Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/yGYU9yV5YNnSblbWpBErPX_JajY.roa
File: yGYU9yV5YNnSblbWpBErPX_JajY.roa (raw, json)
Hash identifier: C9o2e0gI4jow1dP3drNbsJR/4f1ionw/8fZB1lo5K+8=
Subject key identifier: C8:66:14:F7:25:79:60:D9:D2:6E:56:D6:A4:11:2B:3D:7F:C9:6A:36
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 93141C
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/yGYU9yV5YNnSblbWpBErPX_JajY.roa
Signing time: Tue 26 Apr 2022 19:34:49 +0000
ROA not before: Tue 26 Apr 2022 19:34:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.155.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9638940 (0x93141c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Apr 26 19:34:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c86614f7257960d9d26e56d6a4112b3d7fc96a36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:98:55:d7:e2:4e:76:ff:da:7c:86:db:e5:c9:
9e:37:b6:4a:c9:8b:df:d2:20:ca:12:d6:6e:67:8f:
89:60:c2:36:b1:74:40:5a:b0:2a:8c:bd:fd:fe:8f:
ef:ef:36:d6:e2:c5:8c:16:06:7e:c5:80:db:cb:59:
b8:cb:6c:47:05:03:74:61:e5:0e:7d:26:2d:a9:1a:
1c:92:f7:fd:2c:bd:01:b3:17:c4:52:bf:90:ec:66:
d7:f3:13:19:23:4f:ae:27:84:ab:e3:f5:92:94:6c:
8a:be:f1:bf:7d:de:d9:9f:4e:09:00:e1:5f:20:22:
f2:16:c6:6b:d3:dd:60:68:4d:f8:f7:79:4d:e9:38:
5c:14:db:b3:b3:4b:35:bb:2a:dc:f3:f4:92:e8:a6:
ba:38:2c:49:4f:ba:d2:6b:23:66:23:9b:93:ba:e7:
67:06:f6:51:dc:ee:34:0d:b3:07:6f:a5:5b:67:bd:
af:6b:a5:29:f2:35:4b:0d:5c:91:4d:5c:e7:b8:3c:
d6:fe:82:2d:09:34:6f:4b:53:82:c1:62:d8:38:6d:
6a:b4:b7:c7:0e:89:40:d7:cc:bc:13:79:ef:67:c2:
3d:2f:0c:54:b6:96:5c:37:92:f2:ae:6f:5e:3b:60:
d9:18:66:17:8d:37:c6:76:35:de:54:b3:55:48:6c:
1a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:66:14:F7:25:79:60:D9:D2:6E:56:D6:A4:11:2B:3D:7F:C9:6A:36
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/yGYU9yV5YNnSblbWpBErPX_JajY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.66.0/24
Signature Algorithm: sha256WithRSAEncryption
01:5e:a5:e6:7b:e5:fa:ac:d1:41:11:87:40:74:4a:ab:21:e5:
d1:1a:0b:53:5a:3d:1c:c0:ee:0d:da:d9:a9:60:0e:08:e2:83:
21:25:d7:32:0d:3c:ef:b9:88:db:c5:c7:9a:f3:bd:2e:6a:26:
8e:3d:b1:06:89:f3:2a:a2:36:15:f5:42:8f:d0:03:e1:23:a8:
04:bd:42:14:4e:75:1c:c1:93:72:f2:09:3c:30:ef:76:63:df:
2b:ae:d5:f0:03:f0:d6:f3:a2:3d:f9:de:a3:51:bf:9e:73:c8:
90:65:b9:eb:85:88:33:f6:66:38:4b:7f:80:5c:25:d5:0a:b6:
42:50:5b:0f:38:b5:29:a5:95:a1:f4:5e:b0:35:91:8a:d2:64:
62:f1:b0:a6:d4:c9:ba:7b:d0:2f:05:d9:79:95:6e:86:d6:9d:
77:df:ab:bc:46:42:59:a8:89:02:88:a8:f9:07:c2:1b:60:35:
15:93:ed:5f:74:65:31:5c:ba:52:12:f8:7b:85:79:4c:82:ab:
73:bc:b4:b0:55:4a:9e:ae:dc:91:39:58:bb:fd:ea:67:77:b6:
c4:9d:3c:5d:64:90:41:d3:6e:d0:ba:8f:fb:21:23:6b:7d:10:
c6:0f:7d:ed:d4:54:37:00:33:94:f3:39:74:4b:f8:23:49:ca:
96:4c:33:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net