Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/yumMQl_tSY7eksdYO9LcX-EyhYI.roa
File: yumMQl_tSY7eksdYO9LcX-EyhYI.roa (raw, json)
Hash identifier: jGaRDMj4sMohhsAJiPoXfHqeDyS4erPsjBdrS6DyJcc=
Subject key identifier: CA:E9:8C:42:5F:ED:49:8E:DE:92:C7:58:3B:D2:DC:5F:E1:32:85:82
Certificate issuer: /CN=75f1a763745c25dad28f4a8116688e82ce12028b
Certificate serial: 0486C6D9
Authority key identifier: 75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/yumMQl_tSY7eksdYO9LcX-EyhYI.roa
Signing time: Sat 01 Jan 2022 05:02:20 +0000
ROA not before: Sat 01 Jan 2022 05:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35478
IP address blocks: 45.8.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75941593 (0x486c6d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75f1a763745c25dad28f4a8116688e82ce12028b
Validity
Not Before: Jan 1 05:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cae98c425fed498ede92c7583bd2dc5fe1328582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:ac:3e:68:79:f8:5c:72:94:57:55:05:e2:
07:20:01:05:61:d3:af:85:cf:11:fb:25:42:d4:7e:
cd:be:1e:ae:12:a3:e7:85:16:79:53:c2:84:b3:97:
64:6a:24:82:fa:02:96:c6:65:48:61:eb:8f:38:56:
f7:a5:8f:90:78:ba:b8:fd:06:b6:f5:ab:35:2d:69:
d3:66:29:31:19:3b:c2:51:5d:1b:88:f8:ff:04:58:
ed:db:d8:64:ca:f0:66:8c:2f:fa:72:eb:10:92:b0:
ee:13:fc:66:92:c2:44:31:83:9a:b5:80:e2:2e:51:
f2:57:ad:cf:6e:47:19:63:79:f8:81:27:9c:6a:f0:
d3:3b:5d:9e:01:a8:4d:3d:64:a8:10:ce:ef:69:61:
5f:a1:50:e6:53:a2:0d:11:e8:8a:c3:65:7f:ec:b6:
78:74:e4:3c:45:61:5b:61:33:a0:c7:58:33:e4:9d:
81:9f:11:e0:63:ce:5a:ef:c2:e0:71:a6:dd:fb:62:
04:d3:c2:ca:6f:b8:e3:38:45:0a:13:65:1d:a3:77:
a2:c2:9d:80:d0:fd:66:d8:33:13:59:db:75:28:d3:
cf:72:88:4a:12:55:ef:d6:50:1b:bc:65:b1:db:cd:
a7:74:b5:da:61:77:96:c4:66:c0:b6:83:c1:29:46:
6d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E9:8C:42:5F:ED:49:8E:DE:92:C7:58:3B:D2:DC:5F:E1:32:85:82
X509v3 Authority Key Identifier:
keyid:75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/yumMQl_tSY7eksdYO9LcX-EyhYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.44.0/24
Signature Algorithm: sha256WithRSAEncryption
75:17:e5:3e:d0:d9:70:fe:b7:9f:70:dc:a2:7b:ca:c9:c1:fd:
6d:f5:9b:fa:8a:55:13:22:11:4a:4c:85:74:e9:ed:ee:f1:1b:
df:f2:4f:69:70:32:55:c0:9e:4b:63:ad:de:ec:fc:19:30:56:
78:32:4b:e2:3c:83:b1:f9:d1:24:4b:77:67:04:c0:cc:ef:a8:
c2:f3:26:2f:7d:5d:51:43:96:b1:68:b8:9b:5b:aa:4d:5c:e8:
2d:f2:51:06:d7:09:b7:0a:37:a4:23:2e:33:fb:80:ba:ea:b2:
b8:09:4b:41:20:7c:4b:93:ac:2a:e9:32:fa:67:2f:ce:53:5d:
4b:ce:01:56:f7:b6:53:af:5d:58:26:b2:bc:24:63:b9:bb:95:
b9:72:8a:04:cf:65:ac:7d:7c:23:e1:96:80:36:e6:4e:39:4f:
09:46:50:26:9f:4a:f7:8e:a1:f6:c5:bd:67:94:28:08:00:a2:
65:a3:3d:fe:8b:13:46:19:e1:07:96:c9:10:8b:e5:15:a6:20:
3e:41:27:d1:f2:f3:aa:20:94:4a:83:6a:85:eb:f9:cb:e0:64:
31:0c:65:39:9b:46:87:11:6c:35:87:53:a3:ef:db:6b:6a:b1:
f5:6c:61:0f:53:de:da:3d:a0:e2:51:1e:5a:d8:66:fe:e5:6e:
73:06:13:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:28 2024 by rpki-client on console-ams.rpki-client.org