Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/Y-r-GV9Y7O45HfylUUy-eu0ePWA.roa
File: Y-r-GV9Y7O45HfylUUy-eu0ePWA.roa (raw, json)
Hash identifier: +dhOJ+sZZs23mtldzuaRX+axXNPyvvJBjJxoXmqDtHE=
Subject key identifier: 63:EA:FE:19:5F:58:EC:EE:39:1D:FC:A5:51:4C:BE:7A:ED:1E:3D:60
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 099CB1CB
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/Y-r-GV9Y7O45HfylUUy-eu0ePWA.roa
Signing time: Sat 01 Jan 2022 05:04:12 +0000
ROA not before: Sat 01 Jan 2022 05:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201343
IP address blocks: 89.46.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161264075 (0x99cb1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 1 05:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63eafe195f58ecee391dfca5514cbe7aed1e3d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:90:c0:6b:57:5e:57:45:0c:9c:11:b3:87:6a:
7a:c9:90:a0:ab:57:61:c0:25:90:51:50:a5:04:b1:
c5:10:61:13:43:c2:b2:7e:60:68:95:29:58:b9:85:
51:e2:c8:7e:67:a7:1f:45:2f:05:ba:ad:79:b7:cb:
a7:8f:b0:f6:52:03:2b:b7:5b:4e:7f:99:3f:1e:3a:
db:3d:98:0b:56:7e:83:29:ee:10:1b:b0:f1:b9:ea:
83:7c:0f:2f:0c:5f:2c:29:0a:0b:fa:f2:59:16:81:
4a:d9:22:3f:55:00:36:83:be:a9:76:1b:51:7e:82:
e4:6a:84:9e:ea:1a:32:47:5c:9f:3c:bc:a5:7a:1b:
53:96:6f:bb:82:1b:d8:c5:7b:73:23:b6:fc:c6:6a:
12:17:db:93:db:e1:b9:b6:ec:aa:87:f9:2b:e8:4a:
95:f9:0c:96:d2:a0:2e:b6:69:f4:dc:5c:7e:53:da:
38:a4:fd:07:09:62:de:70:ef:40:ec:2e:00:db:92:
c9:42:5a:33:8f:c5:ba:5d:56:c4:bc:86:65:28:8e:
e4:be:7c:2b:3a:13:25:0f:b4:bf:80:ea:1a:e9:01:
9b:7c:c4:c7:d8:4d:a6:ae:e5:d3:0c:c2:eb:a6:2e:
5f:2f:d8:47:3f:9b:2d:00:ca:a5:34:c6:36:ce:fc:
46:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EA:FE:19:5F:58:EC:EE:39:1D:FC:A5:51:4C:BE:7A:ED:1E:3D:60
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/Y-r-GV9Y7O45HfylUUy-eu0ePWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.136.0/21
Signature Algorithm: sha256WithRSAEncryption
c0:3e:ec:b9:90:4b:08:3e:2f:c6:0c:6e:f4:ab:b2:ad:c3:fa:
e4:73:d7:0e:e1:cf:b9:7f:41:1f:c1:93:48:ba:f6:e7:b8:25:
91:f7:93:b6:01:44:37:4b:f2:51:35:34:e1:aa:5c:38:a6:e2:
df:9c:82:a0:a4:2a:9f:ef:39:a6:01:16:81:13:24:83:45:d8:
37:e9:6a:2d:44:ab:de:11:f6:58:38:bd:b6:c3:83:f6:35:95:
04:08:d2:6c:96:28:d6:56:8b:f8:2d:75:e4:fe:89:30:d5:77:
bb:ea:27:33:29:7e:c7:2b:fa:36:31:d1:f8:6a:81:91:74:8c:
74:8c:57:b1:ff:1d:63:fc:5e:39:2e:fc:b8:47:37:0e:65:da:
de:8a:20:6a:c4:e6:38:22:78:7c:c8:fc:d9:1c:fc:27:9a:66:
b0:f2:96:aa:1b:23:be:56:18:65:ff:69:00:ac:ce:b2:50:b1:
c3:a7:38:8e:41:7d:10:93:b2:3a:6b:b4:21:ab:5a:e6:99:31:
39:98:e7:15:32:3e:ab:98:b6:70:d6:62:ee:84:8a:7d:c9:37:
9d:9a:8b:a6:84:f4:0f:05:cf:57:af:9c:f2:9d:29:ad:54:09:
dc:b4:26:12:26:ac:cc:ff:36:7e:58:20:c1:51:b9:ba:a1:02:
d5:18:6f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:02 2023 by rpki-client on console-ams.rpki-client.org