Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/PyzUoBvu2jGFVwCUoRPWW8mwmTM.roa
File: PyzUoBvu2jGFVwCUoRPWW8mwmTM.roa (raw, json)
Hash identifier: oTAbaAlFJnfmIZrsazLJUZ9dZt/exDwPbG6cgiW7Lt4=
Subject key identifier: 3F:2C:D4:A0:1B:EE:DA:31:85:57:00:94:A1:13:D6:5B:C9:B0:99:33
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 070EF205
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/PyzUoBvu2jGFVwCUoRPWW8mwmTM.roa
Signing time: Sat 01 Jan 2022 06:54:15 +0000
ROA not before: Sat 01 Jan 2022 06:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60079
IP address blocks: 45.15.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118419973 (0x70ef205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Jan 1 06:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f2cd4a01beeda3185570094a113d65bc9b09933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:37:ac:b9:a1:55:2a:93:91:b0:9f:30:f5:7a:
b7:11:bc:a0:32:c9:1a:fa:86:5c:e3:aa:82:cf:8e:
69:0b:dc:1d:53:03:4c:df:9d:51:59:33:eb:6b:15:
d4:a8:73:45:06:8a:41:5d:ae:30:76:c0:66:b7:ea:
c3:a3:05:4f:20:e9:ff:e7:96:bd:37:75:89:7c:25:
b6:b8:2a:98:5c:2b:c0:84:c3:7f:b7:57:4e:b3:1e:
6f:0a:d5:08:37:c6:bb:d0:63:a4:76:00:73:b0:03:
2a:3f:2b:18:99:a8:83:d7:03:c4:28:58:56:0e:9d:
bb:13:dc:08:14:b7:bc:33:cf:b3:a7:34:e0:e8:36:
ac:7b:af:da:98:1e:46:6d:8c:08:d0:c4:b4:bf:62:
47:78:1e:da:4a:b4:61:01:68:1d:92:e4:fd:d8:92:
06:c6:f9:4a:45:ba:7f:a9:d3:b6:e6:43:a4:1e:68:
36:85:45:e8:9d:49:5e:3e:54:cd:74:1a:0c:9e:9e:
d7:cd:26:ff:57:ae:8f:3a:b3:4d:88:40:6a:f9:17:
46:57:85:e5:98:a4:2c:dc:d9:68:13:93:0d:9e:4d:
22:88:1f:f4:87:77:ef:b4:22:d7:b0:94:09:49:c0:
7e:9a:33:a8:bb:4e:10:7d:a8:65:d9:8f:db:b2:c2:
a5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2C:D4:A0:1B:EE:DA:31:85:57:00:94:A1:13:D6:5B:C9:B0:99:33
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/PyzUoBvu2jGFVwCUoRPWW8mwmTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.104.0/22
Signature Algorithm: sha256WithRSAEncryption
31:e9:4d:d2:06:5b:5e:ed:06:5b:a0:a2:74:57:d3:05:a0:8d:
32:b5:8a:d8:19:78:c0:e0:fc:44:bf:20:c3:ae:aa:0e:63:b3:
4a:98:50:ba:ec:e8:06:f0:2c:12:92:5f:7d:c9:7b:37:90:e8:
a4:f5:a1:37:0b:32:66:15:51:76:3a:22:d0:37:fa:da:96:f6:
27:2f:e5:b8:73:d9:01:0d:e8:17:d8:57:1a:5e:38:72:2b:ed:
52:3e:83:ed:4b:ea:31:cf:d2:b0:7d:96:6b:de:97:b8:c5:96:
02:75:7d:4b:30:08:50:5f:c0:6c:40:58:a2:1d:c3:5e:ec:98:
0d:17:ac:1e:2e:8f:20:41:f4:62:03:1e:1f:6a:34:cb:20:fc:
0e:2c:d4:d5:b8:c1:52:b4:4f:72:4d:e6:c1:be:2e:8d:42:02:
29:40:06:c4:7e:c8:d9:c8:7a:09:7a:69:db:57:be:c8:79:35:
17:13:f0:71:4b:a0:79:1b:8a:92:dd:c7:c2:d2:2d:dc:bc:b6:
92:84:fd:bc:9c:2b:e8:32:37:96:71:88:90:37:86:fc:14:b3:
a6:22:2b:14:9a:7f:88:96:d5:0f:9c:44:fd:bb:46:09:35:11:
a3:79:20:e9:4a:5c:a3:4e:8a:30:ea:77:c7:e8:f5:9c:70:72:
f7:c5:7f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:16 2024 by rpki-client on console-ams.rpki-client.org