Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/yBJmbX8pAh_oNtAQOm35YQjd40I.roa
File: yBJmbX8pAh_oNtAQOm35YQjd40I.roa (raw, json)
Hash identifier: 6lz0Ll/a99A2eu8H2dExgjhYRGiMXxQ+LPxGIb7UjvQ=
Subject key identifier: C8:12:66:6D:7F:29:02:1F:E8:36:D0:10:3A:6D:F9:61:08:DD:E3:42
Certificate issuer: /CN=8d66032e08894118d7998c5c060ca46eb3871338
Certificate serial: 0C99B369
Authority key identifier: 8D:66:03:2E:08:89:41:18:D7:99:8C:5C:06:0C:A4:6E:B3:87:13:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jWYDLgiJQRjXmYxcBgykbrOHEzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/yBJmbX8pAh_oNtAQOm35YQjd40I.roa
Signing time: Sat 01 Jan 2022 14:55:44 +0000
ROA not before: Sat 01 Jan 2022 14:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 394183
IP address blocks: 45.75.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211399529 (0xc99b369)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d66032e08894118d7998c5c060ca46eb3871338
Validity
Not Before: Jan 1 14:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c812666d7f29021fe836d0103a6df96108dde342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:44:63:ad:b9:f4:df:e7:e8:79:bb:84:90:e6:
d9:47:34:4a:ca:5c:fd:94:a2:51:2b:a4:f7:f3:80:
9d:3d:38:02:96:e6:18:60:d0:e5:d0:46:59:9d:99:
34:61:f1:da:0e:cc:a1:c9:cb:69:a2:a4:05:d5:44:
7e:37:f0:4c:ee:47:43:28:78:d7:ba:43:b5:47:36:
23:7a:55:52:5e:68:f9:8d:ef:de:1f:b3:dd:8f:5f:
83:ae:66:cd:6a:ff:2a:ab:c0:92:dd:dc:fa:e1:b3:
17:60:48:6d:55:7f:2a:39:69:3d:81:1b:9d:85:86:
ab:ba:0a:ae:b6:59:30:a4:08:42:73:31:b7:22:82:
64:94:85:9d:30:3b:8c:3b:1c:83:0d:57:de:41:eb:
03:40:6b:96:3a:92:7c:75:d8:b7:8d:b5:7e:e1:1d:
bf:06:9a:4f:cf:dc:d2:fd:b2:04:8a:3f:23:65:33:
83:95:8c:63:a6:76:ef:2a:bd:de:6e:c2:6d:67:52:
13:31:34:83:c3:ff:c8:89:cb:71:69:6c:3e:33:56:
10:1d:95:a2:4f:e0:c2:ce:d8:9d:7c:73:15:64:0c:
66:fe:42:6a:10:9f:8e:9b:c3:ad:e0:f1:b5:fe:e6:
fc:91:6d:47:b0:49:0e:ee:db:a2:e2:45:c4:90:21:
17:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:12:66:6D:7F:29:02:1F:E8:36:D0:10:3A:6D:F9:61:08:DD:E3:42
X509v3 Authority Key Identifier:
keyid:8D:66:03:2E:08:89:41:18:D7:99:8C:5C:06:0C:A4:6E:B3:87:13:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jWYDLgiJQRjXmYxcBgykbrOHEzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/yBJmbX8pAh_oNtAQOm35YQjd40I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/jWYDLgiJQRjXmYxcBgykbrOHEzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.75.202.0/24
Signature Algorithm: sha256WithRSAEncryption
