Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/yL9y7tyISxwmcbqekCBmP0Lgdvg.roa
File: yL9y7tyISxwmcbqekCBmP0Lgdvg.roa (raw, json)
Hash identifier: p9IvEJVPdS0EUhPGxxbQR9ynnk/o4dxekv6HTiQKSX0=
Subject key identifier: C8:BF:72:EE:DC:88:4B:1C:26:71:BA:9E:90:20:66:3F:42:E0:76:F8
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 016B0EB6
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/yL9y7tyISxwmcbqekCBmP0Lgdvg.roa
Signing time: Sat 01 Jan 2022 01:58:29 +0000
ROA not before: Sat 01 Jan 2022 01:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.92.116.0/22 maxlen: 22
194.28.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23793334 (0x16b0eb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Jan 1 01:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8bf72eedc884b1c2671ba9e9020663f42e076f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c2:a7:15:0c:76:a1:f3:a9:cf:ca:bf:ab:61:
c0:6f:fb:10:22:f4:dc:ad:f8:ef:b9:a8:14:c7:0f:
a1:40:10:1e:fa:fd:58:83:71:46:1e:79:9f:e3:4a:
fc:e2:2b:33:74:3d:f2:1a:0a:62:dd:18:84:cd:d4:
cf:a9:d2:16:be:4c:c5:05:5f:6c:48:4e:64:60:7b:
74:28:e1:f0:3e:5a:58:ae:2e:6c:38:da:c0:8b:96:
bd:25:96:7f:2c:dc:03:79:ed:a9:ac:91:62:1a:48:
f5:22:5e:5f:ab:a6:93:fc:32:d3:36:0d:d7:92:ef:
d2:5a:ef:23:a6:d2:3f:c1:ad:11:85:71:de:d4:b4:
4f:37:0f:41:0b:15:dc:26:d6:74:9b:72:81:95:54:
6a:d7:d3:f3:82:6f:65:04:be:f4:f3:7c:ee:2b:83:
d9:f7:fa:86:3f:f2:03:8e:f0:cd:2f:8d:fb:64:6f:
8b:69:75:26:8b:ea:b8:e0:f5:c3:dd:69:bf:f8:fd:
80:8d:85:e9:0d:39:b8:3c:81:30:08:bf:de:6d:41:
61:25:52:82:76:42:6c:a5:f0:84:ac:7b:cc:4f:35:
30:c4:19:8a:e5:ff:9a:37:c2:b1:54:ed:b0:17:9a:
ac:99:28:0d:5b:45:43:7a:06:97:ee:76:15:38:89:
09:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BF:72:EE:DC:88:4B:1C:26:71:BA:9E:90:20:66:3F:42:E0:76:F8
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/yL9y7tyISxwmcbqekCBmP0Lgdvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.116.0/22
194.28.46.0/23
Signature Algorithm: sha256WithRSAEncryption
45:c2:aa:ca:2c:36:e0:8a:38:2d:7c:79:b8:70:82:2c:62:a0:
05:c3:e1:4f:b7:19:21:61:fb:c8:90:d2:7e:7a:5d:17:75:78:
0d:76:c2:bd:25:e1:11:d1:d8:56:1e:0d:93:00:96:36:7c:4e:
b9:f5:5a:b8:af:49:24:ca:0b:0a:b8:af:3f:0f:57:00:d9:45:
44:13:72:b6:1d:35:52:8e:e9:69:38:e5:55:8b:cf:ff:41:c7:
bb:02:c6:62:3f:e2:1a:3a:9a:35:6f:96:f7:b9:9c:96:71:35:
48:f5:e3:8a:2c:ad:e0:1f:4f:96:de:11:2f:b5:05:c9:ac:d0:
b3:bd:39:03:6c:db:49:f7:be:50:9f:12:ad:4c:b8:2c:50:f3:
c1:12:af:06:4e:8a:06:0d:15:9a:3f:ae:df:bb:f2:87:f2:62:
27:8b:f1:17:8a:6c:c1:f2:9c:26:d4:0c:51:51:0c:5f:52:30:
00:cd:22:8b:71:52:d2:4b:44:ff:e7:bb:de:a8:3b:16:d5:12:
f7:f5:70:7d:be:10:39:fe:10:2c:4f:29:dc:73:be:ca:25:6d:
4c:8b:6f:58:7d:de:10:16:86:e2:b2:82:7a:e6:8f:f8:68:ed:
c6:7d:9d:a2:67:ad:27:38:75:ef:2f:f4:aa:5d:e0:1e:74:d2:
bc:d2:0c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:15 2024 by rpki-client on console-fra.rpki-client.org