Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/Yq5cc7nUQ8-WnQc__avJTr1Vcz4.roa
File: Yq5cc7nUQ8-WnQc__avJTr1Vcz4.roa (raw, json)
Hash identifier: n8iD6ZSw/aRdN7uiUXgVpAdBVAp2wfagquyKZ5gOG+g=
Subject key identifier: 62:AE:5C:73:B9:D4:43:CF:96:9D:07:3F:FD:AB:C9:4E:BD:55:73:3E
Certificate issuer: /CN=9d3d627c297fe542d8359a86d8e2f9ebd9565a81
Certificate serial: 0641326E
Authority key identifier: 9D:3D:62:7C:29:7F:E5:42:D8:35:9A:86:D8:E2:F9:EB:D9:56:5A:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nT1ifCl_5ULYNZqG2OL569lWWoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/Yq5cc7nUQ8-WnQc__avJTr1Vcz4.roa
Signing time: Sat 01 Jan 2022 03:55:21 +0000
ROA not before: Sat 01 Jan 2022 03:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203735
IP address blocks: 94.231.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104936046 (0x641326e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3d627c297fe542d8359a86d8e2f9ebd9565a81
Validity
Not Before: Jan 1 03:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62ae5c73b9d443cf969d073ffdabc94ebd55733e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:65:13:5f:68:7b:fd:66:a0:7b:cc:eb:76:bb:
26:6c:b8:42:7c:98:8f:88:7f:a2:9e:91:c3:2c:24:
c8:04:80:fe:5c:40:92:09:0b:8b:f4:98:9d:9a:d3:
62:f7:4f:40:cc:d6:18:1d:9b:d4:93:41:28:3e:d9:
44:9c:bd:32:5d:6e:43:73:0c:35:af:48:b8:c1:8d:
84:34:5f:43:30:4e:f4:4e:3a:d1:95:d0:ab:75:41:
01:31:97:44:d4:da:26:57:3e:59:a2:fe:f6:40:01:
b0:56:19:44:70:09:9e:43:00:f4:30:16:24:98:b7:
ba:11:38:15:23:fc:28:09:f9:83:2d:ac:db:ce:06:
83:ea:a8:de:31:54:22:ef:8f:43:6d:4a:ce:a3:73:
80:67:7e:6c:45:bd:94:0d:3c:74:34:cb:a8:d8:f4:
cb:c6:20:21:b0:dd:5e:14:ba:53:88:6a:ff:06:2a:
02:d4:74:9b:b7:2e:f4:f9:3b:ee:45:c2:91:fe:aa:
e4:f4:1b:32:38:3e:1b:d8:de:ef:80:07:2f:ac:32:
59:3f:03:2b:1f:0d:38:e1:d3:8a:8a:76:9d:7c:f7:
11:d5:78:39:07:32:43:f2:0b:76:1c:94:87:49:76:
4c:ef:c7:45:71:c4:8e:c2:1b:1e:bb:7b:f4:27:d1:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:AE:5C:73:B9:D4:43:CF:96:9D:07:3F:FD:AB:C9:4E:BD:55:73:3E
X509v3 Authority Key Identifier:
keyid:9D:3D:62:7C:29:7F:E5:42:D8:35:9A:86:D8:E2:F9:EB:D9:56:5A:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nT1ifCl_5ULYNZqG2OL569lWWoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/Yq5cc7nUQ8-WnQc__avJTr1Vcz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/nT1ifCl_5ULYNZqG2OL569lWWoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:c6:ae:c1:28:d3:84:39:ec:ee:0f:13:2a:7b:6a:20:eb:f0:
d0:0d:df:bc:d4:e6:77:12:ed:34:b9:97:6d:e3:7b:c8:00:bd:
ab:70:95:36:eb:28:46:6d:aa:10:52:cb:4b:ed:c6:95:b1:fc:
b6:21:22:6a:34:f2:97:96:1b:0a:93:ac:78:d6:dc:47:9c:9f:
29:1e:c8:20:1e:fd:4a:24:3c:4d:7e:50:28:a0:2a:ec:fb:f3:
36:17:68:06:03:a8:65:54:cf:62:7f:f6:19:aa:ca:b6:0d:c0:
32:93:c5:02:9e:d7:eb:69:d3:7c:60:b6:e0:63:c2:21:d6:f8:
2c:54:e2:68:fa:13:37:59:94:6c:ed:ac:76:8e:55:b9:80:83:
d5:9d:11:06:11:ca:02:73:9e:31:73:4a:3c:03:f8:8f:9c:41:
40:07:43:0b:1f:69:95:9f:a0:ff:2b:de:00:59:6b:83:1c:25:
d8:54:a4:00:fa:73:5b:21:da:37:90:4e:97:06:ce:57:0a:99:
b8:fd:27:f8:86:9a:50:37:ae:cb:df:86:39:48:5d:9f:30:4f:
5f:44:32:d2:3f:e3:27:4f:04:30:8f:f8:d1:41:6b:ee:fc:ee:
df:c4:c9:48:36:fe:04:52:5a:73:2a:9d:b9:07:5f:ef:ad:22:
2f:0c:df:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:32 2024 by rpki-client on console-ams.rpki-client.org