11:dc:71:d5:b9:85:90:08:af:51:de:
b3:c7:c2:53:11:94:27:65:2b:73:ec:8f:e4:52:cd:
13:f8:c9:42:a3:18:23:b4:31:75:85:2b:8e:59:6e:
ed:78:5c:cd:d6:98:9e:ef:8b:43:62:f4:b8:0e:95:
3b:c5:67:87:a9:a9:57:53:01:9b:5a:11:e2:77:d8:
c4:e3:72:8b:5f:a6:9a:a5:96:45:87:03:6e:c8:33:
82:50:cf:6c:b0:ed:1b:4d:9b:dc:ee:48:ec:f5:7f:
2f:c7:14:af:92:6d:4f:01:5f:ce:2b:40:40:4a:b5:
f0:b0:2d:2d:13:9e:20:95:72:fb:3a:55:f6:2b:f7:
83:7f:67:d6:54:09:b2:3d:1c:45:e9:26:44:78:ac:
8e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:80:10:C0:86:8E:1C:9D:77:D2:2F:61:28:8F:96:9D:5A:8B:F2:C4
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/RYAQwIaOHJ130i9hKI-WnVqL8sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.4.0/24
45.94.6.0/23
45.156.30.0/24
IPv6:
2a10:9f80::/29
Signature Algorithm: sha256WithRSAEncryption
56:05:f2:4b:29:94:10:82:91:5d:a9:cb:54:37:ec:0a:1c:3d:
19:53:1f:fa:00:8e:03:52:38:66:e4:e0:dc:a3:be:3a:d5:fd:
ac:0e:16:bc:cb:a1:d5:72:8e:ba:f8:fa:14:33:20:5e:be:fc:
7b:7f:4d:4f:6f:3c:d4:27:ae:98:54:ad:14:ee:76:69:59:1f:
9a:b3:11:c1:f1:63:43:1b:e3:91:1f:d8:8b:81:d7:6c:ba:98:
08:3a:8f:28:94:00:e4:33:89:f8:1f:13:d0:a6:32:7c:7c:a4:
ec:a9:28:2f:a3:e9:fe:91:0d:d1:7c:15:09:33:4b:c3:d8:07:
fd:29:ef:13:3d:5e:de:f8:97:d2:f7:78:7e:4d:93:40:6b:15:
ec:32:95:58:1e:81:82:fe:c1:dc:d0:af:08:0b:57:15:ab:64:
d6:3a:13:5e:8b:a3:e2:a5:87:21:12:bd:39:5d:2a:fe:88:88:
97:2c:cd:c5:8b:c4:69:dd:bc:19:03:bb:bf:be:e8:39:c8:21:
38:f5:e0:60:ca:ee:7c:08:7e:d8:d6:68:96:2f:b4:4f:f7:c5:
91:76:c0:12:66:b1:7d:de:41:ec:a5:ec:e3:2f:09:91:ae:90:
bd:a7:86:33:f5:6d:75:d6:24:e9:15:32:66:03:8d:9e:01:b3:
63:b5:48:c2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:36 2024 by rpki-client on console-ams.rpki-client.org