Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/yzhoCDpQ2zU5XwJQf4MferR1L5A.roa
File: yzhoCDpQ2zU5XwJQf4MferR1L5A.roa (raw, json)
Hash identifier: vrnC939fH3gdXd76BO2Xwz4931+sEKf7OrKxxmDr17Q=
Subject key identifier: CB:38:68:08:3A:50:DB:35:39:5F:02:50:7F:83:1F:7A:B4:75:2F:90
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018499452584C8220EB27565133F5BCD53C3
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/yzhoCDpQ2zU5XwJQf4MferR1L5A.roa
Signing time: Mon 21 Nov 2022 08:19:16 +0000
ROA not before: Mon 21 Nov 2022 08:19:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 45.8.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:99:45:25:84:c8:22:0e:b2:75:65:13:3f:5b:cd:53:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Nov 21 08:19:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb3868083a50db35395f02507f831f7ab4752f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cf:95:fa:8e:0a:69:39:54:25:ce:a0:73:7a:
f1:5e:33:11:47:20:82:1c:38:0c:f3:b5:36:66:68:
c9:2c:47:75:99:ae:f4:8a:a4:94:4a:c6:a7:2a:4d:
e1:48:0b:7b:20:5d:9e:ed:7d:6f:e0:4e:64:5b:99:
0f:8c:33:4d:d8:31:13:1e:35:a9:97:88:4a:e0:16:
9c:99:0b:60:f7:ac:bb:4f:a3:f6:23:bf:bb:52:64:
11:d0:76:9b:aa:5f:07:a8:6f:53:ea:84:52:2a:4f:
9c:f8:98:3a:e7:3e:0f:f5:9b:0a:ba:49:3c:28:b9:
71:ba:6c:2f:23:3b:cd:52:7c:9a:9b:f4:a7:5d:2f:
8a:4e:a9:3c:ec:a7:47:c9:41:db:fd:1d:4d:84:4c:
2c:c6:dd:72:18:f1:f1:6c:c9:a9:47:a4:ee:a0:e3:
d7:44:d2:51:56:fa:4c:a4:b0:d9:ae:bc:be:ed:0c:
e4:b7:99:8f:89:c9:1e:ef:61:29:ba:6f:09:3e:7c:
c0:de:2b:1a:fe:6f:4d:7d:a5:31:0a:b0:1b:bf:62:
6e:3a:98:11:ed:fa:db:ba:ff:3a:24:86:57:da:e2:
16:55:0f:fc:ed:71:82:c9:ea:30:d5:0f:87:15:ae:
89:a8:aa:de:07:fa:db:5a:87:c4:d0:e1:1a:f3:7f:
e9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:38:68:08:3A:50:DB:35:39:5F:02:50:7F:83:1F:7A:B4:75:2F:90
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/yzhoCDpQ2zU5XwJQf4MferR1L5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.201.0/24
Signature Algorithm: sha256WithRSAEncryption
41:5e:e3:fa:86:54:7e:60:8a:ed:e2:ec:4a:f8:aa:b4:2f:9e:
23:3a:53:ec:33:4e:71:42:bd:66:11:c9:1f:fc:8a:09:32:17:
c6:85:18:d3:7f:36:54:a6:2e:25:26:33:fe:09:4c:de:6c:d5:
ed:22:cf:ed:ac:c0:50:d5:38:f4:f7:f1:e3:a5:d8:e7:e3:b0:
49:c7:4c:89:5b:df:8e:c6:ec:4e:41:86:1a:2e:7c:f2:c3:94:
d5:55:b1:2b:6e:d7:93:8a:99:7d:0f:a3:fb:78:61:a4:02:ae:
58:1f:46:6d:70:ea:45:38:1a:75:cb:47:4b:c6:8c:ca:25:b5:
2b:07:65:51:18:cb:5a:5f:72:89:c8:43:d4:75:fd:97:ca:a1:
05:09:06:3b:9d:83:d5:d1:ec:de:96:72:6d:ad:75:15:f9:2e:
c7:bc:26:d2:61:7d:da:ab:d1:4a:52:d5:5b:ef:38:14:e8:e1:
c4:d0:80:61:20:1e:63:d3:bd:6f:56:75:51:30:75:bd:3a:27:
20:4b:81:b1:c1:6c:5a:bf:e0:7c:a7:fa:eb:91:a6:ab:1b:5d:
ae:74:9c:d2:fd:5e:dc:bd:16:eb:74:5b:70:23:bf:59:a5:33:
16:58:0c:c6:11:0e:f8:01:63:3e:cf:7d:ba:ea:a6:f6:b4:b4:
10:64:cd:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSZRSWEyCIOsnVlEz9bzVPDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjIxMTIxMDgxOTE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjM4NjgwODNhNTBkYjM1Mzk1ZjAyNTA3ZjgzMWY3YWI0NzUyZjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkc+V+o4KaTlUJc6gc3rxXjMRRyCC
HDgM87U2ZmjJLEd1ma70iqSUSsanKk3hSAt7IF2e7X1v4E5kW5kPjDNN2DETHjWp
l4hK4BacmQtg96y7T6P2I7+7UmQR0Habql8HqG9T6oRSKk+c+Jg65z4P9ZsKukk8
KLlxumwvIzvNUnyam/SnXS+KTqk87KdHyUHb/R1NhEwsxt1yGPHxbMmpR6TuoOPX
RNJRVvpMpLDZrry+7Qzkt5mPicke72Epum8JPnzA3isa/m9NfaUxCrAbv2JuOpgR
7frbuv86JIZX2uIWVQ/87XGCyeow1Q+HFa6JqKreB/rbWofE0OEa83/pTwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMs4aAg6UNs1OV8CUH+DH3q0dS+QMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEveXpob0NEcFEyelU1WHdKUWY0TWZlclIxTDVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQjJMA0G
CSqGSIb3DQEBCwUAA4IBAQBBXuP6hlR+YIrt4uxK+Kq0L54jOlPsM05xQr1mEckf
/IoJMhfGhRjTfzZUpi4lJjP+CUzebNXtIs/trMBQ1Tj09/Hjpdjn47BJx0yJW9+O
xuxOQYYaLnzyw5TVVbErbteTipl9D6P7eGGkAq5YH0ZtcOpFOBp1y0dLxozKJbUr
B2VRGMtaX3KJyEPUdf2XyqEFCQY7nYPV0ezelnJtrXUV+S7HvCbSYX3aq9FKUtVb
7zgU6OHE0IBhIB5j071vVnVRMHW9OicgS4GxwWxav+B8p/rrkaarG12udJzS/V7c
vRbrdFtwI79ZpTMWWAzGEQ74AWM+z3266qb2tLQQZM39
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org