Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/YZnn9EudgSb0XARDQaTK0RwM7kA.roa
File: YZnn9EudgSb0XARDQaTK0RwM7kA.roa (raw, json)
Hash identifier: uF/S27DvtJPb3tPphFmi8Nv7PF31jUj/ryTd7Io1FYU=
Subject key identifier: 61:99:E7:F4:4B:9D:81:26:F4:5C:04:43:41:A4:CA:D1:1C:0C:EE:40
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 015A6881
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/YZnn9EudgSb0XARDQaTK0RwM7kA.roa
Signing time: Sat 01 Jan 2022 02:59:22 +0000
ROA not before: Sat 01 Jan 2022 02:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207320
IP address blocks: 45.95.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22702209 (0x15a6881)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 02:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6199e7f44b9d8126f45c044341a4cad11c0cee40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:71:58:e7:00:2f:22:cb:da:b2:ed:47:20:be:
5f:19:a6:96:b7:1f:cf:bd:c9:ea:17:c8:ac:27:44:
f7:8a:e2:6a:d9:15:68:b8:cb:ca:8d:1d:55:85:a6:
70:55:67:1d:bc:f6:a3:3a:d9:53:a7:bc:d1:2f:78:
91:01:b7:98:26:dc:80:a7:95:f9:69:92:8e:50:65:
7f:f7:59:b6:15:29:4a:0c:3b:79:62:42:f5:3c:15:
79:e9:8b:88:6b:ac:05:fc:bf:1c:de:ff:a3:54:08:
27:30:b2:46:05:f6:2c:e6:dc:d3:99:9f:dd:94:69:
27:5c:bd:20:96:f6:04:79:7e:9b:f4:a0:fd:87:6e:
ee:ef:19:b3:3e:04:6d:b2:68:83:0d:af:d3:ab:6f:
6a:b3:75:f5:66:eb:fa:c9:db:05:f0:ff:d4:98:31:
ed:37:82:2a:ca:06:e1:b3:96:56:68:4c:b1:87:6a:
30:70:1d:c4:5b:d9:6e:11:28:a2:07:58:ea:ba:4b:
ef:17:3e:b9:bd:f5:98:80:ee:28:49:07:6f:e2:18:
1e:28:7a:8d:5f:ef:bb:9c:83:bf:10:5c:b1:88:0b:
ff:b6:d7:db:7e:ff:71:ab:cc:24:62:04:a9:bf:53:
55:52:27:ba:d5:27:04:c1:a3:12:ff:20:93:bb:6e:
94:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:99:E7:F4:4B:9D:81:26:F4:5C:04:43:41:A4:CA:D1:1C:0C:EE:40
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/YZnn9EudgSb0XARDQaTK0RwM7kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
85:36:9e:3f:38:ae:75:f9:1e:66:cc:ea:61:b3:14:d9:98:86:
26:0a:41:e9:fc:ff:33:d7:78:2b:81:cd:53:64:09:a2:e7:6f:
67:88:9b:7c:4a:0c:e2:21:17:f0:24:cd:20:9b:d5:7f:14:97:
58:8c:bc:52:e9:03:5b:ba:0d:35:ea:bb:bd:d8:aa:19:7b:83:
cd:8c:b1:7d:8c:0b:62:af:cb:03:3c:af:8c:64:a1:7c:75:61:
4c:a8:19:82:18:8e:52:37:ff:19:d1:24:a1:b1:1a:23:af:ed:
40:39:1a:a8:2c:58:3b:7d:e8:e2:eb:e5:fc:dc:30:bf:e9:26:
2d:bd:ab:0f:49:19:38:60:b3:20:26:df:f2:7d:72:17:3d:bd:
a8:bb:ea:bc:db:97:16:5b:c6:24:c6:25:b5:98:62:b9:49:c2:
e5:26:b3:5e:35:24:d4:15:92:19:db:1d:1e:c2:9e:20:73:67:
df:28:92:2e:00:af:93:68:7d:06:cb:4e:55:83:11:23:ff:7d:
1d:28:29:7b:69:b6:81:46:c8:29:39:0e:ff:7a:a4:0a:ec:b2:
c8:b0:d0:27:7c:57:4d:bc:d2:58:d0:03:a4:c6:d8:85:6c:c4:
c7:30:4f:de:a1:2a:71:c5:cd:92:62:01:75:d5:77:b0:06:44:
5c:05:cc:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org