Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7yz5Aj348LllVHLYqcDK8s_C8Aw.roa
File: 7yz5Aj348LllVHLYqcDK8s_C8Aw.roa (raw, json)
Hash identifier: tPvofBlVynE8VkhQ9zIuvtsMu8NnMR5qD1h/vyCLtN0=
Subject key identifier: EF:2C:F9:02:3D:F8:F0:B9:65:54:72:D8:A9:C0:CA:F2:CF:C2:F0:0C
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018B835DFB1CF39D8177C3BBD5284DFD6CC9
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7yz5Aj348LllVHLYqcDK8s_C8Aw.roa
Signing time: Tue 31 Oct 2023 01:34:16 +0000
ROA not before: Tue 31 Oct 2023 01:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61368
IP address blocks: 45.155.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:83:5d:fb:1c:f3:9d:81:77:c3:bb:d5:28:4d:fd:6c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Oct 31 01:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef2cf9023df8f0b9655472d8a9c0caf2cfc2f00c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:52:e9:16:10:a6:cb:ae:a0:48:cc:00:ac:0d:
d4:e0:12:1c:32:fc:16:e3:10:76:0e:ab:30:86:3b:
0a:b1:42:c4:10:4c:74:c6:36:7c:fc:08:68:ea:3c:
88:18:71:8a:6d:f5:af:64:ec:ab:cf:16:84:3c:9f:
0f:d3:a1:47:fc:ad:67:96:ac:ed:9e:1d:62:49:30:
41:8f:ad:7f:76:8c:99:9e:35:c3:29:0c:f1:fa:68:
1a:06:2a:b1:08:40:2e:ce:21:18:f4:ec:ed:3a:13:
03:8f:a5:bb:4b:2f:26:3d:7e:95:e9:b3:f2:ad:a1:
16:a4:2b:64:86:e3:fd:11:1b:5e:78:28:66:c3:cc:
a1:b8:26:ef:de:9e:10:4b:03:ed:9d:46:ea:12:19:
54:14:dc:03:b2:86:ad:dc:7d:f1:1d:d5:a5:2c:20:
95:4c:2f:b3:2c:2b:f9:dd:22:79:e1:52:06:48:df:
e3:58:21:a1:6d:f5:97:d5:79:90:d1:50:bd:75:84:
f4:86:08:eb:88:54:61:2a:55:2d:95:b9:ed:fc:09:
ef:f6:0b:50:c5:99:13:2d:29:8b:66:cd:5e:f5:16:
60:ff:d8:a5:db:bd:85:72:4c:c0:0f:a2:8f:c2:43:
dc:1a:a2:1e:45:d1:25:1b:d3:a6:fd:08:e0:4b:ae:
cb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2C:F9:02:3D:F8:F0:B9:65:54:72:D8:A9:C0:CA:F2:CF:C2:F0:0C
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7yz5Aj348LllVHLYqcDK8s_C8Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.90.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:05:de:22:e7:de:c9:d7:14:b2:f8:52:a2:0c:42:1f:7d:3e:
eb:72:13:37:ef:9f:9d:19:c3:53:be:a6:88:15:b2:0b:11:d2:
5b:57:cf:f7:a2:0f:b6:bd:a7:39:cb:eb:61:68:0d:f3:fa:93:
d8:2b:99:93:e9:e0:c6:5d:86:35:da:c3:61:a4:af:d6:b4:95:
e7:cc:4f:ab:ff:bd:96:1a:d4:0b:68:73:0a:48:65:cb:80:42:
7d:76:e1:aa:44:69:df:c0:36:05:22:a7:e2:1b:cc:00:b8:1b:
57:fa:30:6f:82:be:c5:b2:8d:3f:0d:6c:e3:79:67:c8:37:c8:
9a:90:9b:4e:55:68:80:ac:97:86:63:8b:f7:8a:27:8a:45:fe:
b7:15:07:6f:82:1c:fb:6c:7f:2b:64:6b:0e:44:2a:8b:fb:b5:
f2:d2:31:1d:31:0f:df:4c:0a:25:28:20:75:ec:38:20:3c:65:
72:29:26:2c:9b:96:b5:4f:6f:92:91:e4:ee:83:06:bc:06:3c:
d1:77:10:88:da:f4:d6:ef:d2:b6:71:d4:6f:62:04:d5:53:14:
ea:e3:16:2b:74:34:d0:94:91:ef:ff:db:15:5a:b8:78:48:2b:
61:ae:ed:5b:95:c6:04:69:03:08:71:a5:c6:f4:e1:81:00:c6:
65:9c:96:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:55 2025 by rpki-client