Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yWubD9sHVs-rsFVgQLRtFDFspY4.roa
File: yWubD9sHVs-rsFVgQLRtFDFspY4.roa (raw, json)
Hash identifier: 4qx8g462O502QtaK8eMCetOPX55nbMXroaYWvxGMyes=
Subject key identifier: C9:6B:9B:0F:DB:07:56:CF:AB:B0:55:60:40:B4:6D:14:31:6C:A5:8E
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0816EB8B
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yWubD9sHVs-rsFVgQLRtFDFspY4.roa
Signing time: Sat 01 Jan 2022 16:03:23 +0000
ROA not before: Sat 01 Jan 2022 16:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398986
IP address blocks: 45.130.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135719819 (0x816eb8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 16:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c96b9b0fdb0756cfabb0556040b46d14316ca58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:5a:99:3d:10:71:5f:3f:7b:1f:3b:ab:c0:cd:
16:82:e6:24:0d:77:d6:48:07:1f:91:e2:e8:a7:ac:
c8:32:1c:d5:6d:0e:a2:22:aa:24:31:ab:3e:ae:14:
95:be:de:82:24:4b:35:f9:a9:7b:e3:65:b2:eb:cc:
03:e9:4c:0c:14:24:9d:52:92:d3:3e:9f:e8:56:eb:
70:23:45:ed:5d:b3:02:10:e3:76:78:03:b5:c4:fe:
cb:f9:69:97:da:26:ac:ec:9b:28:c4:9d:54:2f:c9:
6d:29:28:8d:38:d8:9c:c1:a2:37:0f:44:75:75:0a:
be:2d:8e:7c:e0:0d:60:f5:fb:3a:79:bb:2b:7f:9e:
4b:d3:53:ab:b5:52:bb:95:18:bd:7d:e0:15:0d:72:
9d:3b:2d:ab:b9:9d:fb:ef:22:69:b3:e0:fe:3d:7a:
82:bd:50:67:c9:9e:e7:ce:d2:e7:82:c7:bc:fb:ed:
3c:a2:4b:a6:1c:e9:af:e1:45:7d:05:85:cb:7d:d9:
2e:6b:23:ac:83:b1:ad:04:c9:ae:e6:38:b3:09:fd:
46:d8:1c:6a:e3:9a:86:db:f7:c8:96:ae:6c:9b:34:
12:2e:67:15:e3:c4:bc:08:ac:33:ee:b2:64:05:56:
55:fd:ce:a2:ab:12:7c:0d:77:13:3d:fa:cd:a7:48:
58:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6B:9B:0F:DB:07:56:CF:AB:B0:55:60:40:B4:6D:14:31:6C:A5:8E
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yWubD9sHVs-rsFVgQLRtFDFspY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.53.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:d8:2f:69:bd:5d:52:b9:b6:a5:d9:d4:0a:79:82:83:d7:fa:
82:3f:91:12:9e:07:7f:3b:b3:2c:f2:34:bf:cd:9f:56:bd:bd:
e2:6e:ec:82:f1:be:1c:3c:8b:5c:7e:7a:99:2c:f0:1a:cb:ad:
61:6c:58:50:51:e2:6d:46:7d:6c:4b:14:a7:c5:6f:4e:74:78:
b4:f3:3d:c8:94:d1:c8:bf:fe:5e:3e:50:e8:e9:ef:ce:25:04:
4b:26:43:7b:69:aa:97:29:0c:84:5b:db:3d:56:04:d7:d2:1e:
9d:50:9c:c5:d1:a1:71:e2:b2:d0:be:c0:bf:fe:21:79:23:1b:
00:be:73:66:f6:a5:f2:f2:4f:ca:7e:86:08:96:fd:92:d1:78:
16:c1:80:94:a6:52:9b:0f:71:4b:97:b7:30:b4:d3:fc:dd:ad:
51:15:fb:43:9e:2d:30:c2:42:1f:d3:6b:93:4f:ec:5a:46:bc:
13:2c:8d:9e:3d:4a:c1:c9:bd:fb:e5:a9:4a:4d:51:c7:83:35:
21:a8:ec:58:97:9f:5f:88:46:87:3b:c6:3c:11:a2:7c:7b:1b:
b1:2c:43:ab:17:77:58:27:15:1f:a5:92:e7:58:fc:08:f9:52:
fe:d5:14:fe:d9:ac:f1:12:71:d2:c7:9c:e1:6b:c4:d4:40:08:
d7:78:45:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:23 2023 by rpki-client on console-ams.rpki-client.org