Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/vYkeKZ-y_Db9RgT8o10ln2Z1mGM.roa
File: vYkeKZ-y_Db9RgT8o10ln2Z1mGM.roa (raw, json)
Hash identifier: ocaOcnW/kfP8GkIPBRGehxGVhI+77G1Pd4OT6E60zW0=
Subject key identifier: BD:89:1E:29:9F:B2:FC:36:FD:46:04:FC:A3:5D:25:9F:66:75:98:63
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 01874203708BE14E1433E3ECFFD3720157D6
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/vYkeKZ-y_Db9RgT8o10ln2Z1mGM.roa
Signing time: Sun 02 Apr 2023 12:48:54 +0000
ROA not before: Sun 02 Apr 2023 12:48:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.91.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:42:03:70:8b:e1:4e:14:33:e3:ec:ff:d3:72:01:57:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: Apr 2 12:48:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd891e299fb2fc36fd4604fca35d259f66759863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:70:4b:ad:06:f1:a6:50:c1:a4:96:20:b9:6a:
5c:61:e4:82:0d:b7:7d:10:a0:3a:26:2b:4c:84:e0:
04:70:72:15:94:d1:c7:10:f6:b0:ad:07:1e:0b:9f:
a1:c6:16:31:93:a9:45:15:76:a5:4f:8e:0c:2c:28:
fc:58:7e:f0:f4:a6:9a:fc:6c:19:ed:8d:02:87:09:
ac:0c:82:74:61:57:7a:17:56:34:03:56:7a:d2:53:
df:cf:34:d6:e4:14:1e:23:6b:99:c1:aa:91:70:0c:
95:c1:72:c4:f6:41:21:fc:94:7a:4d:a8:59:b0:d8:
49:5d:73:11:82:a7:11:b7:7d:8a:c0:fd:36:54:56:
66:2c:fe:32:e4:24:65:1e:ca:6b:53:b5:3a:bf:c2:
e4:a7:c9:42:94:9a:9c:e2:3a:00:ac:cf:d4:53:22:
19:66:15:e9:10:96:bf:57:4f:63:e7:56:8e:e0:25:
05:21:40:59:b9:c0:58:8c:2e:76:1e:e2:03:17:3f:
4b:24:9d:fe:c1:8a:7f:8d:ea:ba:17:23:46:4b:64:
a2:98:dd:bd:1f:34:d8:92:35:ab:4b:8c:66:ed:8d:
ba:a6:b9:33:2c:8b:ba:7e:8b:6d:20:a9:8e:40:91:
fd:0d:58:ca:bd:ff:18:70:40:f0:b5:d2:5f:a2:eb:
35:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:89:1E:29:9F:B2:FC:36:FD:46:04:FC:A3:5D:25:9F:66:75:98:63
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/vYkeKZ-y_Db9RgT8o10ln2Z1mGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.79.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:16:f4:0e:50:86:38:35:9c:ff:f4:2c:7d:84:2f:c7:8e:ab:
8a:d3:71:99:e1:15:eb:e5:d3:05:20:64:80:23:68:ae:d5:e4:
bc:f9:c7:cc:ea:48:0d:9a:db:2e:0c:9b:4b:9b:7d:7e:12:a7:
e7:ac:ac:bd:0c:0c:72:71:6c:a6:d3:6d:71:c8:f8:90:43:d4:
73:26:03:f0:54:fe:cc:76:cd:8d:0b:de:53:e4:e8:28:83:5c:
d6:e3:f8:61:60:9e:5f:33:f6:67:2b:33:8f:b7:05:43:1f:a8:
51:1c:2d:77:52:cd:de:15:ac:80:45:49:e5:2a:e8:af:cb:df:
a4:60:71:40:0d:6f:a3:99:de:45:fa:a5:29:9f:86:ed:c2:20:
17:27:22:1f:4a:11:e7:53:e5:04:b0:77:87:f2:00:83:13:27:
6c:2f:d0:a8:fb:42:7c:8b:89:3c:6d:f3:e6:4f:18:4c:fd:9a:
af:3b:7b:6b:f6:9d:b7:da:78:36:05:fd:af:65:ed:e2:7a:b4:
a3:08:e2:36:cf:9f:2c:ef:e2:50:c5:c2:d1:52:e0:d1:b9:2f:
43:a0:4d:83:5b:e6:52:ba:0a:a2:5f:dc:95:ec:8e:b0:3a:4f:
6b:fa:e2:b1:b4:96:4d:8b:37:cc:f1:8a:7e:cc:7b:39:f3:51:
1e:d9:1e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:31 2025 by rpki-client