Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/yyEx5DzyS0Q1uKMKdq2MmYRh0U8.roa
File: yyEx5DzyS0Q1uKMKdq2MmYRh0U8.roa (raw, json)
Hash identifier: e121ilozsuaPUok32VTJqQaAx3MebREzczx10ykXg4s=
Subject key identifier: CB:21:31:E4:3C:F2:4B:44:35:B8:A3:0A:76:AD:8C:99:84:61:D1:4F
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 0184B516F544832D4B10129051AB67DC9049
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/yyEx5DzyS0Q1uKMKdq2MmYRh0U8.roa
Signing time: Sat 26 Nov 2022 17:58:11 +0000
ROA not before: Sat 26 Nov 2022 17:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.85.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b5:16:f5:44:83:2d:4b:10:12:90:51:ab:67:dc:90:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Nov 26 17:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb2131e43cf24b4435b8a30a76ad8c998461d14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:59:40:ad:68:53:ca:84:f4:fc:a1:2a:97:2a:
a3:33:98:82:cd:8b:c1:0e:1b:f5:05:0a:9e:e7:53:
40:d6:80:a6:74:ef:f2:ff:8c:e8:24:37:f5:1f:3b:
48:c3:58:14:26:1c:31:53:9c:b0:83:7e:bc:db:21:
38:36:31:91:4d:9a:78:d9:38:7c:fc:81:31:fe:ae:
85:d8:2c:c6:56:18:25:81:05:9f:3f:9e:9e:e0:47:
16:e7:58:35:56:42:16:43:ab:24:fe:e7:3f:f7:5f:
fa:8a:15:f5:80:f2:c2:59:74:5b:cd:d8:8d:e8:d1:
e0:41:7b:4d:01:f6:b0:8c:42:fd:b0:e3:45:69:ed:
24:d6:6e:18:59:06:b4:76:a5:ae:7e:5a:20:56:de:
04:72:e8:74:13:c5:c0:b7:8b:bf:f4:15:86:30:8e:
54:08:53:ff:ca:53:c3:be:40:34:c0:54:fe:f3:1d:
7c:24:47:d3:35:12:76:64:49:dc:06:99:01:fe:9f:
95:5e:4c:b0:ee:5b:d2:a6:0b:98:13:45:8a:f2:6b:
55:91:cf:64:5f:a1:9e:be:75:d0:4b:fb:de:48:b4:
a7:4e:98:be:91:0c:44:ac:73:05:45:e1:a5:77:d4:
65:4a:34:42:45:01:fc:00:cb:63:83:3f:91:65:e4:
f6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:21:31:E4:3C:F2:4B:44:35:B8:A3:0A:76:AD:8C:99:84:61:D1:4F
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/yyEx5DzyS0Q1uKMKdq2MmYRh0U8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.191.0/24
Signature Algorithm: sha256WithRSAEncryption
06:e7:be:f5:53:29:e4:13:42:21:84:64:5b:79:7a:b0:0a:60:
95:b4:0b:41:68:54:79:d8:84:9e:bd:4c:ea:3e:74:bb:6f:3f:
e1:e2:36:91:66:92:72:4f:66:3d:fd:25:24:44:62:ed:96:e4:
15:88:7d:32:a4:8d:03:7b:c6:88:26:49:ad:01:02:6d:05:f5:
7f:28:21:f1:27:cb:74:84:4c:55:94:e0:d8:42:48:23:a2:63:
1c:9a:1d:df:30:12:e9:4c:1a:bf:a9:fd:b6:c8:2a:47:d2:7e:
f0:d5:50:ba:5a:81:4a:95:11:55:d7:41:47:40:54:a9:e9:2b:
38:18:5c:d1:e4:51:58:d0:17:81:ac:e2:b1:a8:04:df:ad:68:
07:1c:b0:49:b9:b0:34:df:bf:55:c5:14:aa:6d:3e:6c:b4:65:
71:a7:85:e7:2e:5f:88:2d:da:32:50:1e:31:79:68:c6:d6:0c:
54:57:37:4b:94:d0:54:ad:9c:f6:7d:98:be:44:de:f1:cc:75:
f0:a1:99:4a:75:78:8c:d3:a4:9c:25:f8:b6:f7:6a:5b:94:2f:
53:e2:27:23:da:5c:af:34:20:bb:46:30:7a:0d:fd:5d:ac:1b:
78:88:2c:bd:7b:2d:83:6f:7c:cb:b8:15:38:0d:c8:27:b2:a0:
75:36:df:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:12 2025 by rpki-client