Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/y-_e0I9pWfscA9mCOtSphEcT3EA.roa
File: y-_e0I9pWfscA9mCOtSphEcT3EA.roa (raw, json)
Hash identifier: KRq3GN1fnuf5Hrv23sX4dtL0Dql9F6dDf20dn3tSp28=
Subject key identifier: CB:EF:DE:D0:8F:69:59:FB:1C:03:D9:82:3A:D4:A9:84:47:13:DC:40
Certificate issuer: /CN=bc65b4ba4d7869d5cb8f9574f0f4feee70ebc6c5
Certificate serial: 0730FC48
Authority key identifier: BC:65:B4:BA:4D:78:69:D5:CB:8F:95:74:F0:F4:FE:EE:70:EB:C6:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGW0uk14adXLj5V08PT-7nDrxsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/y-_e0I9pWfscA9mCOtSphEcT3EA.roa
Signing time: Sat 01 Jan 2022 02:55:12 +0000
ROA not before: Sat 01 Jan 2022 02:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 394256
IP address blocks: 193.188.2.0/23 maxlen: 24
193.188.14.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120650824 (0x730fc48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc65b4ba4d7869d5cb8f9574f0f4feee70ebc6c5
Validity
Not Before: Jan 1 02:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbefded08f6959fb1c03d9823ad4a9844713dc40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2d:09:60:88:c2:4b:89:7e:08:d3:94:6f:91:
d5:47:e4:2a:0f:cf:14:d7:20:3f:3b:17:c0:1f:40:
0e:96:f7:c7:65:20:f2:71:20:3d:39:ab:82:db:7d:
16:63:83:58:db:eb:fe:32:1e:7c:44:49:bb:7f:28:
59:b9:51:55:c1:13:5e:bb:33:83:65:ee:d4:d9:7e:
b1:6c:2f:66:80:51:ef:63:12:8a:87:2e:01:d2:4d:
22:11:9d:c7:f8:43:c4:64:19:b6:ef:ad:1d:08:5b:
d5:12:ae:3d:b1:72:12:3e:68:c2:5f:d0:20:26:65:
b9:75:ff:b9:eb:2e:06:f0:7e:96:eb:96:5e:71:cd:
8b:8b:b3:66:a6:53:a2:ce:08:13:7d:cb:04:4f:54:
f5:86:d4:f7:ae:b0:14:60:26:11:d0:45:51:e8:82:
f1:dc:9c:cc:18:a3:db:a1:5c:41:80:98:6f:40:f2:
1f:0f:8d:e2:b9:f3:48:87:8e:e6:53:3e:a8:96:2a:
0d:44:e7:ca:ae:0a:ca:e8:8d:ba:3c:43:e8:fd:79:
2e:45:01:c8:45:49:fd:33:bf:2b:7f:5e:8a:dc:c6:
e2:0f:c7:5d:7b:e3:e8:50:55:ba:df:41:e0:c2:7d:
29:d2:5a:27:af:0f:39:df:e4:43:93:95:2e:91:d3:
23:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EF:DE:D0:8F:69:59:FB:1C:03:D9:82:3A:D4:A9:84:47:13:DC:40
X509v3 Authority Key Identifier:
keyid:BC:65:B4:BA:4D:78:69:D5:CB:8F:95:74:F0:F4:FE:EE:70:EB:C6:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGW0uk14adXLj5V08PT-7nDrxsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/y-_e0I9pWfscA9mCOtSphEcT3EA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/vGW0uk14adXLj5V08PT-7nDrxsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.2.0/23
193.188.14.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:07:8f:4d:64:b7:b4:77:3a:06:97:06:00:99:fe:b3:84:a6:
c8:51:14:d2:b9:da:f7:1b:e5:0d:fc:81:ad:13:2d:39:45:33:
c9:89:e8:78:6f:39:6e:56:44:59:bd:35:93:7d:54:de:d9:6f:
4b:34:52:d7:6f:75:4e:65:6f:c6:99:23:1d:c9:f3:ec:07:73:
9f:7c:69:b5:88:1e:cc:ab:4f:f0:2e:52:05:b2:67:9c:1f:69:
2e:a9:32:a5:f1:9e:f4:59:56:07:a4:54:b9:dd:f6:fc:80:99:
c2:51:34:4f:75:ac:2d:f7:48:d1:ac:23:a5:e5:57:6a:22:5a:
4a:e4:21:22:a1:8f:a3:e9:56:7a:22:7b:43:d1:4a:b6:d1:09:
7e:f9:bf:98:67:e2:8f:80:35:2e:b6:91:d1:9a:79:0a:44:81:
53:3c:a7:f1:53:39:93:a9:f7:b6:26:d0:68:0b:14:58:48:28:
4a:1e:82:70:3b:ff:1f:65:d7:e3:16:71:48:35:67:19:64:d5:
11:d9:d4:8f:83:46:88:0b:42:83:29:b5:8d:c1:e4:41:38:32:
47:58:3b:cc:25:c7:65:c9:22:ed:d4:4f:fa:fa:f1:8f:1d:70:
a7:b0:d3:a3:1a:a1:50:38:79:41:a0:de:15:11:91:76:c8:1b:
0b:e7:25:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:52 2024 by rpki-client on console-ams.rpki-client.org