Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/AmybSkRkwy3fjUxQMFwpVKLKuRY.roa
File: AmybSkRkwy3fjUxQMFwpVKLKuRY.roa (raw, json)
Hash identifier: 5dSSVPEvrwC/UKdfpwXf4TTyozKWjU1kWjps1+5zruc=
Subject key identifier: 02:6C:9B:4A:44:64:C3:2D:DF:8D:4C:50:30:5C:29:54:A2:CA:B9:16
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1B9F63FD
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/AmybSkRkwy3fjUxQMFwpVKLKuRY.roa
Signing time: Tue 07 Jun 2022 13:02:09 +0000
ROA not before: Tue 07 Jun 2022 13:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 45.130.116.0/23 maxlen: 24
45.83.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463430653 (0x1b9f63fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 7 13:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=026c9b4a4464c32ddf8d4c50305c2954a2cab916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cf:f6:5b:c4:5a:ca:ab:1a:22:27:ae:e7:2e:
12:cf:05:4f:6c:fb:a4:5f:41:d4:76:ff:9c:58:d7:
2d:62:21:d5:80:a4:93:3f:92:b1:6e:ef:81:03:08:
e5:b3:b6:3b:8f:d2:a5:6a:58:84:3e:cb:20:d6:d7:
71:60:22:f4:45:ac:c4:57:0c:42:fa:d4:a9:5d:f7:
9e:49:ca:67:61:ca:37:78:da:c9:47:b4:df:37:79:
ab:09:ce:ac:38:32:7d:65:d4:73:b5:cd:2c:90:8e:
b3:b7:5c:ef:ce:91:56:97:91:f0:f9:61:bb:0c:b2:
95:e3:39:3f:0e:5d:87:a1:76:b6:6e:f6:d2:4d:b8:
72:30:14:ca:71:a3:a6:a5:33:7a:4e:6b:7b:e0:2d:
65:b2:90:ce:23:28:da:57:eb:f0:a2:65:ec:da:e5:
95:d2:fb:17:4b:af:60:a8:e4:52:35:bc:a1:1c:97:
27:e6:de:a4:28:0c:9e:31:aa:5c:12:e9:7e:08:4b:
97:f9:31:5e:39:2b:64:03:de:8f:c8:9c:54:d6:46:
49:0f:74:83:31:fb:3b:a3:1a:4e:97:db:04:a1:d7:
80:f1:92:47:06:e6:43:87:c1:d4:d8:2b:e8:59:4f:
a8:ff:47:ce:f1:be:98:c3:0c:12:bb:04:74:2a:3b:
92:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6C:9B:4A:44:64:C3:2D:DF:8D:4C:50:30:5C:29:54:A2:CA:B9:16
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/AmybSkRkwy3fjUxQMFwpVKLKuRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.204.0/24
45.130.116.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:f8:a3:e6:21:89:85:f1:c1:43:f8:31:ce:ca:a2:35:0d:d3:
4e:71:5e:80:5f:48:4a:67:a6:61:45:0d:69:18:c8:f3:80:6d:
52:1f:51:3a:d0:dc:44:a7:90:7e:0c:b8:0e:15:75:55:c7:ec:
b3:15:e9:d4:10:2f:4e:ef:18:72:e3:01:db:3d:e4:4b:f6:12:
f4:64:c0:11:01:f6:bf:b9:34:60:d2:5a:57:b3:a1:26:a2:32:
49:58:c7:4a:cf:67:11:ba:58:f6:76:ff:ed:71:62:8c:a0:8c:
90:46:94:af:eb:ec:6f:2c:27:95:ff:9e:c1:cf:6d:f0:5b:44:
f9:9f:73:10:1a:eb:8c:f0:34:96:ce:c1:04:38:69:2d:f6:ad:
9d:2c:84:31:aa:80:2f:27:3c:d5:76:7e:dd:25:2f:cf:c4:e8:
93:b2:64:90:b0:2d:88:43:41:b9:26:e5:fd:3b:48:8e:7b:88:
99:15:f3:92:50:02:b1:cf:b8:01:12:63:bc:ed:6c:de:d9:8f:
75:0c:1a:36:ed:4f:bc:f1:e4:a6:65:ce:fe:aa:06:38:33:8f:
10:c2:9d:2c:79:bc:10:0d:d6:8e:f9:be:49:11:09:92:32:8a:
ac:b4:76:5e:8f:3b:ba:68:1d:62:ab:94:17:d4:ef:4d:b1:8f:
a0:e2:9e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org