Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/yEvDl2nr3QLGz8QdzLGde98Hdew.roa
File: yEvDl2nr3QLGz8QdzLGde98Hdew.roa (raw, json)
Hash identifier: brsq7PDc3T3n6rhbOHuqUogPlsd3MpwCGGRHGOXY4rk=
Subject key identifier: C8:4B:C3:97:69:EB:DD:02:C6:CF:C4:1D:CC:B1:9D:7B:DF:07:75:EC
Certificate issuer: /CN=09633ef6550a82af315146a942cf3559557c1fe2
Certificate serial: 058557A0
Authority key identifier: 09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/yEvDl2nr3QLGz8QdzLGde98Hdew.roa
Signing time: Sat 01 Jan 2022 06:06:12 +0000
ROA not before: Sat 01 Jan 2022 06:06:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20847
IP address blocks: 193.105.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92624800 (0x58557a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09633ef6550a82af315146a942cf3559557c1fe2
Validity
Not Before: Jan 1 06:06:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c84bc39769ebdd02c6cfc41dccb19d7bdf0775ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3c:ee:85:fc:d6:0e:72:10:e9:34:1b:26:6d:
12:23:7f:c9:ef:93:9c:dd:ed:5d:7b:7e:10:5a:4a:
4c:1f:26:4d:4a:ab:46:dd:d3:43:af:53:d1:77:1f:
6f:2f:88:50:18:44:ac:7c:7e:fc:ed:28:74:43:a4:
db:c9:bf:8c:be:3d:50:d2:13:3e:c9:da:26:f9:53:
bd:e0:60:cd:7d:e0:65:55:e1:11:d6:f3:7e:5e:1a:
01:90:f5:28:5f:6f:45:d6:6b:bb:d8:6d:53:59:17:
c2:96:5a:95:68:19:bf:99:c2:32:1f:d0:88:fd:f8:
db:6c:42:f9:bb:af:a3:1f:b0:c8:d1:1b:b2:04:e2:
ad:1b:35:90:60:29:fe:5f:d8:bb:0c:3a:1f:60:b5:
f2:ac:ca:6a:94:67:3c:96:4b:d3:3d:56:43:f1:2f:
6f:bf:6d:4f:89:e6:bb:7c:bd:95:aa:28:ca:72:59:
8f:4b:1d:aa:81:d5:be:33:c6:38:88:67:41:26:74:
73:0e:15:bd:08:18:51:f8:10:f3:51:ba:19:6a:20:
d8:3e:ca:1c:77:5f:2c:a4:89:bd:da:1e:f6:7a:80:
0c:8c:f1:8b:48:8c:0c:f5:89:96:ac:42:db:ed:4d:
09:85:76:01:43:74:79:f8:07:b7:a3:19:c5:5c:55:
7f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4B:C3:97:69:EB:DD:02:C6:CF:C4:1D:CC:B1:9D:7B:DF:07:75:EC
X509v3 Authority Key Identifier:
keyid:09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/yEvDl2nr3QLGz8QdzLGde98Hdew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/CWM-9lUKgq8xUUapQs81WVV8H-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.12.0/24
Signature Algorithm: sha256WithRSAEncryption
28:c4:46:da:40:23:30:dc:f2:9d:30:85:a6:99:4c:55:a7:b6:
de:94:8d:9f:0e:79:6b:73:79:32:7a:a9:e8:98:01:e4:99:07:
ca:71:8a:64:ab:e4:74:9d:7d:ce:50:76:be:7b:68:f1:db:2a:
2a:d9:4c:d2:56:dd:46:0c:af:61:2b:9b:a0:74:9f:1d:c7:62:
b5:db:3f:b8:07:62:d0:2c:ac:3b:85:f5:0f:e0:f8:7a:87:8d:
d0:55:cd:c6:75:fb:dd:55:4f:b1:7d:af:35:ba:42:85:e3:7e:
b0:58:04:aa:c6:cd:82:e4:b8:db:90:80:79:8f:6a:79:28:3e:
6b:37:33:c8:a8:73:a6:09:93:6c:40:ef:fe:a6:e9:10:bb:fe:
cb:32:13:cd:64:fc:e5:99:fa:6a:a2:d5:e5:1c:a1:f3:9e:92:
b7:fd:b8:ce:be:2b:ce:9c:9c:07:2d:6f:76:11:57:6b:07:3e:
f6:0a:b0:e0:8b:7e:19:97:71:b7:61:3d:21:67:65:a6:7e:81:
6f:b8:14:10:5d:98:e7:fa:56:3e:86:b7:50:8c:8c:e2:cd:80:
d6:88:c6:1f:40:8b:cd:00:7a:a7:2e:c1:10:44:c4:52:4d:a1:
c0:f4:5c:c1:3f:e8:41:aa:01:09:44:2c:a2:8a:4b:4a:e2:db:
92:4e:e7:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org