Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/YyO5AMAyyz9qz-SkxqP1i5QHAxE.roa
File: YyO5AMAyyz9qz-SkxqP1i5QHAxE.roa (raw, json)
Hash identifier: W50/i2jIKf+6nxzUwwvCqF2eLjN+0uf0/kZF1D5xHqo=
Subject key identifier: 63:23:B9:00:C0:32:CB:3F:6A:CF:E4:A4:C6:A3:F5:8B:94:07:03:11
Certificate issuer: /CN=c4b21c89bc7e2b214067f30707a4a03dc346ee05
Certificate serial: 09503EFE
Authority key identifier: C4:B2:1C:89:BC:7E:2B:21:40:67:F3:07:07:A4:A0:3D:C3:46:EE:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLIcibx-KyFAZ_MHB6SgPcNG7gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/YyO5AMAyyz9qz-SkxqP1i5QHAxE.roa
Signing time: Sat 01 Jan 2022 14:06:43 +0000
ROA not before: Sat 01 Jan 2022 14:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209007
IP address blocks: 45.11.43.0/24 maxlen: 24
45.11.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156253950 (0x9503efe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b21c89bc7e2b214067f30707a4a03dc346ee05
Validity
Not Before: Jan 1 14:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6323b900c032cb3f6acfe4a4c6a3f58b94070311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cd:d1:5d:94:32:09:e0:22:71:db:21:a5:bb:
52:d7:43:31:11:4a:08:d0:f4:1f:d1:c5:7f:32:1b:
31:f1:e0:d3:a3:dc:80:0f:ea:67:98:ef:cd:c9:e9:
cd:fd:f7:e9:44:e7:06:63:1c:a0:92:c0:ff:e8:96:
e6:79:82:fa:8f:dd:53:eb:d1:a0:9a:16:0c:64:9f:
6b:6f:cd:37:02:7a:b8:46:de:05:eb:99:c8:c6:85:
f7:ec:3e:70:7d:27:09:8b:19:e6:d4:46:41:35:05:
33:f0:1e:48:98:11:aa:b5:18:09:6c:d5:e4:cf:43:
63:68:35:f3:66:11:a4:5b:72:5d:0c:61:b3:16:6a:
24:e5:0b:f4:90:bd:17:73:8c:77:17:e8:f5:4b:5d:
9f:7c:f1:3f:2c:b5:9c:6d:73:13:c9:83:0f:c4:0b:
24:60:87:22:47:2a:ad:68:0a:30:8b:29:77:65:e9:
45:fe:0d:44:0a:fc:7b:1d:1f:e6:8a:b1:b8:9c:40:
d9:50:49:ed:5d:91:d4:bb:24:65:ac:8b:07:e0:ea:
7b:53:5f:85:7e:3f:7f:5f:58:8f:3f:e2:86:41:66:
47:f9:76:af:01:bb:0f:e0:07:fb:2b:11:ea:22:23:
20:a3:fc:ad:ea:d8:bc:69:af:d4:52:df:fd:42:22:
6b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:23:B9:00:C0:32:CB:3F:6A:CF:E4:A4:C6:A3:F5:8B:94:07:03:11
X509v3 Authority Key Identifier:
keyid:C4:B2:1C:89:BC:7E:2B:21:40:67:F3:07:07:A4:A0:3D:C3:46:EE:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLIcibx-KyFAZ_MHB6SgPcNG7gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/YyO5AMAyyz9qz-SkxqP1i5QHAxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/xLIcibx-KyFAZ_MHB6SgPcNG7gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.42.0/23
Signature Algorithm: sha256WithRSAEncryption
82:e2:4e:f0:70:60:da:92:73:70:7d:28:27:19:e5:61:b5:a5:
ca:7d:ca:73:89:ac:e0:7a:60:90:39:30:5d:25:0a:5f:4b:1d:
c8:01:34:d9:e3:4c:52:d0:bb:73:0b:05:ae:b3:5f:ad:d3:fe:
fd:3f:c3:ae:22:b2:91:15:94:4b:24:0c:b5:fa:8c:1f:64:42:
03:ee:f3:93:58:f6:b5:4d:2e:32:ac:43:a2:46:48:e3:2e:17:
90:43:5e:67:6f:46:f6:a9:de:20:6d:35:1d:48:5e:a3:fa:92:
34:3e:61:bc:b7:eb:ba:5f:6e:01:9c:68:59:e0:01:69:9b:cd:
48:52:63:2a:d9:c8:a1:bd:77:b9:fb:39:9f:b5:b8:2b:64:fa:
52:dd:9c:9a:6d:bb:77:cd:a4:5d:42:1d:24:2b:2e:21:62:1f:
d4:96:c7:36:ec:82:5c:ac:95:01:21:09:98:be:80:d6:cf:9b:
40:d1:f6:79:7f:33:43:7c:24:bc:17:ba:52:b2:e7:94:e3:42:
77:f9:b4:7e:23:09:13:54:b2:45:16:7a:a7:33:f0:15:4d:8a:
ad:47:ae:6a:7c:1b:a9:1f:d7:39:45:9c:d3:d6:1c:39:59:ec:
1a:fc:0b:b5:21:44:3e:52:b0:95:c1:f3:92:20:aa:c0:c2:b9:
d3:bd:3f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:49 2024 by rpki-client on console-fra.rpki-client.org