Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/YsWX_YyZoHlQmpyC-AjosHZS_hQ.roa
File: YsWX_YyZoHlQmpyC-AjosHZS_hQ.roa (raw, json)
Hash identifier: SAvybaDqrICaOInwaIxLQ4TBrqHH49oXhFNAn2cjLGI=
Subject key identifier: 62:C5:97:FD:8C:99:A0:79:50:9A:9C:82:F8:08:E8:B0:76:52:FE:14
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0183222B8E9DDFE918B48871C3BD7054C370
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/YsWX_YyZoHlQmpyC-AjosHZS_hQ.roa
Signing time: Fri 09 Sep 2022 12:13:43 +0000
ROA not before: Fri 09 Sep 2022 12:13:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52007
IP address blocks: 45.89.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:2b:8e:9d:df:e9:18:b4:88:71:c3:bd:70:54:c3:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Sep 9 12:13:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62c597fd8c99a079509a9c82f808e8b07652fe14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:52:7a:20:cc:dd:a0:0d:ed:93:e8:49:7a:22:
0c:cc:67:b6:87:ac:0c:61:1d:11:db:7b:0e:fe:67:
7c:f1:fb:38:1b:eb:2d:62:d9:69:c5:16:c9:5c:67:
2f:4f:1b:7a:75:c7:87:47:06:b3:71:09:21:e4:06:
f8:23:35:86:60:c7:64:07:0e:39:53:c3:31:92:03:
81:be:e1:1a:2f:53:a6:8a:e6:a2:7f:d1:3a:f7:5b:
a4:25:92:4f:23:45:34:45:e4:13:ec:9a:e5:fb:80:
6c:b1:81:89:7c:09:9d:7f:ab:5c:fb:cc:9c:9f:e2:
b4:1b:b3:06:25:a4:24:80:54:95:99:22:17:81:5d:
9d:95:7d:c1:46:48:57:19:19:05:93:d6:f7:2b:83:
b0:87:79:2d:d5:1d:03:8b:09:21:42:84:28:55:7f:
23:01:39:df:ec:a8:ed:1e:4f:0d:55:f0:b7:a0:c0:
46:8b:26:79:3c:bf:bd:53:16:78:3e:02:d0:27:14:
35:3c:09:f7:82:f5:b0:8c:8c:ba:c5:9e:18:5b:c6:
95:0c:66:3f:f4:4d:6c:a2:a7:5f:44:a8:85:3b:e8:
b1:a6:77:cc:cd:46:da:6c:1d:61:ff:ec:d0:38:33:
70:db:ad:16:7c:5d:01:67:db:b5:ee:98:04:63:d0:
45:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C5:97:FD:8C:99:A0:79:50:9A:9C:82:F8:08:E8:B0:76:52:FE:14
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/YsWX_YyZoHlQmpyC-AjosHZS_hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.55.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:10:9b:07:53:56:04:5b:b3:b8:30:d9:46:e2:d2:74:57:39:
c1:66:99:fd:76:f5:d9:1f:dc:7c:c9:d6:9c:3f:93:ea:ea:4d:
03:38:c4:f3:5c:fa:a2:95:ad:d9:da:ec:50:88:47:d1:67:f3:
8d:0f:1b:ef:d3:eb:97:39:19:f2:c4:77:b1:0f:14:62:d5:ad:
59:c4:d1:da:49:16:de:ac:45:fb:0a:21:c4:77:ba:b6:c9:be:
ef:be:fa:19:4c:b6:db:9d:b2:fa:43:05:b4:0b:d7:33:d7:40:
59:28:2b:f3:0e:19:63:ee:36:d9:e9:a2:fa:f1:4b:a4:11:2c:
03:16:b2:88:01:9a:eb:02:af:12:eb:62:45:ef:16:1a:a3:93:
82:ea:e1:19:e8:51:ac:b9:30:3b:eb:4c:88:84:9b:99:5d:cf:
b7:4c:58:da:9b:c1:68:fb:4c:52:b8:ba:47:ec:d5:b6:04:7e:
53:21:b9:53:d1:97:e7:bc:5f:66:a9:6b:88:36:ae:10:0a:19:
5d:51:af:6c:4d:26:e5:45:3b:5b:b0:f5:fd:2d:c0:6e:08:44:
85:6e:06:ca:09:c3:94:93:8f:ea:2c:5f:cd:f8:f8:ef:40:4d:
71:95:09:65:d5:ef:a2:71:ba:fd:16:f1:20:8f:84:f5:e5:0d:
34:84:dc:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org