Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/YtnalLtQdY3PGxgZINabBWmGWNM.roa
File: YtnalLtQdY3PGxgZINabBWmGWNM.roa (raw, json)
Hash identifier: sOrdC16hoh34hGUsiUHAJHrAckEgIw1gZLEBre6ZBAY=
Subject key identifier: 62:D9:DA:94:BB:50:75:8D:CF:1B:18:19:20:D6:9B:05:69:86:58:D3
Certificate issuer: /CN=530b76ef0ab555bc8b0761f6068a44e10b2b31f7
Certificate serial: 08AC4096
Authority key identifier: 53:0B:76:EF:0A:B5:55:BC:8B:07:61:F6:06:8A:44:E1:0B:2B:31:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uwt27wq1VbyLB2H2BopE4QsrMfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/YtnalLtQdY3PGxgZINabBWmGWNM.roa
Signing time: Sat 01 Jan 2022 11:54:00 +0000
ROA not before: Sat 01 Jan 2022 11:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56596
IP address blocks: 45.8.58.0/24 maxlen: 24
45.8.56.0/24 maxlen: 24
45.8.57.0/24 maxlen: 24
45.8.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145506454 (0x8ac4096)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=530b76ef0ab555bc8b0761f6068a44e10b2b31f7
Validity
Not Before: Jan 1 11:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62d9da94bb50758dcf1b181920d69b05698658d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c9:40:6c:be:23:e0:ed:97:98:77:06:a4:b3:
55:e4:66:d2:24:bc:43:7a:4b:30:99:22:18:33:d8:
dc:5b:f0:da:e6:31:73:26:f7:1e:f9:91:fa:d5:c6:
31:ad:b8:55:89:df:96:d2:67:bf:5c:8b:59:8e:b9:
01:c9:41:18:6d:88:2a:ee:8b:28:ad:66:91:5e:50:
4e:7b:fd:db:12:a7:af:9f:37:44:1d:43:7c:a1:97:
4e:74:c8:cb:f1:97:2c:e8:5e:44:7a:c1:be:65:6c:
24:3b:94:dc:fb:f0:44:13:12:49:aa:ce:c3:b9:f0:
ed:79:0f:23:e1:80:72:f2:54:70:3f:ed:8f:78:26:
f5:e4:49:a5:50:1d:e0:c8:81:01:a0:d4:66:cc:83:
22:86:c1:e7:66:cc:3c:fe:6a:42:ea:9c:8b:db:0e:
31:7c:d3:8f:71:86:0f:ca:54:82:46:f7:f3:2d:b0:
51:d3:2d:25:13:d3:e2:c4:b4:53:02:0f:82:80:9d:
95:cd:8f:c6:e5:61:22:9d:0d:6c:cc:cc:8c:78:c5:
c9:74:26:80:b8:bf:6c:2b:1b:18:6e:84:41:19:a6:
be:89:3c:61:89:91:7f:e4:79:17:8b:6a:b3:34:86:
d9:75:66:31:f2:97:97:03:b7:7c:c9:be:04:c4:87:
6f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D9:DA:94:BB:50:75:8D:CF:1B:18:19:20:D6:9B:05:69:86:58:D3
X509v3 Authority Key Identifier:
keyid:53:0B:76:EF:0A:B5:55:BC:8B:07:61:F6:06:8A:44:E1:0B:2B:31:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uwt27wq1VbyLB2H2BopE4QsrMfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/YtnalLtQdY3PGxgZINabBWmGWNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b8a489-3157-401f-b157-bfffc91fde3c/1/Uwt27wq1VbyLB2H2BopE4QsrMfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.56.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:a4:d3:f5:4e:9e:03:5e:48:9b:42:a5:d7:86:62:c2:d5:5d:
8e:ec:d4:57:37:6e:84:8b:ee:f4:c0:6e:78:29:95:a5:cd:d3:
05:e5:c6:88:cd:6c:31:c9:cf:0d:fa:71:e3:47:22:f2:16:51:
06:97:ef:22:e6:73:db:12:12:e5:70:50:a0:ab:85:1b:db:16:
31:70:9b:a6:e2:74:15:5a:7a:01:ff:d8:9e:20:98:a5:ac:94:
01:0b:26:e3:f2:99:d3:43:8c:a8:bf:24:be:99:87:9a:cb:b3:
7b:73:ef:dc:00:da:7c:19:f1:98:db:dd:8a:cd:41:1f:f4:37:
9a:05:e3:33:12:c1:52:1a:27:f2:d4:22:07:15:0c:11:48:ef:
b7:14:1e:b7:5f:db:a6:a6:c3:52:99:07:e3:32:22:d9:41:f2:
45:9a:03:e8:91:ec:c5:1c:fa:66:43:0a:cc:68:41:db:05:be:
cf:a4:13:a4:50:46:f7:4e:ed:24:1c:9b:fc:19:44:27:c0:66:
15:b6:cc:b8:e8:ca:5d:2a:c8:27:ef:70:87:75:c4:f8:de:ea:
15:6b:14:3f:0f:48:38:1c:96:12:03:e8:99:f7:af:76:0f:2f:
61:30:d1:0d:98:31:e4:e8:1f:47:3e:ad:b1:f3:c9:a2:22:26:
25:1a:06:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:07 2023 by rpki-client on console-ams.rpki-client.org