Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YS6Yt6Uo585d66ItBSh-wrmJlms.roa
File: YS6Yt6Uo585d66ItBSh-wrmJlms.roa (raw, json)
Hash identifier: 8cC98KijWSalFGthtsfZoM15sgRM/iChHlFM5JLyWhY=
Subject key identifier: 61:2E:98:B7:A5:28:E7:CE:5D:EB:A2:2D:05:28:7E:C2:B9:89:96:6B
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018572CC9D98E8D95AFE309C706437BB5BE2
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YS6Yt6Uo585d66ItBSh-wrmJlms.roa
Signing time: Mon 02 Jan 2023 14:04:50 +0000
ROA not before: Mon 02 Jan 2023 14:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211327
IP address blocks: 45.136.7.0/24 maxlen: 24
45.136.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:9d:98:e8:d9:5a:fe:30:9c:70:64:37:bb:5b:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 2 14:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=612e98b7a528e7ce5deba22d05287ec2b989966b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:4f:df:1f:7d:0c:dd:31:9c:c5:14:e4:00:23:
b8:57:f3:f4:2b:87:ab:70:9a:44:c0:dd:6b:77:31:
5f:4e:55:58:db:49:3f:13:d1:eb:2f:43:b9:75:85:
a8:81:1b:27:f2:d2:60:97:ac:d9:fa:f2:c5:9c:31:
63:cc:73:25:e8:fe:1c:3d:bf:54:89:b2:06:35:37:
29:e9:1f:15:ae:b1:a3:7c:4d:80:f5:0d:ab:5e:b8:
52:66:1b:fc:a6:77:a9:b6:6f:a8:15:07:10:7d:47:
92:68:ff:f3:f2:e4:4e:56:4b:d3:d0:2a:48:ed:fe:
5f:54:e2:4a:df:6a:fb:d8:ba:30:71:5d:f7:1d:6e:
19:ef:e2:0f:a1:03:bd:1d:ce:09:09:94:83:6c:0f:
e9:46:87:e4:ff:5e:a5:59:98:fb:0b:8a:5d:cd:d2:
92:2f:dc:23:4a:dc:7e:64:0f:b5:89:1b:74:52:c4:
37:e5:c6:50:1b:2d:59:7c:a9:91:b4:8c:2f:65:c9:
e5:5a:f5:bf:f4:3a:85:6c:1c:a6:bd:95:21:c7:fd:
38:24:59:99:fe:ff:bf:9e:1c:b2:d6:11:8c:94:0f:
c2:36:b0:37:09:18:79:1d:42:8d:d1:f1:f3:75:c8:
5f:4c:2c:da:20:cd:92:76:d0:fc:d1:d8:19:cb:14:
2d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:2E:98:B7:A5:28:E7:CE:5D:EB:A2:2D:05:28:7E:C2:B9:89:96:6B
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YS6Yt6Uo585d66ItBSh-wrmJlms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.6.0/23
Signature Algorithm: sha256WithRSAEncryption
09:c0:65:3a:02:cb:4c:3b:0c:ae:75:70:6b:73:38:ec:b2:a8:
c2:4e:d9:7c:96:42:a5:ed:65:f9:54:d2:70:0c:b9:5c:aa:eb:
4c:34:16:84:c2:1f:0c:e3:63:57:37:32:6a:f2:14:ca:af:b8:
ad:f6:6d:22:1f:f4:df:82:ec:23:6d:92:bb:93:f7:a3:1c:fc:
ce:ea:a5:4e:3f:ed:7a:a7:d9:20:28:0b:12:8e:59:52:93:30:
8f:10:fe:4b:5a:a5:df:37:09:02:e8:f8:72:81:8f:38:84:95:
d0:7d:c9:5b:d2:04:b8:e0:1c:23:53:f5:1c:56:50:d8:0f:e5:
aa:f9:4b:a8:dc:71:1a:6d:4c:82:2f:47:36:0e:d3:ae:ac:7c:
97:16:13:aa:7f:78:87:4a:b8:1a:82:ff:8d:3e:26:85:c0:c2:
de:51:a1:08:c0:5b:98:8e:eb:ee:9b:cb:d8:c3:d4:fc:b4:0b:
53:6f:ee:74:b7:2e:c1:80:9f:a7:43:a4:9c:0f:26:76:eb:13:
15:ed:f5:b4:4d:bb:9f:bb:da:65:ad:b4:86:e2:8e:90:50:32:
42:e3:a6:b3:89:3b:42:d5:77:2d:9c:b6:79:c8:07:d3:26:06:
b1:33:0a:fe:f8:20:c6:5a:a6:56:91:8e:29:3d:50:52:f8:17:
22:b6:73:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyzJ2Y6Nla/jCccGQ3u1viMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjMwMTAyMTQwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTJlOThiN2E1MjhlN2NlNWRlYmEyMmQwNTI4N2VjMmI5ODk5NjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhU/fH30M3TGcxRTkACO4V/P0K4er
cJpEwN1rdzFfTlVY20k/E9HrL0O5dYWogRsn8tJgl6zZ+vLFnDFjzHMl6P4cPb9U
ibIGNTcp6R8VrrGjfE2A9Q2rXrhSZhv8pneptm+oFQcQfUeSaP/z8uROVkvT0CpI
7f5fVOJK32r72LowcV33HW4Z7+IPoQO9Hc4JCZSDbA/pRofk/16lWZj7C4pdzdKS
L9wjStx+ZA+1iRt0UsQ35cZQGy1ZfKmRtIwvZcnlWvW/9DqFbBymvZUhx/04JFmZ
/v+/nhyy1hGMlA/CNrA3CRh5HUKN0fHzdchfTCzaIM2SdtD80dgZyxQt9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGEumLelKOfOXeuiLQUofsK5iZZrMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvWVM2WXQ2VW81ODVkNjZJdEJTaC13cm1KbG1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLYgGMA0G
CSqGSIb3DQEBCwUAA4IBAQAJwGU6AstMOwyudXBrczjssqjCTtl8lkKl7WX5VNJw
DLlcqutMNBaEwh8M42NXNzJq8hTKr7it9m0iH/TfguwjbZK7k/ejHPzO6qVOP+16
p9kgKAsSjllSkzCPEP5LWqXfNwkC6PhygY84hJXQfclb0gS44BwjU/UcVlDYD+Wq
+Uuo3HEabUyCL0c2DtOurHyXFhOqf3iHSrgagv+NPiaFwMLeUaEIwFuYjuvum8vY
w9T8tAtTb+50ty7BgJ+nQ6ScDyZ26xMV7fW0Tbufu9plrbSG4o6QUDJC46aziTtC
1XctnLZ5yAfTJgaxMwr++CDGWqZWkY4pPVBS+BcitnMw
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:15 2025 by rpki-client