Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/YnXSA4fJkMYasDt1z_YSbS87VJw.roa
File: YnXSA4fJkMYasDt1z_YSbS87VJw.roa (raw, json)
Hash identifier: O73GAHUiuC2+ZC0B1wZdjOzlpavDFXw6bGrAtEvAIu0=
Subject key identifier: 62:75:D2:03:87:C9:90:C6:1A:B0:3B:75:CF:F6:12:6D:2F:3B:54:9C
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 03584DBB
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/YnXSA4fJkMYasDt1z_YSbS87VJw.roa
Signing time: Sat 01 Jan 2022 07:01:43 +0000
ROA not before: Sat 01 Jan 2022 07:01:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.153.164.0/22 maxlen: 24
91.235.2.0/24 maxlen: 24
45.140.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56118715 (0x3584dbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 1 07:01:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6275d20387c990c61ab03b75cff6126d2f3b549c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:64:dd:43:40:5f:bb:8f:35:24:2b:e4:37:e9:
c8:d8:be:54:46:b3:4c:05:4d:bd:a7:51:e2:78:17:
cf:4d:94:5a:74:b3:23:53:80:1a:f6:4e:11:a0:6f:
5b:e0:a8:94:e6:95:d8:74:92:59:e0:23:b0:54:66:
36:8d:f9:e4:81:78:75:81:86:08:45:6d:55:8e:15:
70:04:fc:11:f3:73:e1:db:0c:e6:73:66:4f:bc:2a:
6f:fd:ca:78:ef:e6:4f:b4:31:29:d4:f6:e8:43:f1:
aa:af:d9:85:68:db:cb:75:e8:af:be:83:80:13:d4:
e6:04:43:52:d9:ce:5d:78:30:26:28:6e:fc:99:79:
d5:a7:e7:88:4e:7a:49:89:a7:09:d5:7b:06:15:95:
f0:8e:75:34:1c:a2:d9:0e:03:ab:d0:fa:14:1b:e3:
5d:fa:b6:54:fc:3f:d5:46:7d:01:fa:8f:75:dc:a5:
dd:da:59:17:9a:8d:6e:58:35:19:88:4e:7f:81:61:
1b:49:9e:e6:d3:e7:aa:d6:fa:3d:ca:72:59:c8:d6:
16:2a:4a:91:0e:c3:52:60:a9:05:7e:28:be:a1:72:
e2:5d:0e:26:22:01:23:9a:7e:db:69:09:f5:06:00:
ef:72:ef:7c:32:57:bb:98:a3:48:0d:b4:3e:b3:e1:
e2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:75:D2:03:87:C9:90:C6:1A:B0:3B:75:CF:F6:12:6D:2F:3B:54:9C
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/YnXSA4fJkMYasDt1z_YSbS87VJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.192.0/22
45.153.164.0/22
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
01:24:7b:bd:05:69:a0:e4:c7:56:5c:7b:e2:f3:e3:b3:a5:78:
44:5d:a3:a0:0c:01:50:c4:d2:e3:bd:25:6b:1b:8d:35:84:fe:
46:de:17:63:ec:46:ba:cf:e3:b9:da:79:cc:26:99:7b:e3:d9:
cb:c4:9d:74:5c:17:9d:67:8a:a1:2c:8f:51:d9:a4:df:d2:10:
06:e2:56:e2:29:8a:f5:f1:f7:d6:e6:d4:75:df:58:9d:57:7e:
bb:7c:f9:25:55:2b:1f:2c:60:8d:36:80:ee:8c:de:6a:98:d8:
57:9f:12:f9:9c:9a:c3:91:32:62:a6:3f:1b:87:1d:0c:76:61:
4a:d2:ff:32:0a:9f:b8:15:2e:2c:58:c8:d5:1f:d5:73:a5:63:
ff:f0:d6:b9:7b:ec:af:02:9a:41:fa:92:49:8b:2e:a0:e4:a8:
86:ef:b0:bd:7f:15:57:8c:42:cc:4f:30:8f:93:c3:37:3d:f0:
8d:86:6d:bc:de:d4:08:af:87:ec:07:84:2f:ea:2f:9a:7e:8e:
db:7c:b8:09:43:5a:10:34:34:c3:77:f6:bb:3c:91:6a:0e:95:
5a:53:bb:d7:6d:a7:94:14:09:e3:95:19:ba:33:47:44:10:d7:
9b:79:63:37:f5:81:15:a4:ad:66:3f:6d:e2:29:fc:11:1c:52:
76:53:ef:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org