Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a6b613-66bd-4312-8f0c-36b5dda9fbe8/1/ypK_fDylG4mj8dQBpNU2BAZTXys.roa
File: ypK_fDylG4mj8dQBpNU2BAZTXys.roa (raw, json)
Hash identifier: KZRrCwJqxyLuq9Lqt9nz9hPA/cHoCs0d4RpeS/fUIgk=
Subject key identifier: CA:92:BF:7C:3C:A5:1B:89:A3:F1:D4:01:A4:D5:36:04:06:53:5F:2B
Certificate issuer: /CN=2e19966c0ea5df3a987f8365524b5128cba7fc90
Certificate serial: 09052684
Authority key identifier: 2E:19:96:6C:0E:A5:DF:3A:98:7F:83:65:52:4B:51:28:CB:A7:FC:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhmWbA6l3zqYf4NlUktRKMun_JA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a6b613-66bd-4312-8f0c-36b5dda9fbe8/1/ypK_fDylG4mj8dQBpNU2BAZTXys.roa
Signing time: Thu 09 Jun 2022 13:04:02 +0000
ROA not before: Thu 09 Jun 2022 13:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57743
IP address blocks: 45.136.53.0/24 maxlen: 24
45.136.52.0/24 maxlen: 24
45.136.55.0/24 maxlen: 24
45.136.54.0/24 maxlen: 24
2a07:df40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151332484 (0x9052684)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e19966c0ea5df3a987f8365524b5128cba7fc90
Validity
Not Before: Jun 9 13:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca92bf7c3ca51b89a3f1d401a4d5360406535f2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7d:00:8e:eb:d1:6a:aa:5e:c1:8e:46:d9:ff:
30:bb:5b:55:c1:27:43:c9:a0:0a:76:c5:b1:fb:6f:
d5:30:8f:3d:e3:88:64:8b:ce:d1:7c:46:b2:6f:03:
b0:ef:ad:1e:a6:34:56:f2:5f:1e:c9:49:8d:bf:49:
e8:e1:df:6e:09:14:22:5f:44:86:99:c3:41:9c:c2:
d8:6e:08:a4:d9:2a:43:1a:99:e7:06:95:dc:1d:ac:
c7:41:cb:86:56:c9:a8:81:25:f9:d9:6c:5a:7c:22:
09:44:cd:db:12:80:e2:06:cf:65:0d:3b:aa:e4:82:
f9:1e:77:91:35:b5:dc:ac:ac:df:5a:57:59:6a:9b:
df:47:cf:7b:3a:5e:ce:5a:50:07:be:10:a8:a5:b1:
40:0e:99:d0:97:02:69:a0:85:e0:d6:c3:ee:39:74:
e2:13:34:c2:bb:77:b2:01:5f:e2:46:25:bd:d3:89:
9d:fb:c3:f0:81:56:5d:a7:53:dc:98:8f:a4:2d:48:
fb:b9:37:fd:1e:05:a9:c6:dd:2b:9c:89:7e:6a:ba:
89:55:48:57:4b:eb:56:73:eb:30:5b:7d:bf:3c:50:
44:6a:27:a5:13:31:b6:03:3e:18:97:3c:bb:9b:13:
d1:0b:b0:36:54:61:9c:a9:28:21:78:e5:97:0c:6e:
f6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:92:BF:7C:3C:A5:1B:89:A3:F1:D4:01:A4:D5:36:04:06:53:5F:2B
X509v3 Authority Key Identifier:
keyid:2E:19:96:6C:0E:A5:DF:3A:98:7F:83:65:52:4B:51:28:CB:A7:FC:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhmWbA6l3zqYf4NlUktRKMun_JA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a6b613-66bd-4312-8f0c-36b5dda9fbe8/1/ypK_fDylG4mj8dQBpNU2BAZTXys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a6b613-66bd-4312-8f0c-36b5dda9fbe8/1/LhmWbA6l3zqYf4NlUktRKMun_JA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.52.0/22
IPv6:
2a07:df40::/29
Signature Algorithm: sha256WithRSAEncryption
c1:82:df:59:f4:f0:5f:19:03:60:9b:27:8b:20:f8:93:d2:65:
5d:4a:a5:81:cf:c5:e2:3d:91:dd:e6:5a:d0:61:e0:1a:9a:97:
19:97:a0:5f:3e:75:2a:2e:54:07:bf:82:b6:af:db:2c:1d:82:
c4:6a:8d:75:a9:59:64:3b:30:e8:b4:73:2c:63:50:21:f6:dd:
11:23:19:b0:ea:5e:65:3b:a2:9b:91:af:e5:b5:57:0d:92:45:
69:40:be:bd:5b:62:c8:3a:5b:3a:56:c4:f6:dc:b1:db:ea:31:
4f:e8:a3:4c:46:0e:b3:80:fa:8c:1c:6b:95:33:88:02:e1:50:
4a:ae:19:b3:72:93:e3:a6:f6:15:1d:4c:27:a2:9e:27:09:2b:
23:0a:fd:c9:a7:9e:50:7a:d2:86:18:81:2c:ae:7f:bf:92:48:
2a:ea:14:6b:9c:42:97:83:05:78:5c:6f:72:e7:08:7c:1a:1b:
f8:08:92:5e:3e:07:17:10:ea:d5:07:34:11:ed:2c:6b:52:de:
3f:0f:d4:e0:65:f7:79:5e:82:ba:b3:0c:2c:ba:30:1d:82:bd:
dc:94:d1:da:39:9c:00:86:7e:3a:32:22:72:5d:60:87:8b:f7:
4b:bd:65:61:79:5a:c0:3d:45:87:a4:b8:c9:75:85:d5:ca:7a:
7d:58:0e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:58 2023 by rpki-client on console.sobornost.net