Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/sYi4aug8pgW_dh-m6pYi1r9DlUY.roa
File: sYi4aug8pgW_dh-m6pYi1r9DlUY.roa (raw, json)
Hash identifier: gG8xujt1wu0ZwESlvnb3oIFhuk5EWQuNs5wam1wRaS0=
Subject key identifier: B1:88:B8:6A:E8:3C:A6:05:BF:76:1F:A6:EA:96:22:D6:BF:43:95:46
Certificate issuer: /CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Certificate serial: 01843DF000DF6DB6A4973ABE6C881ACE38A2
Authority key identifier: EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/sYi4aug8pgW_dh-m6pYi1r9DlUY.roa
Signing time: Thu 03 Nov 2022 14:40:49 +0000
ROA not before: Thu 03 Nov 2022 14:40:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207669
IP address blocks: 45.90.240.0/23 maxlen: 23
45.90.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3d:f0:00:df:6d:b6:a4:97:3a:be:6c:88:1a:ce:38:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Validity
Not Before: Nov 3 14:40:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b188b86ae83ca605bf761fa6ea9622d6bf439546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5c:2e:27:49:b4:3f:d6:b6:79:b2:e1:bc:ad:
6f:3a:1b:7b:14:65:d8:af:ac:3d:f4:38:ee:ff:1d:
46:1a:fd:5b:f5:33:b6:cd:4f:00:f0:e4:d4:13:de:
2f:8a:95:be:89:48:6c:56:7d:6a:35:94:fc:b6:aa:
fd:6c:ab:d0:4f:fe:19:a0:a7:e9:ef:5b:39:c8:fe:
ec:13:56:96:e3:3e:30:38:98:c7:96:2d:b6:d7:a3:
f7:fc:7d:97:8b:f0:28:15:95:97:6c:26:56:28:54:
3a:23:a5:c8:db:d5:00:d0:ac:4a:a7:c1:b4:b8:4c:
8e:73:91:b5:4f:60:33:e4:ea:ae:07:8c:16:fe:fd:
b9:e7:ca:a3:11:64:27:a6:9b:87:ec:18:0d:2f:db:
58:d5:49:09:3c:cb:b2:c4:22:c7:11:5a:06:98:29:
4a:f1:c7:ae:85:c6:df:41:55:e0:40:61:c9:63:9e:
eb:0a:29:f5:e5:97:9c:db:fc:04:21:d2:8a:e2:4f:
d8:2f:b6:a9:94:a3:28:b6:1a:ac:f6:86:72:fc:8a:
04:97:96:ce:e8:15:d7:cd:ed:ed:f6:48:e5:77:7a:
23:ff:6c:d9:2e:3a:df:30:72:e6:8d:7f:b9:df:bf:
db:27:65:e6:44:d0:c4:34:40:c1:05:38:fb:b1:b6:
62:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:88:B8:6A:E8:3C:A6:05:BF:76:1F:A6:EA:96:22:D6:BF:43:95:46
X509v3 Authority Key Identifier:
keyid:EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/sYi4aug8pgW_dh-m6pYi1r9DlUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.240.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:a8:61:72:da:de:a6:a7:b4:39:9e:49:5d:be:20:a0:0f:80:
09:c7:7d:68:ab:c7:df:30:55:18:69:d6:70:37:89:72:b4:3b:
17:4b:b7:b3:08:6c:09:9e:e6:b1:b8:23:91:2b:8c:9f:47:c9:
70:fb:a8:47:d6:d2:9a:f7:5d:6f:18:0b:db:06:26:6b:1c:da:
50:2d:21:50:09:7e:89:de:87:73:84:c7:47:42:92:93:eb:78:
d4:f0:c4:a2:3e:ba:dc:b6:5d:8c:fa:70:6b:bf:6f:b7:64:d0:
d0:74:0f:1a:93:18:07:65:73:8b:72:c9:4b:fb:6a:84:87:4f:
f8:fd:4a:4d:1e:6b:77:3e:22:32:c7:6e:7d:0e:5a:d3:36:65:
1f:c3:0b:40:03:07:59:48:1d:40:d2:78:df:62:7c:35:5c:6f:
dd:a7:13:c9:5c:93:ed:5c:96:e1:c8:ae:02:fd:b5:64:b4:2a:
df:b9:05:14:71:14:4c:b6:cc:fa:9f:78:f6:e0:52:1c:f4:9c:
9f:bf:08:75:5c:c6:9e:ab:08:30:b1:a8:1c:e6:12:f5:50:2f:
e9:c1:ad:57:cf:15:58:b5:b0:7d:94:39:d0:40:cb:9e:21:2d:
d8:59:56:26:86:58:e4:da:4e:03:56:e4:65:a0:05:0b:be:b1:
df:34:b9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:55 2024 by rpki-client on console-fra.rpki-client.org