Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/ya57gzWfMouM4s7uwlSZwbJ2ZDY.roa
File: ya57gzWfMouM4s7uwlSZwbJ2ZDY.roa (raw, json)
Hash identifier: l0uVdKvX8Oc1lVBYOXo92pwWYnPdT3uO3EUJmzHmeFI=
Subject key identifier: C9:AE:7B:83:35:9F:32:8B:8C:E2:CE:EE:C2:54:99:C1:B2:76:64:36
Certificate issuer: /CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Certificate serial: 8A4D5C
Authority key identifier: BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/ya57gzWfMouM4s7uwlSZwbJ2ZDY.roa
Signing time: Sat 05 Feb 2022 10:49:06 +0000
ROA not before: Sat 05 Feb 2022 10:49:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210826
IP address blocks: 45.141.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9063772 (0x8a4d5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Validity
Not Before: Feb 5 10:49:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9ae7b83359f328b8ce2ceeec25499c1b2766436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ea:8c:e1:90:cb:eb:42:a4:10:9a:79:69:c5:
31:20:2d:66:5e:ea:d0:4d:4b:27:9a:14:50:c9:13:
20:50:70:76:c3:41:d4:d9:8b:15:bb:47:dc:68:69:
58:46:b7:ac:28:6f:1c:54:81:1e:7f:8e:9a:2c:16:
dd:97:e3:db:5d:61:23:ab:cb:71:55:b7:ff:4c:e4:
29:3d:08:a2:83:d7:c8:9a:30:5e:44:6d:22:50:20:
e8:d6:77:16:ae:c9:d7:a7:76:30:5d:0d:ac:33:cc:
fd:b2:9e:4c:53:46:bc:1f:d7:9f:79:1d:24:c9:44:
2e:7c:b4:65:ef:af:87:e4:7d:ad:7d:99:62:a8:b3:
bb:de:bc:63:c0:64:b3:59:2b:31:a7:5a:84:91:e5:
96:1e:2c:01:2a:2d:ee:6e:60:ca:68:9f:c8:8a:8e:
ef:6a:de:f3:1e:b5:93:73:50:e9:73:b4:4f:e7:8d:
4e:a0:53:5c:55:6c:ad:79:bb:a7:38:c4:f0:f8:e7:
b1:80:c4:64:c9:d5:9d:68:12:bc:8e:ac:56:b5:c6:
87:a9:26:76:61:b7:f5:92:ef:1c:7a:39:67:bf:b8:
22:82:89:81:dd:b5:8f:3d:fb:85:7d:e1:7a:4b:53:
d5:31:56:89:2e:42:39:96:96:f5:07:1b:f2:3a:16:
4b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AE:7B:83:35:9F:32:8B:8C:E2:CE:EE:C2:54:99:C1:B2:76:64:36
X509v3 Authority Key Identifier:
keyid:BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/ya57gzWfMouM4s7uwlSZwbJ2ZDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/uqp7TAHpKcOJI5gatRyXJ6H58H4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.215.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:57:c8:48:d4:5a:54:f0:f6:20:15:5c:fa:ee:59:f5:65:7d:
05:bf:53:cd:27:58:8a:09:d6:bf:06:00:fe:fe:9f:bf:ff:9b:
dc:d2:c8:b7:58:ea:81:02:4d:fd:8d:52:09:fa:39:40:96:cd:
10:2e:dd:ed:75:cd:42:ea:ca:07:07:fe:91:47:dc:d6:8a:70:
eb:27:6f:bb:8b:70:7b:65:a0:7a:04:a5:b4:62:f5:af:c7:af:
05:93:c4:89:f4:1b:78:6f:81:30:d4:11:da:6d:0e:d0:e8:6c:
1a:ed:4d:82:e6:0f:f6:07:9b:80:e8:56:60:1b:d0:d8:22:53:
f6:85:9d:51:a3:1c:92:2c:27:d0:ca:07:6f:67:c3:2a:c1:14:
b9:e0:69:20:40:b4:d1:9f:a4:2b:ae:a5:3a:c7:a3:43:0f:ca:
8f:a0:b3:a6:a6:05:6e:1d:e8:0f:30:d3:68:2f:05:82:64:78:
de:2e:dd:9a:b3:4f:f6:ad:e2:a6:77:3e:63:c4:93:f7:b4:12:
47:ea:fd:81:4a:e0:4c:98:4d:d8:8d:b1:7a:4a:44:c2:3c:03:
ee:fe:97:76:00:7d:6d:b9:dc:e7:f8:2d:82:92:13:b3:89:fd:
16:ae:8e:dd:72:9b:af:f9:d0:ee:cd:cd:36:28:10:83:65:16:
ae:90:e0:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org