Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/1YZl3YCot6Bwx2vy8ht1dOJyei0.roa
File: 1YZl3YCot6Bwx2vy8ht1dOJyei0.roa (raw, json)
Hash identifier: Fm2H/yxZUtQt3ogSIQ98pnbQJxFQ1Dg92gitlp5t+Ck=
Subject key identifier: D5:86:65:DD:80:A8:B7:A0:70:C7:6B:F2:F2:1B:75:74:E2:72:7A:2D
Certificate issuer: /CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Certificate serial: 03BC4185
Authority key identifier: C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/1YZl3YCot6Bwx2vy8ht1dOJyei0.roa
Signing time: Sat 01 Jan 2022 06:02:23 +0000
ROA not before: Sat 01 Jan 2022 06:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212122
IP address blocks: 45.143.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62669189 (0x3bc4185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Validity
Not Before: Jan 1 06:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d58665dd80a8b7a070c76bf2f21b7574e2727a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:76:9a:6d:17:47:16:a4:67:6a:12:ee:81:4d:
9b:9f:a2:c8:94:1d:7c:e1:26:18:81:93:2a:80:93:
ca:17:a4:a8:49:25:bb:fa:8d:e4:5c:9e:74:c1:61:
d5:ec:35:ac:f1:81:8d:7f:b7:72:c1:b1:73:5e:80:
f4:f4:87:7a:5f:4d:d2:d4:e2:a9:f5:ce:3c:96:8a:
10:dc:ee:d2:04:03:68:bd:6c:6b:de:fa:03:7c:4a:
91:71:2d:d9:30:5a:60:9f:38:44:0e:e0:3c:f1:51:
8b:2d:d2:78:65:03:0a:06:09:45:e2:de:cf:a1:07:
38:d0:d2:b5:4c:f6:95:87:aa:c4:d9:53:98:83:27:
51:e4:9c:d4:b1:f9:6c:76:27:91:18:7d:86:27:84:
c8:ec:e1:ed:fc:52:9c:0b:2f:7e:30:57:c6:d5:1a:
08:4e:83:5d:5a:22:11:96:94:e7:24:37:ed:51:f3:
bc:b6:66:9f:36:a5:35:ff:78:b6:3b:ac:ec:71:74:
b7:5b:c2:72:79:41:67:6d:61:28:00:7e:56:6a:6b:
4b:6b:6d:05:f6:60:a2:fe:f9:47:8e:13:37:1d:ec:
6c:4c:02:2a:46:08:0f:33:cb:ef:0f:e4:9a:21:0d:
b4:fd:c6:d6:91:56:a0:5c:3c:25:3a:ac:60:07:46:
ff:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:86:65:DD:80:A8:B7:A0:70:C7:6B:F2:F2:1B:75:74:E2:72:7A:2D
X509v3 Authority Key Identifier:
keyid:C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/1YZl3YCot6Bwx2vy8ht1dOJyei0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/wSrJsU_SYajSdjqtQXQyvrxJoNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.28.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:f7:3e:9a:a6:e6:d5:68:5d:56:df:59:25:45:ee:ed:5c:9f:
b9:71:e6:1d:0c:82:47:cd:86:2e:86:cd:dd:d7:b2:8b:cc:ae:
b5:b1:14:5e:32:f5:6a:40:ae:e7:1b:41:40:f7:71:0f:47:7f:
bc:aa:af:4f:03:08:55:82:81:50:b6:53:13:68:25:76:8d:93:
29:42:d8:31:20:44:27:c8:e3:84:91:72:9c:24:70:3b:36:5a:
24:8f:b7:1d:e8:f0:b6:88:15:45:48:9c:98:06:12:e1:b5:29:
da:88:09:73:8b:49:aa:81:bb:9f:ff:8a:2a:78:72:13:c2:99:
0b:1d:7d:2f:4b:ec:37:fd:c1:02:5a:6e:b1:d0:4e:94:2c:9c:
37:dd:81:c6:c9:22:b4:32:e6:97:ec:32:70:99:69:c9:54:f8:
40:58:92:fc:eb:94:d9:52:dc:d5:0f:4d:de:13:57:62:08:2e:
d4:92:9c:5e:ce:ad:1b:be:76:e8:a6:80:cb:c2:52:ad:38:cf:
e7:e9:eb:af:50:cf:c5:94:03:38:03:7f:a9:84:3d:ba:9c:4c:
bd:e1:1f:25:ea:6f:3d:78:22:0a:4f:2e:6c:07:f2:0e:5b:9c:
17:2a:a0:d9:e0:82:d3:d8:19:41:fc:a8:d7:5f:18:8e:08:df:
c1:38:ba:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:02 2024 by rpki-client on console-fra.rpki-client.org