Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/cyA55bpVapbdKs15sAf4klz_LtQ.roa
File: cyA55bpVapbdKs15sAf4klz_LtQ.roa (raw, json)
Hash identifier: Jf84RxkPcnOF7482ZWhz2cWzf7kEG373TbNUcf8f/I4=
Subject key identifier: 73:20:39:E5:BA:55:6A:96:DD:2A:CD:79:B0:07:F8:92:5C:FF:2E:D4
Certificate issuer: /CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Certificate serial: 01839E29E232BFB56B1A5A2B0C2E871DE316
Authority key identifier: 8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/cyA55bpVapbdKs15sAf4klz_LtQ.roa
Signing time: Mon 03 Oct 2022 14:04:48 +0000
ROA not before: Mon 03 Oct 2022 14:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49813
IP address blocks: 109.105.128.0/20 maxlen: 20
109.105.137.0/24 maxlen: 24
109.105.139.0/24 maxlen: 24
109.105.138.0/24 maxlen: 24
109.105.144.0/23 maxlen: 23
109.105.144.0/21 maxlen: 21
109.105.146.0/24 maxlen: 24
109.105.147.0/24 maxlen: 24
5.63.132.0/24 maxlen: 24
5.63.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9e:29:e2:32:bf:b5:6b:1a:5a:2b:0c:2e:87:1d:e3:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ceb23e2c5d9f2c734488904505835ef2809fb3b
Validity
Not Before: Oct 3 14:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=732039e5ba556a96dd2acd79b007f8925cff2ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:83:2a:ad:c3:86:ae:5a:0f:8e:1c:73:d6:a6:
54:04:1b:8a:eb:b0:aa:ab:6f:99:3a:45:fc:8e:c6:
1b:46:12:11:bd:e3:ad:3c:35:93:33:0f:4c:61:72:
52:03:02:7f:ea:5b:f7:29:c5:00:dc:91:54:26:ca:
f0:97:6d:ba:6b:63:0d:9f:6a:10:ec:0a:76:2b:06:
8b:a2:aa:bb:b6:4b:bb:52:38:d5:a3:50:2f:2d:30:
67:2c:b9:1f:a7:ab:63:42:4c:1b:5c:1d:2d:e5:25:
f0:39:87:37:74:20:31:44:4e:a9:a6:34:f6:0c:96:
b6:b4:61:92:f2:af:81:1c:ec:0c:48:54:e2:b8:8c:
13:e5:c0:8c:7a:d3:ff:57:77:99:0b:96:be:ca:db:
a2:6d:5f:b1:e0:2b:df:64:a9:4d:b3:a8:2c:b2:cf:
c8:b0:fb:b6:98:30:50:06:d5:ed:ca:91:6e:7a:52:
98:a9:a3:02:f2:cf:33:4c:bb:c6:19:0f:41:e2:f5:
04:33:55:a0:64:4d:59:7a:a6:5f:6e:05:d7:1f:3f:
d5:d8:ca:0f:33:57:ac:7e:b2:e0:da:e0:67:54:e0:
9b:a8:80:77:49:ba:fa:66:bd:ee:5c:8e:2a:05:77:
a8:df:50:ea:5a:bb:0b:89:ff:e8:c1:3d:d5:a2:e2:
42:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:20:39:E5:BA:55:6A:96:DD:2A:CD:79:B0:07:F8:92:5C:FF:2E:D4
X509v3 Authority Key Identifier:
keyid:8C:EB:23:E2:C5:D9:F2:C7:34:48:89:04:50:58:35:EF:28:09:FB:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/cyA55bpVapbdKs15sAf4klz_LtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/699292-3da0-4772-af82-8334e362236d/1/jOsj4sXZ8sc0SIkEUFg17ygJ-zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.128.0/21
109.105.128.0-109.105.151.255
Signature Algorithm: sha256WithRSAEncryption
34:1a:4b:2b:cc:2f:45:2d:fc:e1:ac:04:b9:0b:75:78:12:9d:
c5:75:ed:f3:0a:28:c2:65:86:38:73:ea:14:40:ab:d6:1d:50:
59:89:82:24:14:cd:39:b1:28:24:db:8c:ed:27:84:19:df:02:
59:94:9f:b5:ba:63:9f:5d:71:a1:e2:98:b2:38:3e:95:f4:ba:
47:df:2c:9d:19:49:74:5c:88:f9:a2:97:21:0f:52:4d:af:e5:
86:3e:7c:f2:c6:4b:7d:65:80:e2:1a:81:c1:7e:97:6f:f0:37:
45:02:f8:f9:f3:dc:17:09:29:6a:b1:b0:f6:3f:b9:79:0e:c8:
08:6e:18:0d:99:47:37:bd:0b:5d:4c:3b:22:12:3b:06:7a:2d:
bc:03:c5:be:e3:02:9d:b3:b8:98:ca:e4:0b:71:f4:98:29:fb:
ff:14:10:a8:32:e8:c7:ee:64:c1:42:95:69:63:c9:24:d8:25:
b2:e4:26:62:4e:35:9d:c4:3f:f9:8f:c6:b5:00:38:a7:9e:6e:
c6:3c:20:40:b4:fd:0d:56:cb:41:53:5f:33:f3:25:d3:9d:98:
8d:df:f1:db:09:1d:21:84:d8:59:ea:4c:47:bf:8b:85:3b:70:
e3:73:ce:9c:a7:fa:6e:a9:2f:f0:ed:0f:32:c6:f2:24:2c:ce:
05:52:0a:fe
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:33 2023 by rpki-client on console-fra.rpki-client.org