Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/yGUFVIjhlmu-uLXd2MOF56QNfvQ.roa
File: yGUFVIjhlmu-uLXd2MOF56QNfvQ.roa (raw, json)
Hash identifier: W/H6nie6JOcCttBRYtqf8KvjRHEa9JEIm4nShEndiwI=
Subject key identifier: C8:65:05:54:88:E1:96:6B:BE:B8:B5:DD:D8:C3:85:E7:A4:0D:7E:F4
Certificate issuer: /CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Certificate serial: 05500274
Authority key identifier: E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/yGUFVIjhlmu-uLXd2MOF56QNfvQ.roa
Signing time: Sat 01 Jan 2022 04:02:19 +0000
ROA not before: Sat 01 Jan 2022 04:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197706
IP address blocks: 45.157.124.0/22 maxlen: 24
2a0f:4780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89129588 (0x5500274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Validity
Not Before: Jan 1 04:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c865055488e1966bbeb8b5ddd8c385e7a40d7ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:13:05:4f:62:09:c3:c7:3c:e8:14:f4:7b:19:
55:bd:e8:0b:f8:91:b9:d6:e0:f8:c1:9a:a7:2a:6d:
fc:f7:c9:dd:b9:cf:73:5c:d3:19:ec:ac:60:a8:5e:
1c:49:76:db:4b:4e:3b:b3:07:65:d7:2f:d2:e9:8e:
57:79:92:84:6e:6f:fd:a7:da:bb:12:64:83:1c:97:
49:72:34:ea:82:81:3c:ac:41:4a:75:6f:0f:9a:58:
63:09:b6:8d:0b:41:d4:38:3e:32:05:f4:67:e2:da:
d4:b4:e4:0f:e8:cb:d6:bb:b7:ea:35:c0:b6:e2:39:
4a:73:b9:be:4d:89:5e:8e:4f:82:00:fc:ae:70:57:
78:b0:d4:9c:38:7d:f7:2a:4a:58:f9:6e:cd:dc:f0:
d3:5d:09:98:42:e6:04:da:b4:77:38:7f:f7:74:b4:
d2:db:61:c8:00:ac:c8:0c:24:9e:ae:0c:ef:ce:06:
4e:c1:d7:65:5c:c0:d7:0e:06:59:3a:5c:3b:0d:a6:
76:aa:e5:01:ab:e6:85:56:19:23:2e:58:98:70:4b:
f4:a0:b2:b8:1b:b2:cc:c7:11:85:68:6c:ab:7f:ff:
51:a2:40:06:a8:6f:2f:a4:ab:81:67:5e:ad:cd:cb:
be:1e:c1:e2:cd:49:40:90:37:c7:05:95:ef:5e:7d:
67:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:65:05:54:88:E1:96:6B:BE:B8:B5:DD:D8:C3:85:E7:A4:0D:7E:F4
X509v3 Authority Key Identifier:
keyid:E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/yGUFVIjhlmu-uLXd2MOF56QNfvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/4bmjzg9ZORCBnDJx4ejQvRNxpr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.124.0/22
IPv6:
2a0f:4780::/29
Signature Algorithm: sha256WithRSAEncryption
1f:61:e3:fd:7d:ec:a9:26:76:6e:08:ef:33:27:54:3c:f5:02:
6a:ad:16:d4:d5:11:da:bf:ba:68:97:52:f6:3d:ff:2b:3c:aa:
3d:cc:59:c2:3b:8c:e1:e9:8a:85:98:aa:29:be:40:36:0f:86:
4d:1e:b9:27:08:ee:26:47:1d:e1:bc:6c:23:ae:7e:a3:37:54:
66:33:b9:4c:5a:15:f5:49:3c:3b:e2:aa:9d:20:7d:a8:85:31:
63:1c:5a:52:d6:96:fe:0c:20:cb:c5:ae:8f:ba:03:d0:99:65:
57:6e:9f:b8:3f:1c:47:f6:04:c5:0d:f2:b3:64:49:75:9b:b4:
3d:a6:c7:ad:8b:8b:43:23:62:5f:d7:93:d0:38:a9:a1:30:e0:
b6:bd:3c:a8:28:07:a5:7d:39:54:cd:c7:a8:da:f7:0f:79:f4:
5d:fd:44:9b:26:50:5a:7a:fe:32:dc:3f:cb:f1:da:64:96:b4:
d1:06:87:4a:ed:6f:34:04:d7:bd:03:bf:b9:3c:34:8d:1c:bf:
6f:8f:0f:58:00:8c:62:fe:0f:b6:dc:52:85:bd:0e:ec:58:9c:
cc:f5:db:cc:08:de:e0:c4:c9:43:a9:5a:42:9a:a6:12:94:5b:
e3:99:43:d1:d1:2b:0a:95:eb:7d:9f:f1:36:f6:01:61:dd:8c:
3b:ae:07:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org