93:18:04:39:dc:13:f3:d0:3b:fd:3a:6c:6a:14:b0:2b:84:af:
ef:ee:05:4a:f5:12:89:a0:c9:88:49:4a:1b:2f:a9:48:df:e5:
f0:7c:7b:91:41:64:76:57:46:92:a5:f6:a7:0f:22:ca:0e:b6:
d5:b8:34:e2:56:23:0f:60:a6:83:ba:b5:c9:99:f9:57:00:03:
0d:80:5a:6e:c5:ad:0b:d3:2c:70:c7:12:b7:7a:83:69:ab:b7:
45:97:a3:ac:af:94:b9:57:dd:92:88:8c:cb:96:5a:ff:e7:77:
85:ea:d6:55:fa:d1:84:87:e7:7e:5b:1e:a7:1b:ce:a0:cf:38:
45:bf:e3:ea:95:07:d4:05:1f:e4:e7:44:7d:5d:0e:4b:7c:fa:
a5:09:5b:bf:ca:e3:3f:13:52:21:6e:da:8e:ee:0b:99:30:65:
de:c2:ba:d4:a1:8a:08:e4:4c:cc:23:34:88:28:9b:fa:10:f1:
62:44:be:ea:fd:2e:b6:30:de:1e:2f:d4:a7:49:05:f4:51:49:
a0:a3:3a:72:34:3d:ec:51:27:a8:b8:eb:37:b9:a2:b1:98:dc:
67:d6:96:08:20:0c:7f:c0:0e:bf:5c:e3:1b:b1:59:4a:5f:b4:
c4:26:7e:ee:ef:12:39:df:26:61:91:ce:e0:1b:b9:75:88:a7:
81:59:74:37
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDJmzaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDY2MDMyZTA4ODk0MTE4ZDc5OThjNWMwNjBjYTQ2ZWIzODcxMzM4MB4XDTIyMDEw
MTE0NTU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzgxMjY2NmQ3ZjI5
MDIxZmU4MzZkMDEwM2E2ZGY5NjEwOGRkZTM0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOVEY6259N/n6Hm7hJDm2Uc0Sspc/ZSiUSuk9/OAnT04Apbm
GGDQ5dBGWZ2ZNGHx2g7MocnLaaKkBdVEfjfwTO5HQyh417pDtUc2I3pVUl5o+Y3v
3h+z3Y9fg65mzWr/KqvAkt3c+uGzF2BIbVV/KjlpPYEbnYWGq7oKrrZZMKQIQnMx
tyKCZJSFnTA7jDscgw1X3kHrA0BrljqSfHXYt421fuEdvwaaT8/c0v2yBIo/I2Uz
g5WMY6Z27yq93m7CbWdSEzE0g8P/yInLcWlsPjNWEB2Vok/gws7YnXxzFWQMZv5C
ahCfjpvDreDxtf7m/JFtR7BJDu7bouJFxJAhF0sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTIEmZtfykCH+g20BA6bflhCN3jQjAfBgNVHSMEGDAWgBSNZgMuCIlBGNeZ
jFwGDKRus4cTODAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pXWURMZ2lKUVJqWG1ZeGNCZ3lrYnJPSEV6Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvODcyZGM3LTdjMDEtNGU2Ni04NDRlLTU5OWQxY2E2YTVmZC8x
L3lCSm1iWDhwQWhfb050QVFPbTM1WVFqZDQwSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
ODcyZGM3LTdjMDEtNGU2Ni04NDRlLTU5OWQxY2E2YTVmZC8xL2pXWURMZ2lKUVJq
WG1ZeGNCZ3lrYnJPSEV6Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1LyjANBgkqhkiG9w0BAQsFAAOC
AQEAkxgEOdwT89A7/TpsahSwK4Sv7+4FSvUSiaDJiElKGy+pSN/l8Hx7kUFkdldG
kqX2pw8iyg621bg04lYjD2Cmg7q1yZn5VwADDYBabsWtC9MscMcSt3qDaau3RZej
rK+UuVfdkoiMy5Za/+d3herWVfrRhIfnflsepxvOoM84Rb/j6pUH1AUf5OdEfV0O
S3z6pQlbv8rjPxNSIW7aju4LmTBl3sK61KGKCORMzCM0iCib+hDxYkS+6v0utjDe
Hi/Up0kF9FFJoKM6cjQ97FEnqLjrN7misZjcZ9aWCCAMf8AOv1zjG7FZSl+0xCZ+
7u8SOd8mYZHO4Bu5dYingVl0Nw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:34 2024 by rpki-client on console-fra.rpki-client.org