Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YVXFb9a9c0Ukzto0QzXZKksnzpo.roa
File: YVXFb9a9c0Ukzto0QzXZKksnzpo.roa (raw, json)
Hash identifier: 3ADBRnL3tpATkknN/ALWlRrqfPvjZthfc5JJmwR9Ygs=
Subject key identifier: 61:55:C5:6F:D6:BD:73:45:24:CE:DA:34:43:35:D9:2A:4B:27:CE:9A
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 034D1497
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YVXFb9a9c0Ukzto0QzXZKksnzpo.roa
Signing time: Sat 01 Jan 2022 16:04:43 +0000
ROA not before: Sat 01 Jan 2022 16:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210899
IP address blocks: 45.137.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55383191 (0x34d1497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6155c56fd6bd734524ceda344335d92a4b27ce9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:58:41:e6:0a:b0:11:f8:db:85:cc:35:7f:c8:
ea:97:53:a1:23:17:b8:43:ed:12:d2:70:6c:ea:ba:
3c:6e:8b:32:b0:5f:48:00:5e:02:40:f7:94:3b:57:
62:fa:08:20:5f:7c:50:fa:fe:d7:bb:c6:5f:19:b1:
60:85:25:92:3b:48:b8:a8:84:c6:93:b2:2c:f7:1f:
5f:19:32:b5:3b:c9:de:f9:d4:5c:ea:bb:8e:73:92:
a5:12:a5:7e:27:d6:4b:c0:4b:1d:5f:cc:e9:60:53:
e8:29:8c:2e:0c:3b:a9:8b:71:bb:af:ad:bd:29:db:
a3:f3:57:48:1a:c7:bf:d3:fb:00:87:87:88:d0:e1:
a0:7c:c0:d0:db:72:98:df:58:d2:2c:7d:21:a9:64:
e8:f3:aa:d1:2e:df:67:98:6d:67:e2:20:79:db:ba:
92:01:20:e9:30:4f:44:33:a5:44:dc:e3:e6:5f:ed:
cc:65:b9:1b:27:2b:39:6a:49:bb:36:d7:ad:9d:ed:
a4:ac:31:a7:35:1f:8e:43:7c:8b:f2:70:1b:c7:6a:
e9:6a:b9:2f:b0:b0:a4:da:98:ce:f3:8a:ae:be:ef:
96:d8:38:78:fe:03:69:60:62:78:73:f6:e6:bd:6a:
da:d7:ab:22:a1:67:76:43:ec:d9:a6:aa:62:b5:50:
52:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:55:C5:6F:D6:BD:73:45:24:CE:DA:34:43:35:D9:2A:4B:27:CE:9A
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YVXFb9a9c0Ukzto0QzXZKksnzpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.105.0/24
Signature Algorithm: sha256WithRSAEncryption
01:0e:df:95:82:68:a7:68:d3:1e:10:39:ae:06:41:fa:d1:2a:
fa:6e:85:54:57:2c:79:53:f3:2f:a2:4c:1a:4a:f7:d3:6e:96:
f4:78:f9:98:d6:fb:6e:36:9c:4e:96:29:8e:1b:03:17:68:f2:
64:c7:25:c9:c8:b1:40:06:f3:9b:13:18:e5:87:55:cf:b1:cd:
f2:a3:7b:3d:d6:20:dd:f7:93:79:81:66:72:e9:8b:c5:4d:68:
f6:1f:c0:39:4e:cc:f1:08:c0:a3:51:42:13:29:ad:d6:36:84:
80:e7:a1:a4:8b:54:89:c9:96:70:8b:30:05:c7:ba:8d:25:79:
7b:34:f8:06:3b:9c:7b:0d:30:db:3f:3c:91:26:a3:b0:93:dc:
94:a1:b1:9b:3e:db:fb:9c:69:a4:83:5d:4f:98:65:92:07:42:
ba:9e:d0:18:48:ae:6d:2c:a4:c4:cc:de:af:f9:13:4a:8c:4a:
10:f2:53:9a:e9:7b:be:63:71:f7:25:3c:09:42:e5:f4:80:da:
79:27:9f:ea:d8:de:6a:83:b8:a1:b9:c9:57:16:05:b2:fd:9f:
4b:ee:9d:fd:34:39:27:77:c6:2f:49:8b:d5:fa:82:2f:6d:60:
c2:2a:b4:5e:dd:75:68:67:5f:f2:e4:71:73:a7:2c:18:76:93:
d0:5f:95:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org