Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/Y0oVXvEa3cdiOOPZ3AaKRtpcUE8.roa
File: Y0oVXvEa3cdiOOPZ3AaKRtpcUE8.roa (raw, json)
Hash identifier: j1Q8NMCq22Z90Z7N9GF9e70gCr6JeFB/sdr/0F93SUI=
Subject key identifier: 63:4A:15:5E:F1:1A:DD:C7:62:38:E3:D9:DC:06:8A:46:DA:5C:50:4F
Certificate issuer: /CN=331bce2ee806e93621112dbd618536f775f44fba
Certificate serial: 147E93DE
Authority key identifier: 33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/Y0oVXvEa3cdiOOPZ3AaKRtpcUE8.roa
Signing time: Sat 05 Mar 2022 06:14:41 +0000
ROA not before: Sat 05 Mar 2022 06:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25145
IP address blocks: 185.198.73.0/24 maxlen: 24
45.67.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343839710 (0x147e93de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331bce2ee806e93621112dbd618536f775f44fba
Validity
Not Before: Mar 5 06:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=634a155ef11addc76238e3d9dc068a46da5c504f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4a:28:ae:0a:57:65:76:50:7a:87:c3:a6:6d:
46:a6:86:a2:42:e0:94:5e:3a:43:2a:6f:56:fc:7a:
2a:39:11:89:10:bc:d1:31:81:6b:53:43:86:1f:3a:
dd:31:bd:a3:69:65:35:f3:3b:af:4f:ac:ab:40:8f:
48:2d:ec:08:62:50:00:ec:7b:54:4c:61:3f:ac:e4:
49:6c:3d:a8:9c:fc:fb:db:e4:cd:82:5e:90:b4:66:
b1:ef:6c:ee:e0:dd:80:cd:66:e9:6f:75:8b:74:0e:
fc:a2:31:91:3d:2f:cb:f3:b5:f4:7a:73:a3:ee:cb:
20:53:5b:fa:02:0d:e7:9e:29:cb:00:f2:2a:19:60:
f2:34:a0:6d:40:ba:48:dc:02:42:df:d3:d9:10:d2:
83:84:83:00:b6:8f:4f:ed:19:67:4f:07:89:11:86:
a2:aa:33:c6:dd:35:82:d8:52:99:6d:ed:6b:6c:e7:
dc:df:85:99:a8:be:86:93:64:78:16:1e:5d:a7:cc:
a4:84:32:44:b5:34:46:ca:fe:34:21:81:aa:68:95:
8c:42:49:8d:81:3a:c4:a9:ca:05:89:15:a6:27:d1:
40:16:9e:23:60:7b:a5:0d:18:0b:2f:97:eb:2b:59:
99:b6:ed:a2:c9:05:43:58:bd:a7:2b:be:a2:8e:05:
97:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4A:15:5E:F1:1A:DD:C7:62:38:E3:D9:DC:06:8A:46:DA:5C:50:4F
X509v3 Authority Key Identifier:
keyid:33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/Y0oVXvEa3cdiOOPZ3AaKRtpcUE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.232.0/24
185.198.73.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ce:ad:50:b5:c1:1d:8a:3a:ad:a9:e0:d7:25:e9:5d:61:f2:
53:8d:61:3c:6f:26:4a:9c:15:a8:55:2e:79:62:dd:c3:43:58:
c0:60:f8:b1:f0:2e:c9:05:8a:d2:b0:51:a6:da:9f:4e:ee:3a:
5a:7a:31:0f:0f:86:21:bc:20:10:61:1b:0f:6b:c0:6d:41:9b:
b4:ee:b9:69:53:fa:d2:0c:82:82:49:e4:a8:12:60:91:e4:24:
c7:fc:80:12:7f:e7:28:9d:f4:33:a5:c4:13:b6:c1:bf:55:7f:
b7:7a:79:6b:7b:42:c0:22:4a:7a:1b:78:7a:0b:54:9d:9a:3a:
e4:d6:ea:14:09:77:d3:e6:ba:2f:74:aa:a1:5d:1a:63:aa:4f:
37:a0:3d:79:08:e3:0a:d6:d7:69:af:e2:ad:31:23:61:b7:c9:
9d:bb:4f:bc:fb:f8:25:56:5b:24:1b:ae:29:bc:5c:f5:fc:ce:
fd:21:71:65:0e:bb:cd:b6:19:45:36:9e:9e:fc:0c:4e:bb:41:
fb:c4:67:4b:47:a8:c0:04:ac:58:7a:3a:48:74:a6:eb:e9:a9:
d1:5b:13:60:d8:f6:0f:52:72:94:d0:d5:08:70:b5:a3:54:b1:
9f:ac:60:7b:44:d9:74:d4:29:33:24:74:af:88:5c:80:25:6d:
e5:b3:67:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:27 2023 by rpki-client on console-fra.rpki-client.org