Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/YmcyzvEFiS1fOzvYp510BhO1LzU.roa
File: YmcyzvEFiS1fOzvYp510BhO1LzU.roa (raw, json)
Hash identifier: WdZjKyRfX9B7QkOy9G1t/6PAreadwPLUmXO2GGBnhS8=
Subject key identifier: 62:67:32:CE:F1:05:89:2D:5F:3B:3B:D8:A7:9D:74:06:13:B5:2F:35
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0181DCC718030ADC9BF2656D0DF3CD2D6506
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/YmcyzvEFiS1fOzvYp510BhO1LzU.roa
Signing time: Fri 08 Jul 2022 07:47:24 +0000
ROA not before: Fri 08 Jul 2022 07:47:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 45.139.163.0/24 maxlen: 24
2a07:e344::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dc:c7:18:03:0a:dc:9b:f2:65:6d:0d:f3:cd:2d:65:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 8 07:47:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=626732cef105892d5f3b3bd8a79d740613b52f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:16:8b:64:1e:ae:81:38:36:36:79:b9:53:
65:ce:3c:7c:1c:45:0a:a2:ff:11:5f:19:79:1e:4d:
49:e2:80:ef:af:22:ca:7d:4e:82:bb:a1:40:bd:f2:
38:2d:67:e0:85:0c:d0:93:42:d3:cb:03:bb:c5:9f:
a4:ee:bf:ce:21:2b:e6:81:f0:d6:dc:04:40:29:8d:
90:6a:9a:2c:6f:34:82:39:db:bf:c0:2d:c0:c1:6c:
d8:80:2e:63:31:e9:41:a1:4f:e4:f9:ac:84:8b:a3:
ff:b5:a4:cc:4d:95:f8:65:a3:95:3f:bd:3c:aa:c3:
a6:00:eb:2e:17:6c:ed:f7:70:4a:a9:13:4f:9c:23:
8a:6b:ac:45:66:e7:44:38:df:7f:94:b7:a5:1a:ec:
6f:d8:3d:38:28:54:c7:a2:0a:0d:85:ed:1d:d3:da:
a4:18:50:30:6c:05:f0:26:aa:f9:27:d0:e6:ed:52:
f1:09:af:d3:ca:19:8b:05:59:8f:f2:1a:ea:27:23:
a0:1d:b5:2a:ff:2f:64:b9:f7:0f:67:78:ed:5e:f5:
d4:45:ae:39:14:d0:91:43:42:11:66:31:2c:e1:ed:
d0:ad:e5:6c:66:70:e2:88:e1:49:96:e9:17:97:f6:
4c:13:32:97:d8:19:8b:e5:2c:0d:c8:fa:54:85:1d:
05:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:67:32:CE:F1:05:89:2D:5F:3B:3B:D8:A7:9D:74:06:13:B5:2F:35
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/YmcyzvEFiS1fOzvYp510BhO1LzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.163.0/24
IPv6:
2a07:e344::/32
Signature Algorithm: sha256WithRSAEncryption
96:6e:e2:f3:2c:b4:8b:b4:c2:15:58:cd:a4:48:fb:8f:c3:3f:
b4:da:59:a0:c4:59:35:f0:d0:3c:92:bf:35:06:10:54:77:30:
24:e4:23:23:14:be:58:b0:83:80:0d:75:79:86:6f:c5:d6:65:
29:ef:04:e5:4c:9d:33:e9:25:63:cd:0b:86:38:c3:55:ef:fa:
84:1c:f4:36:70:7d:e9:30:b2:5a:3c:8b:ba:a0:06:71:53:3e:
46:71:e9:b7:3b:bc:30:7b:52:06:d3:1a:f8:05:8f:33:ef:64:
45:ee:c9:f7:84:aa:64:b7:b1:ee:ce:aa:f9:6e:8f:b7:7e:4e:
a3:49:33:d1:52:a1:a2:fe:b5:c0:71:4b:3f:58:b7:84:39:c7:
1f:5d:40:b3:8f:c3:b7:5f:b7:6d:70:e8:e7:b1:d5:27:2d:e5:
e0:3a:5d:dd:d4:4e:34:05:98:73:a2:b4:c6:83:f9:8e:a0:2f:
89:bb:31:fe:d2:b6:b5:69:1d:ff:a6:4b:69:38:60:c7:32:b5:
70:e8:09:2a:e6:1a:93:47:45:b4:23:12:0f:e7:b7:fc:02:89:
41:a2:23:28:ab:6d:f1:0c:71:f8:a6:bd:85:05:86:96:3d:7a:
cf:d2:7e:60:f1:1e:2f:62:d1:e2:3f:c7:44:67:0c:27:35:6a:
f1:26:c8:33
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYHcxxgDCtyb8mVtDfPNLWUGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjIwNzA4MDc0NzI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjY3MzJjZWYxMDU4OTJkNWYzYjNiZDhhNzlkNzQwNjEzYjUyZjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVcWi2QeroE4NjZ5uVNlzjx8HEUK
ov8RXxl5Hk1J4oDvryLKfU6Cu6FAvfI4LWfghQzQk0LTywO7xZ+k7r/OISvmgfDW
3ARAKY2QaposbzSCOdu/wC3AwWzYgC5jMelBoU/k+ayEi6P/taTMTZX4ZaOVP708
qsOmAOsuF2zt93BKqRNPnCOKa6xFZudEON9/lLelGuxv2D04KFTHogoNhe0d09qk
GFAwbAXwJqr5J9Dm7VLxCa/TyhmLBVmP8hrqJyOgHbUq/y9kufcPZ3jtXvXURa45
FNCRQ0IRZjEs4e3QreVsZnDiiOFJlukXl/ZMEzKX2BmL5SwNyPpUhR0FMwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGJnMs7xBYktXzs72KeddAYTtS81MB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvWW1jeXp2RUZpUzFmT3p2WXA1MTBCaE8xTHpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYujMA0E
AgACMAcDBQAqB+NEMA0GCSqGSIb3DQEBCwUAA4IBAQCWbuLzLLSLtMIVWM2kSPuP
wz+02lmgxFk18NA8kr81BhBUdzAk5CMjFL5YsIOADXV5hm/F1mUp7wTlTJ0z6SVj
zQuGOMNV7/qEHPQ2cH3pMLJaPIu6oAZxUz5Gcem3O7wwe1IG0xr4BY8z72RF7sn3
hKpkt7Huzqr5bo+3fk6jSTPRUqGi/rXAcUs/WLeEOccfXUCzj8O3X7dtcOjnsdUn
LeXgOl3d1E40BZhzorTGg/mOoC+JuzH+0ra1aR3/pktpOGDHMrVw6Akq5hqTR0W0
IxIP57f8AolBoiMoq23xDHH4pr2FBYaWPXrP0n5g8R4vYtHiP8dEZwwnNWrxJsgz
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org