Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/YxAdb7Dic39N6n6UklJOAXuOP24.roa
File: YxAdb7Dic39N6n6UklJOAXuOP24.roa (raw, json)
Hash identifier: 14DnY2oprbZ85e30tE0PABgy2xYo22AIUc2xEHwHO2I=
Subject key identifier: 63:10:1D:6F:B0:E2:73:7F:4D:EA:7E:94:92:52:4E:01:7B:8E:3F:6E
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: E278AF
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/YxAdb7Dic39N6n6UklJOAXuOP24.roa
Signing time: Mon 04 Jul 2022 10:15:25 +0000
ROA not before: Mon 04 Jul 2022 10:15:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 45.151.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14842031 (0xe278af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jul 4 10:15:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63101d6fb0e2737f4dea7e9492524e017b8e3f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e5:7c:4c:47:fd:2e:cd:b3:0c:77:6e:b8:65:
8c:d0:a6:2e:92:9e:85:6a:5c:98:68:66:ff:a5:4b:
6e:74:2e:97:7b:7e:fd:82:f1:b5:ae:bf:33:9a:0f:
35:9e:01:a6:bb:67:fa:a0:88:86:fc:35:41:9d:bd:
b8:19:74:9a:6c:84:4e:f6:d3:be:74:83:6e:c5:82:
90:93:2b:ee:3c:ef:8a:00:b4:35:d3:74:c6:d1:90:
3a:94:81:74:39:1b:a8:31:8c:51:bc:d6:9f:ef:b3:
6b:84:63:f0:e1:4e:87:05:e0:23:ed:db:0d:3a:41:
77:ec:d6:d6:36:4e:81:65:d3:83:71:54:56:94:e0:
ba:e2:d9:8b:7c:62:18:93:c0:66:99:2e:de:c0:76:
03:d6:ff:c4:64:93:92:fe:4f:bb:6c:2a:eb:d5:2f:
09:b7:18:96:c5:cc:e3:66:66:1e:cf:a0:ed:d9:71:
b7:3c:c5:ee:8a:34:2f:37:1b:0e:65:22:56:94:9a:
92:b5:bb:0a:46:be:99:11:cd:63:b9:d5:cd:59:ce:
ef:d3:d2:9e:e7:5f:46:8e:a0:6f:6c:b3:b0:07:09:
ee:dc:02:57:23:92:0a:cd:f2:50:cc:9d:a3:ce:8f:
2f:c9:b7:e2:1e:b9:6b:c3:f3:15:93:18:a5:c7:aa:
e4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:10:1D:6F:B0:E2:73:7F:4D:EA:7E:94:92:52:4E:01:7B:8E:3F:6E
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/YxAdb7Dic39N6n6UklJOAXuOP24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.70.0/24
Signature Algorithm: sha256WithRSAEncryption
de:3a:f7:3c:96:e2:c5:78:c5:65:cf:c3:7e:46:fc:d6:9e:84:
98:1a:17:a1:bd:a3:97:31:0b:0c:58:c9:e4:b6:40:fd:a0:e0:
3c:57:47:3d:45:35:73:ca:b3:eb:35:2f:36:6a:25:75:cd:a6:
d2:93:0f:3a:20:ca:19:fd:01:e5:5c:f9:ec:45:9c:3b:c8:80:
37:74:86:a5:53:c0:9c:5b:3e:13:10:fd:e1:94:2c:ed:af:e8:
96:15:57:db:3f:29:90:3d:26:ac:aa:38:9b:6d:59:6c:4c:b1:
a6:b3:c7:2f:e3:23:d4:1b:09:03:70:4b:8d:61:4e:3a:5a:88:
4c:af:80:68:dd:c7:fd:05:02:a8:48:6f:a5:ae:3c:93:54:5d:
ce:58:2c:23:f0:da:5f:77:85:89:4e:6d:5d:e2:13:ae:3c:92:
49:67:2e:c8:3a:ee:61:18:e4:8a:1b:b1:d5:66:1b:8c:e4:41:
b4:16:3b:a8:7e:9c:f1:5f:b1:62:bd:b5:ca:01:a2:f7:ef:c8:
37:7d:59:e8:ef:11:95:e0:10:ac:0f:5e:b3:e6:e3:0c:60:90:
5f:ef:c0:fd:02:f9:7f:b7:19:94:72:30:a6:8e:52:2e:da:a2:
b3:f9:c0:fe:87:8b:f4:a5:07:96:01:3b:e0:c2:d5:ec:d3:8d:
cc:67:e5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org