Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/yIUM15a3kO2N3shpbnzVtm5VM3g.roa
File: yIUM15a3kO2N3shpbnzVtm5VM3g.roa (raw, json)
Hash identifier: 1dzKi5OH7LwSs/lnNhzM3EtHRrzFEmgZuEaM1EwgPO4=
Subject key identifier: C8:85:0C:D7:96:B7:90:ED:8D:DE:C8:69:6E:7C:D5:B6:6E:55:33:78
Certificate issuer: /CN=111014ce8ad38d15350096d549ee1c5805d09dc8
Certificate serial: 0658F71A
Authority key identifier: 11:10:14:CE:8A:D3:8D:15:35:00:96:D5:49:EE:1C:58:05:D0:9D:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERAUzorTjRU1AJbVSe4cWAXQncg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/yIUM15a3kO2N3shpbnzVtm5VM3g.roa
Signing time: Sat 01 Jan 2022 15:57:36 +0000
ROA not before: Sat 01 Jan 2022 15:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208499
IP address blocks: 45.132.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106493722 (0x658f71a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111014ce8ad38d15350096d549ee1c5805d09dc8
Validity
Not Before: Jan 1 15:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8850cd796b790ed8ddec8696e7cd5b66e553378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:21:ed:83:3d:b2:63:1a:f7:18:77:c5:46:b4:
5d:fa:24:20:aa:55:1e:5e:35:73:a9:f8:37:e4:62:
a2:30:5b:2d:83:68:d4:54:e7:a9:1d:bf:38:53:54:
d9:e6:95:81:61:ba:b8:85:5e:73:d6:51:be:2a:f1:
98:23:67:33:40:f0:44:40:0e:8c:b1:21:3c:8b:b0:
56:db:69:29:0d:87:32:9b:31:9b:2f:17:23:86:4e:
1b:16:86:f1:1d:ab:5c:98:90:23:9f:a0:f8:20:72:
3b:d3:1e:bb:93:c1:83:d3:3b:3d:d2:1a:f2:0c:ea:
ac:ad:fa:13:79:b0:82:c0:9b:28:d0:97:b2:76:c1:
07:d5:a4:e9:af:22:8f:d5:53:1f:28:2c:12:35:e9:
46:50:3b:dd:e0:52:2c:db:85:e3:7b:4b:1a:3f:62:
8b:2c:ab:fb:60:81:2f:8c:d7:ee:40:eb:c8:25:ef:
34:e8:8b:52:ef:62:c1:11:e8:ef:8f:13:e5:dd:7c:
f7:dd:8b:5b:34:08:a0:2f:7f:d3:7b:c5:d1:9c:f1:
76:9d:88:47:d0:90:ba:cb:1f:03:77:00:08:ee:07:
82:37:46:ac:ee:97:e7:06:b3:bb:82:97:d4:d2:17:
cb:6f:da:1f:ad:a7:c8:82:39:17:a5:2f:c6:68:73:
e5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:85:0C:D7:96:B7:90:ED:8D:DE:C8:69:6E:7C:D5:B6:6E:55:33:78
X509v3 Authority Key Identifier:
keyid:11:10:14:CE:8A:D3:8D:15:35:00:96:D5:49:EE:1C:58:05:D0:9D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERAUzorTjRU1AJbVSe4cWAXQncg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/yIUM15a3kO2N3shpbnzVtm5VM3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/ERAUzorTjRU1AJbVSe4cWAXQncg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.220.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:29:f4:1c:4d:1c:4e:67:05:24:50:66:80:07:b9:d3:92:86:
5d:86:eb:16:46:2b:65:09:0c:5a:7a:28:64:4e:33:b2:6f:8b:
ec:94:85:75:d4:ec:d6:3b:a4:3b:b1:3c:8e:2c:95:7f:9d:6d:
12:92:04:03:db:da:60:05:2c:6f:17:89:d5:fc:99:05:71:10:
8b:6d:cd:d7:45:c5:df:3a:1f:4f:33:65:40:ad:e9:ef:8c:9a:
71:f3:a2:c2:f4:ba:45:b0:a4:a8:1c:d3:6f:42:28:17:6c:8d:
67:f1:23:ff:db:dc:ad:f9:60:88:6a:c5:d3:85:9c:66:ee:a0:
c6:d0:15:7a:f2:79:4b:73:9a:84:7d:01:6d:ed:4d:c1:95:25:
79:24:3f:33:17:d7:d7:39:68:5c:56:83:2b:b7:4a:1e:29:23:
01:0b:83:d1:d4:4b:e9:20:ae:dc:51:90:cd:b8:84:20:6e:dc:
ab:7b:e8:92:0c:c9:30:5c:5f:db:62:a2:ca:41:de:1a:e4:30:
fa:22:7a:a8:e7:e4:9e:16:58:10:c2:c2:29:aa:95:ec:d7:23:
39:5e:f7:5a:ce:72:4f:af:12:38:47:ca:15:8d:64:af:7b:e7:
1a:a1:59:e5:8b:87:01:85:cc:48:c3:b7:80:42:fb:c9:01:6b:
5f:52:d0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-fra.rpki-client.org