Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/YNhIJGdeHpO5sx6O9-KqHT1E4zA.roa
File: YNhIJGdeHpO5sx6O9-KqHT1E4zA.roa (raw, json)
Hash identifier: L1JPLFt6S/HSe9AqYHGc83/hK6L38H474gPZimhfhe0=
Subject key identifier: 60:D8:48:24:67:5E:1E:93:B9:B3:1E:8E:F7:E2:AA:1D:3D:44:E3:30
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 789412
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/YNhIJGdeHpO5sx6O9-KqHT1E4zA.roa
Signing time: Sat 01 Jan 2022 02:52:45 +0000
ROA not before: Sat 01 Jan 2022 02:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21100
IP address blocks: 195.123.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7902226 (0x789412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Jan 1 02:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60d84824675e1e93b9b31e8ef7e2aa1d3d44e330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d9:22:f0:fd:42:83:81:1f:c0:2d:11:50:cb:
66:4a:aa:b0:d1:78:53:d5:46:98:34:93:7e:a1:eb:
fb:39:f6:32:a0:8d:af:51:b5:82:a3:6f:f4:4a:ee:
eb:49:8d:63:49:78:b6:f4:a6:23:91:bb:f1:99:f3:
0f:6a:c6:b2:6b:8e:a9:0b:d6:81:28:01:92:82:a3:
d3:95:bf:12:1a:d5:0f:45:1b:df:34:5a:67:43:f7:
21:42:ab:62:45:69:83:db:87:a8:30:d7:13:99:cb:
5f:2d:85:89:04:1d:b2:69:90:e0:b2:49:8d:73:19:
8c:0e:a8:15:6c:35:51:d9:b9:c0:f0:d4:1a:5c:0e:
fa:60:99:0b:c8:2f:20:ca:86:17:2b:6f:8d:df:ef:
82:94:67:16:d8:de:9b:68:59:2d:7c:8e:27:6f:5a:
5b:63:87:c1:1f:c8:e9:da:69:16:1c:64:31:6e:69:
8b:fa:e4:b0:f6:22:83:bb:76:92:02:04:11:bf:15:
18:22:5e:4f:50:09:d3:d8:77:2b:16:e0:1e:7d:8d:
2e:fe:64:f0:66:f3:86:b9:c7:4e:53:64:f7:fd:43:
95:32:82:eb:38:9e:ec:f5:34:26:b3:10:3b:92:c8:
6c:b6:76:c8:c6:df:29:e8:64:e4:ae:a9:fd:63:1c:
aa:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D8:48:24:67:5E:1E:93:B9:B3:1E:8E:F7:E2:AA:1D:3D:44:E3:30
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/YNhIJGdeHpO5sx6O9-KqHT1E4zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.123.216.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:21:74:37:b0:5e:81:19:5e:01:db:3a:17:88:be:1f:e2:e4:
d9:53:ee:5a:84:71:7f:20:d6:4f:e7:05:d9:b5:30:26:e3:f7:
60:e6:28:d7:75:b0:05:28:5b:be:12:cd:d3:ca:a9:c4:60:6b:
f9:c2:29:45:21:b4:f3:74:86:b8:9d:ae:f1:7a:09:be:43:42:
35:50:c0:92:96:af:70:1f:48:18:22:1d:0a:60:c9:1e:16:4c:
36:61:68:55:06:10:4c:4a:26:63:b6:ed:3a:86:b1:c5:48:55:
8d:b6:b6:a0:0b:12:7b:8a:ec:da:e1:fe:7c:1e:24:51:5d:55:
34:32:0e:72:8b:51:f8:94:1f:62:c8:6f:23:b9:ff:12:73:fd:
17:14:78:88:da:1a:1b:20:61:f5:d1:13:33:1b:4e:b4:c7:88:
11:d8:a1:e7:3b:a9:bb:66:57:4e:67:6f:38:23:aa:04:58:03:
f1:63:2f:75:3a:56:f9:fe:47:d3:f6:7c:3a:1a:88:1f:18:fd:
d2:a6:a4:5b:90:49:05:c7:5a:2e:21:25:29:e4:c3:a6:b0:2a:
47:a6:42:16:83:8f:16:b1:d3:61:5d:c9:c5:2e:d1:64:27:f5:
18:b8:db:79:65:49:bb:f5:00:17:b2:47:3d:c3:bf:02:f0:89:
06:87:e0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org