Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yH75NCRSSKcukbKdMvuYvYxvLic.roa
File: yH75NCRSSKcukbKdMvuYvYxvLic.roa (raw, json)
Hash identifier: 6DiOJ8ELxw2i23UltThfgLs9caJ/4Ptkh2YIWaJCSTU=
Subject key identifier: C8:7E:F9:34:24:52:48:A7:2E:91:B2:9D:32:FB:98:BD:8C:6F:2E:27
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1B4F7E45
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yH75NCRSSKcukbKdMvuYvYxvLic.roa
Signing time: Mon 09 May 2022 10:14:25 +0000
ROA not before: Mon 09 May 2022 10:14:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 45.84.219.0/24 maxlen: 24
45.85.91.0/24 maxlen: 24
136.144.35.0/24 maxlen: 24
136.144.43.0/24 maxlen: 24
45.84.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458194501 (0x1b4f7e45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 9 10:14:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c87ef934245248a72e91b29d32fb98bd8c6f2e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7e:eb:10:16:b0:48:8c:c3:99:8e:68:2b:b8:
94:a8:27:1e:dd:72:c3:18:7f:ab:bc:0a:93:5f:4c:
5d:62:4a:1d:62:51:65:97:29:0d:4c:e1:91:39:62:
f8:a5:3d:09:42:63:db:1d:e0:79:38:03:75:35:f9:
90:ce:84:1c:a4:42:08:2c:bd:46:75:de:29:89:ca:
cc:3d:71:1e:04:cc:b6:9c:3c:5e:3b:7b:88:e3:e8:
0c:e0:4b:c9:72:50:f3:1f:a8:12:4d:34:06:d9:3a:
a8:d4:04:4f:cd:58:a5:ae:1a:79:3b:b6:99:50:9f:
03:99:24:54:fe:0b:93:aa:dc:d2:76:30:23:7f:81:
d7:a6:61:5c:11:83:34:27:1b:1c:82:3a:bb:db:c7:
b3:ec:e5:39:3e:51:46:85:b1:5b:6a:a2:8c:95:4e:
4c:c3:71:f7:65:44:46:d4:86:7f:39:79:bf:79:f1:
fc:f3:14:d1:3d:8e:6a:e2:c3:42:e9:c0:d1:9e:95:
8f:78:90:73:8e:84:8e:b3:fd:b7:f2:9f:67:95:03:
46:56:f0:22:55:8a:84:9c:1b:ea:63:6d:18:8a:c9:
2b:70:af:c7:7b:8b:3f:39:47:49:c7:f0:8b:60:9d:
b2:85:b7:4a:ea:7b:ca:f1:62:ea:1b:f0:58:6e:22:
29:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7E:F9:34:24:52:48:A7:2E:91:B2:9D:32:FB:98:BD:8C:6F:2E:27
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yH75NCRSSKcukbKdMvuYvYxvLic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.212.0/24
45.84.219.0/24
45.85.91.0/24
136.144.35.0/24
136.144.43.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:7a:a2:7d:fc:b6:3a:ee:40:c8:56:d4:86:5f:4a:c9:8c:51:
05:04:5e:7b:2c:e6:5c:4c:eb:f3:a0:2e:10:73:a9:e0:e3:60:
1e:8c:9f:d9:3b:92:0d:73:60:d9:b3:68:75:d8:ed:1a:32:54:
93:2b:3d:33:62:7d:fe:ba:c4:2a:37:a2:49:22:7a:99:b4:f4:
be:78:10:53:ab:c9:af:b3:94:2f:0f:d3:ff:65:e2:d4:b4:c3:
cd:3d:6e:28:f4:78:c0:63:47:11:9a:86:97:34:1c:e7:c0:38:
cc:60:b9:5e:69:c1:47:91:6c:96:22:6d:17:aa:c2:90:74:a6:
70:19:cc:a2:ab:6d:d6:72:60:7e:1e:dc:05:54:a0:b7:aa:2e:
68:4c:00:4d:19:05:f1:2b:95:e8:72:69:f0:26:65:f2:91:a5:
25:20:99:96:a2:77:ce:ba:35:63:57:06:46:69:25:88:55:d2:
49:1a:f1:d6:54:d3:be:eb:5b:64:99:47:87:73:5e:ef:d2:0c:
b3:c9:a9:8d:d9:08:be:72:ad:24:2d:56:7c:18:59:fc:08:fb:
19:6a:8c:fb:b0:b5:90:dd:7f:b9:8d:cf:9f:72:f1:40:01:e7:
a9:43:2f:bc:31:12:bc:34:43:dd:3b:9c:e0:0e:c1:25:70:0c:
9c:a3:22:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org