Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/yuMpM-cUTouNoTKUdaUf4YEiGF0.roa
File: yuMpM-cUTouNoTKUdaUf4YEiGF0.roa (raw, json)
Hash identifier: 8JMxWvoDSYxwVNX8mqzdTsAcvwsoQvPPatOQ5tt19Kc=
Subject key identifier: CA:E3:29:33:E7:14:4E:8B:8D:A1:32:94:75:A5:1F:E1:81:22:18:5D
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 016BC486
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/yuMpM-cUTouNoTKUdaUf4YEiGF0.roa
Signing time: Mon 13 Jun 2022 10:40:15 +0000
ROA not before: Mon 13 Jun 2022 10:40:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.156.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23839878 (0x16bc486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jun 13 10:40:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cae32933e7144e8b8da1329475a51fe18122185d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6a:7c:9e:78:2a:9a:50:e3:1d:86:f0:5f:0a:
d8:e2:a0:eb:35:a5:c3:0c:75:29:74:39:7e:0a:c8:
7d:3c:e6:9e:b7:68:2b:2e:13:ee:2e:25:13:68:ca:
46:35:16:fe:c4:14:59:d8:de:73:83:a1:d9:a0:11:
d4:78:0c:29:40:9a:91:51:c0:94:f2:b4:31:6e:e3:
0e:98:0a:aa:8f:b9:6c:2a:ea:6c:3b:b7:46:d3:1a:
a9:f9:3f:42:ee:29:c7:e2:21:0f:d3:94:34:83:e5:
6e:e3:b4:90:32:bf:57:b1:53:e2:d9:4d:25:4c:bd:
75:39:b5:14:7b:5d:2a:8c:35:47:d2:ef:5a:b3:ad:
d6:28:c2:38:28:65:0f:3a:66:41:2f:83:75:aa:bc:
f1:37:c8:9f:3a:8e:1b:06:49:39:02:87:69:71:2b:
04:16:77:7b:27:48:6a:da:d0:a4:f7:f4:ad:65:37:
6c:c0:e3:4f:0d:1b:65:c1:47:ad:18:7f:d6:ba:85:
80:7f:23:db:c8:d1:f1:8d:b6:c8:f0:8a:99:a6:ca:
7c:65:05:7a:d0:ee:aa:cc:77:13:08:7f:8f:71:f9:
bb:5e:73:57:e8:45:a8:44:20:7c:f8:b2:4c:91:e3:
1b:00:38:ce:64:90:8d:34:4f:7c:fc:3a:ad:46:10:
b6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E3:29:33:E7:14:4E:8B:8D:A1:32:94:75:A5:1F:E1:81:22:18:5D
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/yuMpM-cUTouNoTKUdaUf4YEiGF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.145.0/24
Signature Algorithm: sha256WithRSAEncryption
32:df:5d:49:29:e6:be:ed:3e:22:6e:70:5a:c2:ac:9e:c1:c3:
c7:1d:6f:dd:2b:4e:78:78:41:9c:6c:99:41:f7:d7:ed:f1:b0:
cd:45:8c:28:f5:cc:09:49:70:c1:aa:1d:84:30:39:d4:f8:66:
6b:f7:be:5e:1b:69:07:26:f1:bc:5a:ee:72:80:ee:8f:71:a8:
a6:41:0c:f6:f5:e4:e5:08:57:3b:ae:e6:ca:e8:7a:01:9c:7b:
65:3c:72:da:c9:a3:5c:03:23:b4:e2:0e:b5:a9:3b:b4:86:2a:
f5:ca:89:32:ea:61:b0:35:45:3f:1c:79:b9:a1:aa:d4:98:b0:
e7:d5:a8:1e:f6:08:ba:67:ed:60:a2:d9:9a:87:86:db:96:31:
f6:18:56:68:91:c5:e8:05:07:d4:7e:df:d5:d8:2b:be:2f:8f:
ac:39:ab:a4:5f:56:09:6c:4e:49:b4:a6:cf:d8:5f:76:cf:b9:
cd:1e:af:36:f9:26:c4:4c:fa:00:13:49:9d:3b:a0:a2:64:f5:
f4:4b:e5:06:03:79:00:c4:41:64:a4:b4:bb:e1:99:02:f6:3d:
76:02:bd:e0:a3:cc:e5:f2:be:9f:ad:82:d3:5c:44:b8:da:65:
e0:28:0c:a9:82:46:d2:3e:63:0a:08:78:2d:6e:05:16:18:6a:
62:51:35:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org