Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/YverIOBBx7gCIhC_8mFs_YSzk3Y.roa
File: YverIOBBx7gCIhC_8mFs_YSzk3Y.roa (raw, json)
Hash identifier: oyK25p6azcRLMgIdIhmKIFJcLta5HyDea1KreESZFfo=
Subject key identifier: 62:F7:AB:20:E0:41:C7:B8:02:22:10:BF:F2:61:6C:FD:84:B3:93:76
Certificate issuer: /CN=3749975439fe4ffa9310262acbdd5f723cee2223
Certificate serial: 01856DA66B0354372501ECF7A066023FC81C
Authority key identifier: 37:49:97:54:39:FE:4F:FA:93:10:26:2A:CB:DD:5F:72:3C:EE:22:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N0mXVDn-T_qTECYqy91fcjzuIiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/YverIOBBx7gCIhC_8mFs_YSzk3Y.roa
Signing time: Sun 01 Jan 2023 14:05:00 +0000
ROA not before: Sun 01 Jan 2023 14:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197886
IP address blocks: 45.12.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:6b:03:54:37:25:01:ec:f7:a0:66:02:3f:c8:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3749975439fe4ffa9310262acbdd5f723cee2223
Validity
Not Before: Jan 1 14:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62f7ab20e041c7b8022210bff2616cfd84b39376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:30:f3:b2:23:5b:47:68:5d:95:65:3d:8a:ca:
60:41:60:54:2e:2c:cb:fa:b1:eb:96:41:66:4a:e8:
ea:d9:24:85:f0:4a:da:ca:35:a0:f7:8a:98:41:0e:
58:16:76:d5:eb:00:47:a4:0f:54:21:82:c7:7c:d9:
9a:23:61:73:1d:5e:ad:0b:bb:15:08:c7:3d:96:bd:
de:c1:2b:59:06:c2:ed:38:50:e0:e3:58:84:51:86:
dd:5b:b4:90:be:84:4f:3f:e1:7b:80:85:98:91:21:
7f:0c:88:a2:e2:97:2f:3b:e6:a4:a5:80:68:a2:30:
35:5b:b5:d8:02:d5:1c:b6:83:8d:f3:1e:a3:64:80:
57:8d:d1:87:ee:67:be:e4:a8:ed:d0:c7:1f:4f:73:
1c:2f:00:3d:a6:1b:69:29:f0:88:54:11:84:cb:31:
df:d9:5b:4e:9f:f5:a9:06:eb:d3:10:3d:ba:4b:f9:
ce:e7:d4:c3:5a:32:d6:16:c3:f2:4f:0d:93:30:75:
67:04:f8:0a:a3:23:9a:2d:2c:8f:68:c1:98:0d:2e:
4f:85:a4:b1:23:cb:3e:2f:c8:fe:1f:14:05:ea:10:
b6:13:9b:c2:73:f1:12:77:a7:f0:ff:62:ff:dc:48:
f7:4b:13:cd:6d:23:60:d6:24:18:0e:f5:b9:99:5d:
77:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F7:AB:20:E0:41:C7:B8:02:22:10:BF:F2:61:6C:FD:84:B3:93:76
X509v3 Authority Key Identifier:
keyid:37:49:97:54:39:FE:4F:FA:93:10:26:2A:CB:DD:5F:72:3C:EE:22:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N0mXVDn-T_qTECYqy91fcjzuIiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/YverIOBBx7gCIhC_8mFs_YSzk3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/N0mXVDn-T_qTECYqy91fcjzuIiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.40.0/22
Signature Algorithm: sha256WithRSAEncryption
81:d2:ac:ea:dc:4d:8a:79:e7:a3:47:45:0f:d5:93:9d:ea:03:
03:8e:ae:b0:37:7f:7e:c4:60:73:b4:0b:16:2f:a5:1c:fa:12:
28:6b:30:7b:38:91:e6:38:02:e7:ad:a0:b9:4c:2a:61:e8:09:
d9:eb:dc:58:b1:3f:3c:db:70:26:b2:19:a5:69:e7:c6:9f:36:
dd:b8:6b:34:7d:6b:c5:fe:22:61:06:1b:b1:10:21:99:24:f6:
d6:a1:77:99:f0:61:5c:67:d5:27:db:52:6b:7c:19:bd:2b:41:
99:e9:5c:e9:3c:c9:60:57:15:86:a2:05:51:de:27:25:3f:ae:
8f:48:36:25:46:a5:52:be:f9:5b:1c:e0:4c:ef:e3:71:93:2a:
b7:25:13:75:32:96:91:bc:02:a9:49:40:31:ab:4d:cc:b7:b8:
6d:3a:85:7e:7f:9f:af:b5:91:a0:fe:72:a5:20:c4:7f:d5:29:
c8:17:80:8a:9f:1c:1c:b6:a1:71:98:20:03:4f:bd:74:16:5a:
ac:e1:2d:b2:7b:11:29:f3:7b:aa:10:43:e5:2e:64:63:54:db:
03:26:ac:6c:63:58:24:ef:ad:22:9c:8a:bf:5f:b9:7e:45:82:
c9:7a:3b:b5:86:a7:08:e9:02:b9:47:f1:6a:61:5a:7d:3e:82:
46:0b:1a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 05:35:36 2025 by rpki-client