Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ctYiGLYpZXfu9njwr0J6q9C7z40.roa
File: ctYiGLYpZXfu9njwr0J6q9C7z40.roa (raw, json)
Hash identifier: YI24PJjIeV9LEBfpsld7FBI0bvh8WCsgzsGDckiQ0CE=
Subject key identifier: 72:D6:22:18:B6:29:65:77:EE:F6:78:F0:AF:42:7A:AB:D0:BB:CF:8D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07B83E0B
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ctYiGLYpZXfu9njwr0J6q9C7z40.roa
Signing time: Sun 01 May 2022 17:09:03 +0000
ROA not before: Sun 01 May 2022 17:09:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.8.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129515019 (0x7b83e0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 1 17:09:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72d62218b6296577eef678f0af427aabd0bbcf8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:93:a7:73:47:50:1a:86:5f:40:9b:a6:b9:
e5:0c:0f:da:ed:f5:3c:59:1f:2b:c9:08:3f:cc:c3:
67:d8:18:4c:c9:a0:50:85:f7:fa:9f:25:42:55:51:
64:74:4c:00:27:34:40:15:34:56:58:7b:53:11:ab:
e7:2e:72:a4:8a:c7:fa:48:e1:ef:92:dd:bf:02:f6:
42:e2:9f:92:9c:b6:90:22:1c:bc:cd:cc:49:9e:aa:
41:f3:c7:84:4b:32:5c:5e:20:46:97:db:68:24:4c:
ff:1e:05:e6:56:47:fb:e5:4f:28:08:a5:ea:de:63:
d0:39:f5:74:4a:33:96:bc:6f:5a:1d:f9:42:22:c0:
d8:34:98:6e:0c:a0:e7:7e:61:f2:46:43:88:36:22:
1e:e8:ef:b6:c3:92:ee:51:f5:85:04:a5:2a:f2:98:
1d:9c:0c:dd:76:ee:52:c8:00:a4:c7:33:85:26:7b:
1b:fe:09:07:32:0f:98:7c:f3:37:bc:a5:20:b3:c4:
38:b1:ea:5e:0f:94:fd:58:15:86:c3:c6:44:4b:c2:
a2:4e:35:0a:f2:2e:84:f9:87:15:bd:3f:ee:90:6a:
97:c0:ec:c4:e8:0a:4c:5d:da:a8:dd:a1:54:eb:6d:
b4:74:b9:71:50:6c:b7:6f:98:22:42:3b:c3:97:1c:
b4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D6:22:18:B6:29:65:77:EE:F6:78:F0:AF:42:7A:AB:D0:BB:CF:8D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ctYiGLYpZXfu9njwr0J6q9C7z40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.22.0/24
Signature Algorithm: sha256WithRSAEncryption
15:6c:4b:d3:d1:7f:6e:ad:b4:3f:de:14:40:c6:92:ee:d0:78:
a3:70:ab:f7:f4:3c:93:9b:03:59:73:c9:14:96:d8:9e:25:3c:
2d:29:ce:d3:7e:99:21:03:ae:0c:8e:7a:4b:33:6c:4f:7d:a8:
8c:2d:77:f5:7c:e2:33:95:07:fc:9a:23:60:d5:df:01:e1:e5:
be:f5:5a:98:49:23:85:2b:36:40:5c:21:23:bf:b0:71:5b:be:
35:43:cf:7a:e7:96:16:39:67:ba:30:26:3d:6e:e9:87:27:8e:
f4:6e:fc:83:c5:96:b3:e2:c5:4c:fe:8f:84:66:76:a8:ec:58:
f7:64:a8:0b:69:90:28:2d:ed:d5:32:68:48:44:4a:e9:6b:16:
a5:99:89:9e:a3:14:8b:0e:db:05:e9:b8:8b:b3:a1:d2:10:69:
16:f1:39:2e:bd:7e:15:07:5c:27:7e:41:83:47:dc:26:98:d0:
2d:a1:2d:b3:62:69:fa:ef:23:5a:9b:cd:73:b0:02:45:56:b9:
60:c0:1a:4a:2c:29:73:f6:c3:7c:b9:d6:ba:e5:fa:7b:33:a8:
61:62:07:4e:0c:9f:52:9d:3e:ab:1e:f2:9a:77:94:4e:46:8b:
73:76:b7:39:6d:80:b7:f4:75:9f:5c:98:04:d7:d0:2b:39:fd:
a9:cc:ae:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org