Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/yvWiEAwjIvM76DrbWNjhznIYSwQ.roa
File: yvWiEAwjIvM76DrbWNjhznIYSwQ.roa (raw, json)
Hash identifier: suxr10kb5vSkY1b/i8h571R59Na6djcGf0rTxwX5bVM=
Subject key identifier: CA:F5:A2:10:0C:23:22:F3:3B:E8:3A:DB:58:D8:E1:CE:72:18:4B:04
Certificate issuer: /CN=0c17dae04476db1016caa43e3ed9bc6bd69f3975
Certificate serial: 027887
Authority key identifier: 0C:17:DA:E0:44:76:DB:10:16:CA:A4:3E:3E:D9:BC:6B:D6:9F:39:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBfa4ER22xAWyqQ-Ptm8a9afOXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/yvWiEAwjIvM76DrbWNjhznIYSwQ.roa
Signing time: Tue 24 May 2022 09:51:13 +0000
ROA not before: Tue 24 May 2022 09:51:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213281
IP address blocks: 217.195.148.0/22 maxlen: 24
151.252.216.0/21 maxlen: 24
45.155.140.0/22 maxlen: 24
2a0f:ff00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161927 (0x27887)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c17dae04476db1016caa43e3ed9bc6bd69f3975
Validity
Not Before: May 24 09:51:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=caf5a2100c2322f33be83adb58d8e1ce72184b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d4:1f:17:51:4a:92:55:68:9f:a0:49:0d:f6:
7d:74:a3:2d:a5:a4:56:02:dc:8d:c4:ce:70:a0:61:
b3:76:14:d4:0f:0a:58:50:d1:c6:36:e3:9f:fa:3b:
1f:3e:cc:ee:83:1a:f0:70:d8:d0:0b:7c:27:15:e5:
77:0b:2f:66:ff:84:7f:8b:1d:5d:a5:8c:03:30:85:
cd:fd:a3:5b:81:32:93:fd:56:f1:57:18:f2:66:fc:
3d:df:db:20:20:31:8c:3b:fa:fe:04:85:ef:52:d8:
5a:97:02:3f:6a:1a:dd:62:8b:5c:c0:64:3e:82:17:
44:09:a0:fa:a0:d0:9d:c4:ca:a1:73:c7:58:78:40:
8f:4f:25:ff:1f:5b:a0:5e:8c:de:d9:95:d6:4d:48:
75:64:ed:b6:70:1d:03:7e:58:54:87:2f:af:fd:4d:
62:b3:b6:ba:e3:fd:f2:45:05:08:ce:d4:f9:b5:0e:
ea:3d:80:fd:c8:0f:9f:80:ae:f4:9e:b3:ee:7b:2f:
ce:30:f2:3f:a0:d1:ba:73:3b:e4:d9:6f:f4:27:ce:
6d:a6:a8:b9:42:6c:05:ed:42:b7:03:bf:0a:71:ef:
e8:35:a2:82:24:95:e1:51:d3:6b:d1:92:b9:33:98:
49:ee:b3:4f:cf:8b:9a:ce:02:7b:43:34:cb:40:8b:
c3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F5:A2:10:0C:23:22:F3:3B:E8:3A:DB:58:D8:E1:CE:72:18:4B:04
X509v3 Authority Key Identifier:
keyid:0C:17:DA:E0:44:76:DB:10:16:CA:A4:3E:3E:D9:BC:6B:D6:9F:39:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBfa4ER22xAWyqQ-Ptm8a9afOXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/yvWiEAwjIvM76DrbWNjhznIYSwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/DBfa4ER22xAWyqQ-Ptm8a9afOXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.140.0/22
151.252.216.0/21
217.195.148.0/22
IPv6:
2a0f:ff00::/29
Signature Algorithm: sha256WithRSAEncryption
46:f8:62:16:6e:a5:2c:55:b4:6f:a9:71:8e:5f:63:89:03:b4:
ed:9e:89:61:6e:c1:37:a5:74:91:28:99:9e:2d:0f:46:5d:f4:
f7:ab:93:5e:03:e2:23:e6:cd:f5:a3:bc:11:b6:af:3f:92:95:
21:14:c1:83:3d:6c:5f:eb:7f:c8:87:47:2b:78:4e:e8:23:41:
95:46:99:08:37:6b:71:67:82:69:19:4c:4f:b3:4c:10:b2:5d:
c1:4e:06:79:9b:5c:f9:42:94:91:c3:5e:91:8a:06:ad:a0:f0:
bb:b6:ac:80:6d:9a:ec:9a:ed:4f:5b:81:09:f1:c0:67:19:8a:
66:d4:7d:05:9c:88:73:71:28:26:3d:74:b8:fc:71:8b:fd:bf:
76:42:dc:18:31:87:e1:86:ca:e2:92:83:b4:a8:74:12:47:72:
ec:36:64:7b:81:b8:17:75:92:d0:7b:a4:e6:89:28:ae:c8:93:
e0:b4:c7:db:8f:26:00:98:15:00:5e:cb:53:6c:fd:ac:84:a7:
c8:c5:56:68:82:c6:d3:12:9b:ee:96:12:66:65:56:32:bf:e6:
dc:97:96:26:b5:22:f7:d1:95:aa:11:11:3c:a5:d5:48:fa:a8:
e5:50:49:25:c3:17:f1:7f:59:d1:4f:c9:94:dd:e8:f3:3f:99:
f9:af:bf:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:59 2024 by rpki-client on console-fra.rpki-client.org