Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/YEwpmd6bWbJ4SmQSRvEEE_MHXTk.roa
File: YEwpmd6bWbJ4SmQSRvEEE_MHXTk.roa (raw, json)
Hash identifier: corGOSuCOLddb/qE4t7OUxAjB+6W8Ye/tPoHJuIPQDw=
Subject key identifier: 60:4C:29:99:DE:9B:59:B2:78:4A:64:12:46:F1:04:13:F3:07:5D:39
Certificate issuer: /CN=dc84756dc772c06483249a987a3b1bc6e605e835
Certificate serial: 0A253540
Authority key identifier: DC:84:75:6D:C7:72:C0:64:83:24:9A:98:7A:3B:1B:C6:E6:05:E8:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3IR1bcdywGSDJJqYejsbxuYF6DU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/YEwpmd6bWbJ4SmQSRvEEE_MHXTk.roa
Signing time: Sat 01 Jan 2022 12:54:08 +0000
ROA not before: Sat 01 Jan 2022 12:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13213
IP address blocks: 193.160.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170210624 (0xa253540)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc84756dc772c06483249a987a3b1bc6e605e835
Validity
Not Before: Jan 1 12:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=604c2999de9b59b2784a641246f10413f3075d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:cf:88:e5:04:22:03:fa:8a:3d:e7:28:dc:
66:14:f2:34:62:75:16:9c:5c:30:1c:43:22:31:82:
40:47:cf:d4:a3:bd:69:b3:37:f5:ca:83:b9:c5:dc:
c1:02:f9:9c:b6:a9:63:a0:52:6b:f5:6d:4c:52:e8:
04:98:ec:42:1c:c2:87:fc:a8:23:8c:5c:a9:f2:e6:
a1:d5:fb:3a:80:9b:cb:01:6f:88:ad:0e:0d:22:69:
91:57:29:42:79:df:be:97:32:cb:c2:e2:e4:1b:8d:
c7:d0:b0:e2:4b:78:46:85:f2:1c:58:9b:b1:96:cb:
9a:67:5a:c4:36:61:82:8b:ab:ef:32:4c:e7:a8:ce:
5f:84:8c:19:3e:58:8d:be:d7:7f:ee:0e:ca:95:19:
22:5d:cf:d3:51:c3:7e:65:3a:2c:e2:7f:a6:47:54:
20:80:f3:85:e7:c0:9d:8f:91:38:99:ca:73:88:71:
b5:bf:6a:a2:08:69:dc:99:07:38:a5:ab:cd:03:18:
a7:c1:e7:c9:ad:db:28:78:ed:4f:9b:bc:06:c7:a2:
32:ab:96:76:ca:eb:28:3f:6d:0d:75:27:21:a7:0d:
56:28:2b:ae:27:70:53:17:97:63:d3:40:69:56:21:
1c:9e:df:7f:1a:f9:d0:cd:47:34:bb:63:78:75:f2:
69:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:4C:29:99:DE:9B:59:B2:78:4A:64:12:46:F1:04:13:F3:07:5D:39
X509v3 Authority Key Identifier:
keyid:DC:84:75:6D:C7:72:C0:64:83:24:9A:98:7A:3B:1B:C6:E6:05:E8:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3IR1bcdywGSDJJqYejsbxuYF6DU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/YEwpmd6bWbJ4SmQSRvEEE_MHXTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/3IR1bcdywGSDJJqYejsbxuYF6DU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.80.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:87:74:d6:9f:68:3c:87:f9:29:86:81:14:6a:a1:fd:d1:18:
c6:01:be:5b:23:80:a3:0a:94:38:82:8b:98:9d:56:58:c7:b9:
76:8d:34:a8:a8:65:33:e1:af:b2:45:03:26:03:0e:2d:86:77:
42:4c:61:a9:e2:f5:67:f1:0f:56:5d:5f:62:e7:3a:8d:28:5e:
04:80:20:21:dd:d2:a4:6a:bc:ca:8e:54:9b:a6:46:86:c0:f2:
d3:f9:65:96:6d:41:d0:ec:e2:de:a6:2e:d1:e8:38:62:d1:b5:
86:11:18:d1:44:4a:69:b7:79:1c:b3:fb:07:24:9f:45:e4:9d:
02:11:63:66:2b:ba:8e:4f:4c:b4:f9:b9:09:5d:66:42:c6:a2:
a1:0d:b3:ce:b2:02:9f:37:57:f0:4e:74:9a:52:11:63:96:af:
7c:a2:53:24:b8:96:d2:b1:8d:e9:62:21:90:72:65:10:38:b8:
c0:76:ef:87:b5:96:ff:4e:a0:8e:ec:11:ac:9f:74:67:6b:aa:
27:49:d9:79:ba:67:2b:81:bf:00:12:ba:42:63:05:27:5d:e2:
29:a8:d1:53:82:96:80:37:f3:8b:c9:e7:e6:18:68:80:93:26:
cf:b8:37:0f:a4:1f:07:4f:be:a5:79:b1:9b:19:f0:e8:bf:9c:
d3:e2:93:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:19 2024 by rpki-client on console-ams.rpki-client.org