Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/yIkMFqJv2Yrn3za-h65qVABY5_Y.roa
File: yIkMFqJv2Yrn3za-h65qVABY5_Y.roa (raw, json)
Hash identifier: Gt4jJO0nIBpHtoeLUTBpRpVGRXV/RZw6q1GIamYxGlc=
Subject key identifier: C8:89:0C:16:A2:6F:D9:8A:E7:DF:36:BE:87:AE:6A:54:00:58:E7:F6
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 01845EB4E2A510351471FADF282B769AB95E
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/yIkMFqJv2Yrn3za-h65qVABY5_Y.roa
Signing time: Wed 09 Nov 2022 23:23:43 +0000
ROA not before: Wed 09 Nov 2022 23:23:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.153.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5e:b4:e2:a5:10:35:14:71:fa:df:28:2b:76:9a:b9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Nov 9 23:23:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8890c16a26fd98ae7df36be87ae6a540058e7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:73:81:65:fa:c3:6e:fe:aa:79:09:c8:99:07:
fa:99:bb:e4:d7:42:79:3c:07:a0:ce:b4:f3:be:76:
e6:16:23:61:a0:88:a2:71:00:a0:d2:80:7e:0a:66:
2b:7a:65:eb:6b:37:31:34:97:73:ca:4e:6e:c4:f3:
45:f7:31:ac:c7:57:26:c1:2f:b9:80:b8:e3:f7:46:
e8:7d:df:d3:8a:1d:06:5a:0e:21:06:aa:4f:2d:31:
de:55:fe:74:ba:94:31:eb:89:42:42:61:aa:fd:35:
3b:35:82:b5:30:54:ee:9f:06:01:6a:7f:76:d3:ed:
bc:73:42:11:5c:c1:26:b6:10:ad:9d:9c:d8:83:21:
5e:e7:dd:87:ea:04:b9:7a:75:94:f5:42:aa:7b:a6:
59:1b:1e:63:4c:0a:aa:db:1e:ee:8b:ff:a0:3b:96:
5c:73:eb:1e:4e:a1:72:6f:1e:1f:7a:43:31:95:a2:
8e:ed:6b:fc:7a:ac:2a:e1:c1:78:64:19:3d:40:8f:
a9:9e:a5:22:e1:03:fb:d0:6e:79:2f:23:0d:86:f3:
fd:3d:36:74:cb:8a:07:62:7f:77:df:6a:5a:41:5f:
bf:f6:2f:e7:e1:f4:1d:aa:50:54:86:8c:0f:d4:b8:
9f:ee:4e:6c:9f:53:a9:f7:1f:93:cd:50:62:ef:2b:
c3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:89:0C:16:A2:6F:D9:8A:E7:DF:36:BE:87:AE:6A:54:00:58:E7:F6
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/yIkMFqJv2Yrn3za-h65qVABY5_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.91.0/24
Signature Algorithm: sha256WithRSAEncryption
95:c8:75:ae:11:c1:15:4d:29:c0:4b:e9:cb:ed:4e:91:e1:2f:
ab:ed:11:2b:66:26:b0:4b:4c:1b:31:be:52:6e:71:c9:94:82:
fd:36:fb:f6:70:77:f5:ad:e7:fb:12:5f:80:f1:4d:07:a3:b5:
4d:43:5a:c1:a7:2d:6e:b7:64:3e:ac:45:23:10:b9:a4:32:85:
2d:9b:de:eb:9b:0f:70:74:97:67:c5:c4:f2:b9:60:74:23:84:
b8:6a:63:ff:f5:3e:cf:b3:c1:5c:b3:09:4a:5c:c1:bc:bd:8b:
7a:d2:6c:a3:f0:94:d1:87:4a:96:17:25:f9:20:33:63:f8:ca:
39:73:b2:82:29:be:d6:66:83:da:45:cc:21:b9:b0:60:e2:a4:
99:8c:f3:cc:89:a5:91:d9:70:62:33:79:6f:37:f1:0f:46:8c:
40:9a:f1:fd:92:e7:33:d9:cc:08:0d:b5:d4:13:55:8b:b7:79:
ae:8e:8d:a6:93:1b:b6:da:65:af:2b:fc:cf:7a:0b:bc:03:7b:
8a:10:d3:96:14:d3:c1:41:99:3f:16:50:01:b3:15:55:06:4b:
a2:7d:ef:1f:98:11:eb:25:92:4d:7c:5d:a6:cb:88:04:eb:5d:
7e:13:30:54:1f:49:0d:f1:83:05:36:51:ca:19:f0:14:fb:24:
26:ff:09:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:57:54 2025 by rpki-client