Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/YvBPyMX4EmflQCPIjILNKV0wiZg.roa
File: YvBPyMX4EmflQCPIjILNKV0wiZg.roa (raw, json)
Hash identifier: e/CbrQelwXyJCPiyGeqzl470Uhvcs/vWMX3HelU0604=
Subject key identifier: 62:F0:4F:C8:C5:F8:12:67:E5:40:23:C8:8C:82:CD:29:5D:30:89:98
Certificate issuer: /CN=d5b6d2a0a8c538e917fb94aa96791a3be7b8063a
Certificate serial: 07358855
Authority key identifier: D5:B6:D2:A0:A8:C5:38:E9:17:FB:94:AA:96:79:1A:3B:E7:B8:06:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bbSoKjFOOkX-5SqlnkaO-e4Bjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/YvBPyMX4EmflQCPIjILNKV0wiZg.roa
Signing time: Sat 01 Jan 2022 06:57:22 +0000
ROA not before: Sat 01 Jan 2022 06:57:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208417
IP address blocks: 45.129.17.0/24 maxlen: 24
45.129.16.0/24 maxlen: 24
45.129.18.0/24 maxlen: 24
45.129.19.0/24 maxlen: 24
2a0e:3640::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120948821 (0x7358855)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b6d2a0a8c538e917fb94aa96791a3be7b8063a
Validity
Not Before: Jan 1 06:57:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62f04fc8c5f81267e54023c88c82cd295d308998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:60:69:8e:38:ef:3d:29:6f:7d:8a:ce:d9:fa:
5d:5f:e6:75:8a:9b:2e:7f:c0:e5:6b:8d:f1:36:be:
bf:71:d1:b3:5b:f5:91:f7:dc:fe:2d:da:31:b6:33:
48:36:39:10:a0:e4:05:1e:94:5a:71:7d:60:a5:ba:
4b:d3:40:45:36:e6:be:33:01:5b:f3:85:43:80:28:
4a:36:81:78:b7:03:59:1e:4e:e2:da:30:16:fe:ea:
a6:e7:5f:32:9b:40:d0:ee:f7:a8:22:ad:95:65:4f:
8e:01:ff:64:62:5e:0f:e9:ca:54:ec:92:b7:cd:d3:
65:e7:8d:86:c0:c4:fa:83:0f:06:9e:3b:3e:42:79:
57:42:c0:0f:d1:56:b9:21:74:a9:d8:2d:c6:9b:f2:
b6:74:09:b6:69:25:ba:11:14:61:4c:0f:fc:fa:fe:
ae:03:5b:ea:e2:f5:cb:b6:3b:af:27:96:7e:4e:ba:
5e:ae:ab:3a:2b:5d:fe:cd:31:96:fd:45:ef:74:06:
24:ff:35:05:e7:e9:ac:0f:f3:4f:57:e0:78:a2:f8:
d1:a7:d1:01:5c:11:7f:76:29:33:e3:81:af:42:78:
b8:fd:eb:0f:01:29:14:63:a6:9c:fd:35:8b:8a:9e:
6b:4b:ba:ff:cd:ee:f8:46:e2:b9:47:91:b0:ae:0d:
4f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F0:4F:C8:C5:F8:12:67:E5:40:23:C8:8C:82:CD:29:5D:30:89:98
X509v3 Authority Key Identifier:
keyid:D5:B6:D2:A0:A8:C5:38:E9:17:FB:94:AA:96:79:1A:3B:E7:B8:06:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bbSoKjFOOkX-5SqlnkaO-e4Bjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/YvBPyMX4EmflQCPIjILNKV0wiZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/1bbSoKjFOOkX-5SqlnkaO-e4Bjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.16.0/22
IPv6:
2a0e:3640::/48
Signature Algorithm: sha256WithRSAEncryption
c0:c6:cb:6a:05:15:ad:6c:30:22:9c:b3:96:94:11:93:57:e5:
d7:e9:fc:43:c1:35:f1:28:91:ed:1d:41:0b:40:17:73:88:9a:
61:df:67:3e:6c:cb:04:1b:54:7e:ba:ce:7d:ab:84:aa:91:ef:
6e:d0:dd:36:ed:da:9f:e8:91:76:4e:96:1f:f6:1e:0f:b1:10:
83:88:7e:2e:2d:2f:ba:6c:6d:bd:66:f0:b6:34:20:58:de:4f:
f3:52:c4:91:66:70:ff:6f:b4:56:24:03:80:bd:4b:73:72:f4:
6d:73:b6:01:fe:d4:c7:72:c3:d6:f3:b6:d6:ea:68:80:c8:aa:
94:ab:a3:8a:5d:00:ee:55:5b:25:ea:4a:a2:55:51:5c:b9:e3:
90:89:fe:1a:db:9b:2d:73:58:22:84:d7:37:f0:bb:1f:49:12:
72:07:e0:3e:a8:9b:c8:aa:27:43:7c:48:2d:91:0a:cd:6e:4e:
e3:59:6e:77:66:70:c7:78:b0:74:15:af:94:ca:cd:b0:93:fc:
3a:1d:cb:fc:f2:34:d8:09:2e:bf:1f:16:55:df:58:c0:a2:b4:
a8:7e:67:9b:31:42:55:39:51:68:f6:43:25:5b:6f:f4:77:85:
6b:de:55:d5:72:10:04:ec:10:98:79:29:93:92:a1:b9:4a:b7:
f0:ec:52:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-fra.rpki-client.org