Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/yPeI--Eu_Sg6_wd1INdIYF914mw.roa
File: yPeI--Eu_Sg6_wd1INdIYF914mw.roa (raw, json)
Hash identifier: agCPd6ETX/eRTG7BdBAZ0y7UCG9KZ+j6icUlQvhCveQ=
Subject key identifier: C8:F7:88:FB:E1:2E:FD:28:3A:FF:07:75:20:D7:48:60:5F:75:E2:6C
Certificate issuer: /CN=f1b8bbb1e186a599d4cc058cabf4df0e252f31fa
Certificate serial: 07250614
Authority key identifier: F1:B8:BB:B1:E1:86:A5:99:D4:CC:05:8C:AB:F4:DF:0E:25:2F:31:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bi7seGGpZnUzAWMq_TfDiUvMfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/yPeI--Eu_Sg6_wd1INdIYF914mw.roa
Signing time: Wed 01 Jun 2022 12:41:32 +0000
ROA not before: Wed 01 Jun 2022 12:41:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 45.152.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119866900 (0x7250614)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1b8bbb1e186a599d4cc058cabf4df0e252f31fa
Validity
Not Before: Jun 1 12:41:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8f788fbe12efd283aff077520d748605f75e26c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:db:c4:8d:de:7a:e7:74:78:ba:15:ce:4f:a8:
3c:db:22:49:5a:ef:fc:34:81:4d:f6:b7:cc:c2:ef:
ae:a8:30:4d:3d:66:b7:b6:6c:06:40:cf:9c:9b:8e:
0e:ac:13:08:fa:cc:3f:cf:7a:2b:78:64:11:f1:2a:
7d:db:47:13:ea:22:9e:1d:c0:7e:95:6a:32:04:12:
9e:9e:cb:53:bd:08:32:92:2c:f0:c8:cf:b3:a6:e6:
05:42:62:90:42:d0:60:8c:6c:98:98:b2:34:27:58:
f4:47:5f:74:16:c9:ff:b8:78:3a:0c:07:48:b1:39:
8e:82:30:bf:dd:59:bf:9d:ed:23:08:fd:67:ab:57:
38:3c:a6:42:33:42:30:aa:30:b0:ea:c5:ae:67:d1:
37:68:b3:ed:a7:18:3f:e7:38:9b:ff:1e:28:8f:b8:
ec:f9:16:a3:54:46:be:48:11:52:a8:15:ef:47:e6:
f2:8f:c9:74:74:c5:d0:f2:89:b0:b9:bd:c9:4a:a5:
7c:a4:0e:89:57:f1:01:1f:62:de:e2:57:17:87:ee:
0e:ea:d9:c7:55:d2:40:89:0b:aa:a1:d8:51:97:8f:
b5:0a:fb:e4:90:79:c1:f8:0a:78:50:25:bb:6b:f9:
76:68:7b:29:af:f4:e5:a5:ea:05:97:70:8a:d3:07:
f8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F7:88:FB:E1:2E:FD:28:3A:FF:07:75:20:D7:48:60:5F:75:E2:6C
X509v3 Authority Key Identifier:
keyid:F1:B8:BB:B1:E1:86:A5:99:D4:CC:05:8C:AB:F4:DF:0E:25:2F:31:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bi7seGGpZnUzAWMq_TfDiUvMfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/yPeI--Eu_Sg6_wd1INdIYF914mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/8bi7seGGpZnUzAWMq_TfDiUvMfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.86.0/24
Signature Algorithm: sha256WithRSAEncryption
69:86:a3:b9:b5:73:85:20:a4:59:f0:31:c2:9b:78:89:98:cd:
09:ed:93:db:37:61:5d:53:75:63:c5:2a:46:05:e4:f8:af:a9:
d0:ad:e7:32:1c:68:71:65:87:c2:e8:c2:60:69:13:f7:7b:de:
da:2f:24:f5:46:49:18:f1:41:fe:49:36:a8:5b:98:91:e7:eb:
d4:ee:7c:99:a5:9e:f8:a2:5b:7b:d9:3e:e2:f0:8e:52:0f:3b:
8f:4a:c1:bb:8b:7c:68:4d:a8:c9:bc:cc:6e:e7:87:1f:2e:0b:
51:3f:1a:38:41:cc:d0:20:be:d0:08:d0:11:b5:39:b4:88:e5:
4b:5d:e9:f6:84:24:d1:f8:1c:c4:f5:8f:8d:4b:a6:fd:a5:6f:
89:8c:21:b9:01:a8:de:07:c5:84:14:96:1b:00:9d:0f:02:93:
0f:ba:0e:b8:80:c1:46:87:6c:98:58:be:8d:f9:46:e4:26:eb:
b5:7e:73:63:7c:88:f9:a8:d8:94:68:35:1e:34:24:4f:68:1f:
7c:28:8d:a4:7d:10:79:cb:48:a3:de:c8:21:77:7b:20:e8:02:
bc:13:43:c7:90:b8:bd:51:9b:c1:15:85:00:77:7d:db:9e:a9:
90:62:ea:d3:1d:e5:9d:8e:81:6a:aa:98:5b:1b:dc:8b:8b:09:
49:d5:8c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:47 2023 by rpki-client on console-ams.rpki-client.org