Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/yqPHEaUlTjiP4oAEoeaWn9ucgLM.roa
File: yqPHEaUlTjiP4oAEoeaWn9ucgLM.roa (raw, json)
Hash identifier: RsQSHLi5/Of93Q+2RauhIFmDoK+MepzNpMZGkWJHFnw=
Subject key identifier: CA:A3:C7:11:A5:25:4E:38:8F:E2:80:04:A1:E6:96:9F:DB:9C:80:B3
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 035C11B1
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/yqPHEaUlTjiP4oAEoeaWn9ucgLM.roa
Signing time: Sat 01 Jan 2022 07:01:44 +0000
ROA not before: Sat 01 Jan 2022 07:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271799
IP address blocks: 45.153.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56365489 (0x35c11b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 1 07:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=caa3c711a5254e388fe28004a1e6969fdb9c80b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:83:18:1b:1e:f5:3d:01:26:38:83:92:4c:a6:
12:45:ec:ae:2f:bb:89:ea:49:41:05:ed:e2:71:f5:
10:a9:8f:c5:bf:3e:2f:f4:33:ce:9c:2b:de:34:ef:
4c:45:10:3b:65:66:6e:d4:ea:92:c1:a2:ce:f5:c3:
03:77:e1:09:95:81:84:ff:cd:2a:62:27:d3:70:ac:
38:c4:66:5a:57:2d:7c:e0:34:cb:ac:47:31:90:5c:
8f:5d:a8:34:25:2f:67:e4:2e:b9:0a:53:39:34:46:
6e:d2:fc:46:a8:ec:ec:6e:7d:56:2d:b0:6c:a4:8c:
6c:5f:ea:56:51:0d:7e:e2:95:30:a0:af:0c:b5:1c:
6c:af:b1:2c:1d:55:ed:a7:ab:ce:63:07:60:03:2a:
38:a5:9e:84:00:20:a8:26:48:36:a8:0f:66:31:32:
07:d5:44:a7:08:80:43:0f:f4:fe:4d:cd:96:ef:13:
1a:cf:8e:7a:02:b4:95:03:da:82:4c:cd:4f:5b:66:
60:6f:74:cd:b1:0a:2b:08:25:a9:fe:51:14:70:9a:
4e:24:da:45:84:25:d1:ed:56:8a:62:34:d5:dd:58:
45:26:13:c4:91:e0:72:bc:65:3e:a9:48:d0:f4:75:
03:e6:68:f9:ab:41:ae:17:05:bd:96:04:d3:bb:17:
2e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A3:C7:11:A5:25:4E:38:8F:E2:80:04:A1:E6:96:9F:DB:9C:80:B3
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/yqPHEaUlTjiP4oAEoeaWn9ucgLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.165.0/24
Signature Algorithm: sha256WithRSAEncryption
23:9e:24:91:7d:10:4f:0d:ed:52:14:01:f7:31:dc:d8:99:74:
d2:46:c0:8f:bf:10:4a:00:59:bb:04:00:a7:d0:8a:a3:93:86:
36:0d:c7:ee:43:bb:52:cb:1e:cf:db:c7:6c:11:c9:9f:f4:16:
ea:ec:a6:09:77:f1:f4:a6:1b:e5:29:e1:5b:9b:41:2a:cc:a2:
a3:e8:2f:6d:b8:2e:10:11:0d:12:07:ba:07:08:54:69:9c:54:
0b:25:2f:cb:50:e7:be:17:bb:56:8f:76:a5:6f:cd:0e:56:6e:
7b:ee:38:b5:c9:c8:cf:88:ac:dd:ff:f3:61:c3:b6:8a:40:b1:
01:f2:0d:7b:e4:97:d9:ff:ec:ae:aa:cd:62:0f:87:55:22:cf:
4b:2a:9b:6e:0e:29:d1:40:f3:ac:01:be:ee:64:0c:42:44:eb:
6a:27:b2:9a:b4:3e:42:ff:14:b2:ed:12:77:b9:ac:4a:11:0a:
15:57:5e:b6:6f:68:11:f3:e5:cd:06:00:8e:61:35:87:f7:af:
fe:3a:f9:01:5e:cd:38:eb:95:22:0e:dc:05:1c:85:c4:23:fb:
59:cf:d4:9b:6b:13:d4:d5:11:dd:5e:70:e8:6b:c5:1e:53:90:
05:f0:6f:b5:6f:0d:e2:95:ac:9c:f9:c3:a1:a1:d6:25:65:63:
ae:fc:64:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:46 2024 by rpki-client on console-ams.rpki-client.org