Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Hy5_JiylBfjpYdbZzjnSoOEftoc.roa
File: Hy5_JiylBfjpYdbZzjnSoOEftoc.roa (raw, json)
Hash identifier: Hdgvn3cqzCxRApHLzHn/kY4vkjweYEEvR0P1wNKqfEY=
Subject key identifier: 1F:2E:7F:26:2C:A5:05:F8:E9:61:D6:D9:CE:39:D2:A0:E1:1F:B6:87
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 0185ABA9CFF8B07887B9B251A4BE3FAB5BB7
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Hy5_JiylBfjpYdbZzjnSoOEftoc.roa
Signing time: Fri 13 Jan 2023 15:05:10 +0000
ROA not before: Fri 13 Jan 2023 15:05:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210122
IP address blocks: 45.8.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ab:a9:cf:f8:b0:78:87:b9:b2:51:a4:be:3f:ab:5b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Jan 13 15:05:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f2e7f262ca505f8e961d6d9ce39d2a0e11fb687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1e:26:8d:ca:cb:d6:f2:8d:37:5f:dc:9b:b9:
fc:46:bd:92:35:34:56:cf:d7:e4:e4:f9:9e:30:2b:
6c:19:33:ac:a9:59:f1:ef:78:ac:8f:04:09:47:c4:
9b:e8:a7:f3:21:be:a7:a3:2c:70:5a:ca:af:43:06:
98:21:85:3d:8d:33:dd:73:af:0e:c7:9e:38:49:87:
3d:83:98:65:9d:e2:25:ba:83:1c:a9:28:85:d2:29:
0c:70:8f:8a:26:2f:d1:26:03:63:bc:d9:c6:21:b7:
d1:4a:85:8e:4f:70:d3:cb:0d:ce:cd:a4:b0:c8:15:
83:d1:1c:cd:0a:28:48:d3:7c:b3:10:16:97:9b:db:
03:f5:c1:af:3a:40:f4:5c:77:23:73:5d:49:1a:ef:
cf:9e:b1:62:2c:15:c5:49:17:c6:e1:ef:61:c1:12:
c6:fa:eb:ce:13:22:24:19:a7:9f:8a:1c:10:b2:db:
19:66:c1:cf:42:01:6f:2e:88:d2:69:81:65:dc:0c:
4f:63:d0:54:b0:0b:4a:91:ae:f1:71:9c:18:d3:81:
bf:32:80:0f:f3:7b:62:66:c9:2b:59:77:cc:7d:97:
ef:e1:c2:8d:4f:dc:b8:41:20:93:bd:f1:fd:b0:10:
f4:11:54:1c:05:34:7e:ec:31:c7:cb:d2:6d:e1:6c:
d5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:2E:7F:26:2C:A5:05:F8:E9:61:D6:D9:CE:39:D2:A0:E1:1F:B6:87
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Hy5_JiylBfjpYdbZzjnSoOEftoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.176.0/24
Signature Algorithm: sha256WithRSAEncryption
10:7e:f6:3d:af:23:60:c5:b3:2b:6e:9a:ab:86:1f:b2:06:20:
b8:1e:54:00:d4:ac:4b:83:26:33:c7:46:53:cc:e6:a5:c0:57:
b0:87:d9:25:05:05:2c:56:2d:b0:a1:92:71:c9:06:94:27:ba:
c6:40:27:28:f1:2a:2d:32:b8:ba:fa:6c:43:25:d0:c7:9b:14:
c7:84:8b:b6:eb:92:bd:0d:a5:65:da:32:64:3a:99:4e:e6:17:
20:0a:45:26:b1:35:75:e5:8f:39:9b:0b:de:03:c2:3a:a4:b8:
b1:99:dd:1d:96:4d:5c:36:68:2a:72:65:14:e4:b4:ef:dd:55:
ab:71:11:a3:f2:16:fd:fa:10:f5:17:80:ce:0b:f3:ba:44:4e:
70:4e:bd:40:2d:8f:15:52:3c:54:5b:da:a7:10:6e:ff:2b:02:
3f:c9:98:94:ba:c4:e9:74:f7:7c:f2:f9:b7:46:73:b0:86:7f:
c9:74:82:19:9a:a6:c4:f8:a5:ec:33:c6:bc:c8:3f:67:78:11:
cb:66:30:cd:0e:4e:e7:e7:53:04:24:87:e4:1c:06:f8:fa:cf:
22:db:3d:4d:9c:ae:c0:59:18:fb:89:85:e8:2b:75:43:21:e6:
64:2e:26:1a:dc:46:09:47:cd:b5:66:13:86:4f:e3:2c:96:b6:
e9:c9:36:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:11:55 2025 by rpki-client