Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/yw9FQVN0ATm2X5y9ZAxGfwqToMg.roa
File: yw9FQVN0ATm2X5y9ZAxGfwqToMg.roa (raw, json)
Hash identifier: +UVBp/R1f/SA36to0VJnirvQhD6TYmLowFAaG0GikOY=
Subject key identifier: CB:0F:45:41:53:74:01:39:B6:5F:9C:BD:64:0C:46:7F:0A:93:A0:C8
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 08034C18
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/yw9FQVN0ATm2X5y9ZAxGfwqToMg.roa
Signing time: Sat 01 Jan 2022 06:55:45 +0000
ROA not before: Sat 01 Jan 2022 06:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56382
IP address blocks: 45.152.125.0/24 maxlen: 24
45.152.127.0/24 maxlen: 24
45.152.126.0/24 maxlen: 24
2a0f:5700:1220::/44 maxlen: 44
2a0f:5702::/32 maxlen: 48
2a0f:5701:fe80::/48 maxlen: 48
2a0f:5707:fe80::/48 maxlen: 48
2a0f:5700::/32 maxlen: 48
2a0f:5700:fe80::/48 maxlen: 48
2a0f:5707:ffff::/48 maxlen: 48
2a0f:5701:fe01::/48 maxlen: 48
2a0f:5701:1220::/44 maxlen: 44
2a0f:5707:1220::/44 maxlen: 44
2a0f:5707:aa80::/44 maxlen: 48
2a0f:5707:ab80::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134433816 (0x8034c18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb0f454153740139b65f9cbd640c467f0a93a0c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c7:73:80:1a:c1:25:3c:17:b0:ff:85:97:56:
4b:8b:63:36:7f:75:de:a4:2a:d4:d8:a4:cd:4e:5d:
b9:87:6f:e6:b6:3d:8d:00:b7:12:2c:d0:2c:4c:6e:
a2:fb:90:29:33:7c:1f:5c:4b:47:b6:e0:a0:fe:2b:
fd:b9:99:a3:8e:70:5b:a1:79:76:86:7c:95:ac:34:
86:c4:8c:1c:13:78:83:3c:6c:ac:ed:d3:4c:03:c1:
89:a7:16:6c:66:c9:14:ff:0b:f5:59:3f:2f:86:e2:
66:41:74:bb:4c:f9:84:a0:76:be:fc:f0:19:5e:ff:
32:fd:41:91:bf:c0:32:09:16:2d:44:dc:1b:fd:ce:
1e:7b:76:1e:7d:3c:e4:88:ce:9e:bc:61:a5:08:99:
52:3e:06:23:2f:e2:c2:50:09:7e:ee:8d:ac:03:9f:
30:70:6a:a2:f3:77:f2:ce:93:0b:16:d2:e5:a3:b1:
5a:5f:a2:8c:cb:9e:62:b5:93:95:49:4c:6e:3c:2e:
73:f8:5f:00:4f:22:9c:3b:31:b3:c2:0d:c5:fc:77:
9d:24:5e:70:58:bf:80:2e:e7:a5:9d:6e:55:e4:21:
15:03:72:ad:21:1b:52:b0:f9:1d:05:81:0b:ff:88:
cf:58:0f:e8:c0:a9:8f:a7:87:61:e2:93:2c:22:6d:
87:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0F:45:41:53:74:01:39:B6:5F:9C:BD:64:0C:46:7F:0A:93:A0:C8
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/yw9FQVN0ATm2X5y9ZAxGfwqToMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.125.0-45.152.127.255
IPv6:
2a0f:5700::/32
2a0f:5701:1220::/44
2a0f:5701:fe01::/48
2a0f:5701:fe80::/48
2a0f:5702::/32
2a0f:5707:1220::/44
2a0f:5707:aa80::/44
2a0f:5707:ab80::/44
2a0f:5707:fe80::/48
2a0f:5707:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
a0:ec:1e:4a:5f:c0:a7:5a:31:18:7a:14:db:99:b9:a9:74:9e:
5a:da:68:a6:c8:97:ba:cd:a6:b6:4c:7c:39:86:3c:83:fd:b7:
b4:77:5a:90:73:b3:ab:2f:fd:61:a2:41:bd:0c:a1:1a:3c:18:
71:1a:c8:86:db:78:ea:90:38:3b:61:2f:39:df:33:8c:e2:14:
c2:2f:8e:55:12:8a:92:e2:0d:de:50:0f:ef:0a:e6:6c:5f:46:
7d:32:94:ad:2b:38:30:b5:36:a1:b0:22:f3:bb:dd:e5:3d:bc:
55:c6:3c:f7:d3:22:34:ef:c0:4e:21:e8:b6:c8:96:df:61:8a:
98:cb:39:47:0a:97:a1:a5:ce:07:27:af:e2:46:26:73:ff:32:
16:de:8b:5b:22:32:c7:1a:08:cd:6f:8a:54:ae:26:b8:fd:63:
a5:4e:c0:f9:ec:36:ed:a4:83:f4:b7:03:09:8b:b8:fd:47:71:
1b:4c:f5:70:b0:70:19:37:48:cf:28:ea:3d:06:9a:a5:d0:b1:
d2:b3:2e:42:a3:33:1f:39:50:10:d1:1a:56:16:f0:71:35:16:
2b:70:58:35:2b:2a:d7:28:57:29:98:97:b7:4e:0e:78:7d:73:
ee:0b:f0:5d:37:00:1a:06:2a:0b:78:a5:3c:40:0b:c7:52:25:
ef:cb:c7:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org