Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/ygT3yBK-gQXeDCqNkeo_x7-erNo.roa
File: ygT3yBK-gQXeDCqNkeo_x7-erNo.roa (raw, json)
Hash identifier: 1o2AJE7WQoquNNTNjgq2TrHqX0rdsx6cQi4yNXVpgJQ=
Subject key identifier: CA:04:F7:C8:12:BE:81:05:DE:0C:2A:8D:91:EA:3F:C7:BF:9E:AC:DA
Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5
Certificate serial: 048DA4DE
Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/ygT3yBK-gQXeDCqNkeo_x7-erNo.roa
Signing time: Mon 27 Jun 2022 22:35:20 +0000
ROA not before: Mon 27 Jun 2022 22:35:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25795
IP address blocks: 185.139.32.0/23 maxlen: 24
2a07:12c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76391646 (0x48da4de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5
Validity
Not Before: Jun 27 22:35:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca04f7c812be8105de0c2a8d91ea3fc7bf9eacda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9c:84:38:ee:a4:4d:1b:58:b4:f3:e2:0f:c4:
26:d0:f8:99:5c:30:b3:ad:3f:e8:09:8c:23:29:e7:
1b:e1:76:c0:85:7a:52:21:d3:9b:06:f8:30:6a:e0:
23:1b:b6:ad:49:55:cf:74:ae:46:e0:e8:38:0a:2f:
99:57:53:84:9f:78:1d:82:ca:55:91:f7:1d:28:f8:
f9:2f:8d:e8:88:17:69:00:b3:1d:85:c9:22:ce:d7:
d0:08:a9:34:4c:cf:65:77:24:b0:82:3c:aa:05:00:
f7:84:51:9e:d3:e7:d4:6b:a4:21:b6:0f:81:ff:39:
d7:b4:e4:ac:ec:7e:4a:bd:7a:34:48:66:f6:9f:0e:
03:61:be:8a:bc:95:e8:41:1c:c6:8a:2e:b2:8b:0f:
d8:fd:5d:6b:4d:68:4f:ca:dd:62:c4:3f:a5:02:be:
a1:d8:52:cf:f7:b6:40:cb:25:9e:da:1a:8f:4a:45:
54:6a:7d:b1:15:0e:c2:53:e8:66:be:c5:29:52:46:
b4:78:de:25:38:a0:fc:de:9a:57:56:d3:09:34:6d:
f0:19:2e:cf:58:d8:7f:f4:f4:dc:ff:7d:a6:d0:f1:
03:05:45:9f:fd:0a:63:b2:00:ca:05:b3:f5:40:d9:
3b:9b:8d:e6:a3:01:3d:f2:0a:1e:e5:79:b9:9d:1d:
6d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:04:F7:C8:12:BE:81:05:DE:0C:2A:8D:91:EA:3F:C7:BF:9E:AC:DA
X509v3 Authority Key Identifier:
keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/ygT3yBK-gQXeDCqNkeo_x7-erNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.32.0/23
IPv6:
2a07:12c0::/29
Signature Algorithm: sha256WithRSAEncryption
68:43:19:38:16:91:b7:e8:1a:c3:7e:b7:91:54:63:79:ee:7d:
65:7b:c5:04:3a:48:40:ac:bb:06:22:ed:c4:40:1b:06:b1:d1:
01:27:97:25:24:4e:87:e0:88:e9:11:6a:b5:83:fe:91:b7:ec:
64:11:78:b6:09:4f:c7:b4:a5:51:fc:9d:f9:c7:11:db:1f:33:
bc:9f:6a:11:64:9c:09:5b:a9:dc:61:eb:3c:a3:07:8f:90:b4:
b5:e8:18:7d:96:c3:7b:2c:c6:ce:fd:d0:3e:d8:5d:4b:97:1d:
75:90:93:17:96:4d:73:3c:5a:3c:c3:8c:8e:60:ce:0a:70:7c:
b3:49:a1:c8:73:f8:ed:bd:5f:42:79:67:16:92:8b:91:b1:2d:
6e:c7:aa:38:72:28:ca:6f:58:16:74:7b:63:fa:1c:46:6d:ec:
ed:4b:b7:9b:f7:15:89:e8:e4:bb:b9:7e:3e:0a:2d:04:4a:90:
50:2f:41:1f:4b:b5:85:49:72:c8:12:c7:bd:83:33:d5:2e:e3:
dc:1a:13:1e:3a:51:52:a6:27:68:3a:fd:45:ea:24:aa:22:8f:
1d:80:4c:96:eb:a6:f4:99:8b:81:86:97:1f:1e:62:9d:d9:15:
3f:81:19:45:f3:6c:a8:01:7a:f1:12:b0:e9:91:75:b1:9b:3e:
e4:5c:06:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:47 2024 by rpki-client on console-ams.rpki-client.org