Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/LYTF_Nr-YVIG6RKQmtjJFRiIzwc.roa
File: LYTF_Nr-YVIG6RKQmtjJFRiIzwc.roa (raw, json)
Hash identifier: MEF1+beqvDvf0jyektE479tKDNb54rbbvFeM5ntupoc=
Subject key identifier: 2D:84:C5:FC:DA:FE:61:52:06:E9:12:90:9A:D8:C9:15:18:88:CF:07
Certificate issuer: /CN=4ce37f71c933bf827118c63c07774de98645d019
Certificate serial: 05D7CC08
Authority key identifier: 4C:E3:7F:71:C9:33:BF:82:71:18:C6:3C:07:77:4D:E9:86:45:D0:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TON_cckzv4JxGMY8B3dN6YZF0Bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/LYTF_Nr-YVIG6RKQmtjJFRiIzwc.roa
Signing time: Sat 01 Jan 2022 15:59:09 +0000
ROA not before: Sat 01 Jan 2022 15:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13030
IP address blocks: 45.131.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98028552 (0x5d7cc08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce37f71c933bf827118c63c07774de98645d019
Validity
Not Before: Jan 1 15:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d84c5fcdafe615206e912909ad8c9151888cf07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8b:5a:3c:29:52:98:eb:f6:c2:83:44:74:ac:
84:1d:7e:2a:1c:81:61:31:f8:91:6c:20:5f:a2:96:
1b:a4:63:9b:9d:28:26:20:37:7b:5a:e0:c3:07:df:
1a:09:5e:fd:68:9c:bf:e3:98:9a:28:97:06:b9:ca:
ef:7d:a5:75:6c:ff:8b:0e:28:ac:72:21:8a:86:8e:
b9:9b:3e:59:bc:b7:70:41:fd:a6:bb:c5:38:13:b8:
b7:f8:4c:8c:08:ab:d8:08:79:b1:53:2f:10:9e:c3:
a1:6a:89:89:4b:b2:49:e4:49:fc:b2:e0:3f:d3:ba:
cc:32:0b:75:84:5d:98:da:61:e9:73:68:71:96:f8:
a1:cc:78:29:2c:a0:23:a2:e4:d5:a3:dd:d0:07:26:
d6:01:ad:88:8d:79:9e:2e:7d:85:81:62:68:6d:c1:
95:74:46:6e:0d:52:a0:5e:a2:00:bc:ac:ee:5e:6a:
c6:ff:9e:86:1d:69:35:ed:0d:2b:a1:a5:e9:54:fc:
87:9a:b6:90:75:0c:eb:70:0a:f7:73:33:ed:6d:bc:
af:2d:83:43:f8:19:0e:95:b1:56:f2:d2:cb:dc:02:
5b:c7:b5:01:cd:43:48:c9:22:3e:d7:15:ee:0a:4b:
24:3e:ce:be:93:dc:52:c0:04:8a:65:ac:d3:d3:c8:
67:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:84:C5:FC:DA:FE:61:52:06:E9:12:90:9A:D8:C9:15:18:88:CF:07
X509v3 Authority Key Identifier:
keyid:4C:E3:7F:71:C9:33:BF:82:71:18:C6:3C:07:77:4D:E9:86:45:D0:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TON_cckzv4JxGMY8B3dN6YZF0Bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/LYTF_Nr-YVIG6RKQmtjJFRiIzwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/TON_cckzv4JxGMY8B3dN6YZF0Bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.252.0/24
Signature Algorithm: sha256WithRSAEncryption
23:db:e5:0f:21:4e:1d:2a:98:a2:1b:57:5a:ab:7a:b0:7d:fe:
7f:31:9b:29:a0:8f:e5:d7:8b:84:4f:c3:e9:3c:79:a3:9d:d3:
c6:aa:b6:60:13:ba:fe:cb:57:e3:e1:bc:65:eb:12:1a:ff:a7:
d7:28:0b:25:f7:4d:e4:06:3a:fb:9b:e6:51:0f:51:1c:a8:8c:
df:c9:a2:e5:93:5b:74:6d:19:53:b7:65:08:10:6b:01:f2:02:
4f:23:28:e6:44:4f:48:8c:93:69:96:67:f4:c6:88:54:c8:79:
4d:73:c7:e6:ae:1d:82:d1:97:eb:29:b4:9b:b2:50:4d:3a:9f:
8d:65:4c:02:a5:a3:a5:95:86:39:fc:96:98:43:d5:f9:db:2c:
17:b8:cb:4d:c2:ec:6a:9f:76:0d:b1:af:7c:5e:ff:a2:b5:ad:
b9:bc:f6:b0:c3:35:b2:f5:c1:a4:b3:54:34:5c:0d:f1:f3:d8:
44:15:af:04:dd:0e:04:24:a7:db:61:2b:af:3e:cf:cb:33:d9:
ee:42:3d:9a:03:9a:8d:9d:87:d1:d7:d0:06:86:82:d9:5d:96:
a3:49:80:8a:aa:05:36:b2:5f:83:6d:b0:29:81:54:95:3b:51:
c8:3d:1a:39:14:8b:de:c2:27:ba:ad:e0:51:f8:90:a1:fd:0c:
c1:89:38:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org