Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/Y4KNDd51M9KNUN0KTLEjTJK9GRY.roa
File: Y4KNDd51M9KNUN0KTLEjTJK9GRY.roa (raw, json)
Hash identifier: 9bI9dNffPPayGuqij7Ek7ZTgK/iJF8cci9inaDc7nuU=
Subject key identifier: 63:82:8D:0D:DE:75:33:D2:8D:50:DD:0A:4C:B1:23:4C:92:BD:19:16
Certificate issuer: /CN=659a6b975eafd2ce51468723814355f56c55bafb
Certificate serial: 080D9231
Authority key identifier: 65:9A:6B:97:5E:AF:D2:CE:51:46:87:23:81:43:55:F5:6C:55:BA:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZZprl16v0s5RRocjgUNV9WxVuvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/Y4KNDd51M9KNUN0KTLEjTJK9GRY.roa
Signing time: Sat 01 Jan 2022 15:04:39 +0000
ROA not before: Sat 01 Jan 2022 15:04:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 194.125.232.0/22 maxlen: 24
194.242.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135107121 (0x80d9231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=659a6b975eafd2ce51468723814355f56c55bafb
Validity
Not Before: Jan 1 15:04:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63828d0dde7533d28d50dd0a4cb1234c92bd1916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:83:e1:fe:2b:81:16:54:96:7e:da:9d:73:74:
17:18:81:77:6a:17:db:b6:03:36:88:d0:b4:f2:35:
a3:25:b0:4c:7a:74:89:07:4e:4c:1e:14:ce:da:95:
55:08:92:46:80:43:3d:e7:e7:5c:c8:f4:f7:26:0a:
5e:5c:58:4c:74:38:d1:5a:7a:68:fa:61:77:95:cf:
7c:90:72:a6:b6:c0:bc:90:be:66:57:82:32:f4:b0:
7d:0e:ab:84:ca:4b:3e:e3:2f:c8:3d:9b:43:6c:24:
44:59:b5:5c:a7:28:96:5a:9b:8e:3a:94:f8:87:b7:
2d:3c:73:e9:b3:eb:10:82:e1:40:53:14:4b:3b:46:
39:96:38:54:5e:52:a1:07:ff:99:d0:27:71:c2:45:
17:3c:e0:70:94:00:d6:c6:97:ac:d1:63:81:28:14:
a5:de:4f:c8:b8:f3:3a:49:23:75:c9:91:68:a5:5f:
e0:66:af:a6:5f:62:7c:d0:60:a1:77:75:79:85:b6:
df:04:cf:1f:a3:5a:93:96:61:72:4c:e6:4f:3b:af:
d2:10:99:67:e3:68:81:90:83:19:45:11:53:24:7e:
b5:62:b4:c5:0b:f4:e9:b8:54:44:a5:97:89:60:29:
f9:b6:a3:1d:fd:4e:3b:84:67:67:ee:f8:c4:a8:75:
84:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:82:8D:0D:DE:75:33:D2:8D:50:DD:0A:4C:B1:23:4C:92:BD:19:16
X509v3 Authority Key Identifier:
keyid:65:9A:6B:97:5E:AF:D2:CE:51:46:87:23:81:43:55:F5:6C:55:BA:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZZprl16v0s5RRocjgUNV9WxVuvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/Y4KNDd51M9KNUN0KTLEjTJK9GRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/170422-39ad-499c-bbfd-eff3cdcbd00a/1/ZZprl16v0s5RRocjgUNV9WxVuvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.125.232.0/22
194.242.32.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:e8:47:5d:4f:97:61:8a:23:eb:f1:83:74:36:51:ce:aa:e1:
33:72:d8:ee:68:3e:68:99:78:01:6f:9e:53:c5:25:a0:28:43:
e6:f7:93:e9:06:67:40:ce:0a:b7:81:3f:0c:6b:af:94:08:0a:
d1:1a:08:86:ef:c0:7c:06:39:01:c9:45:4d:67:4b:91:2c:89:
95:58:9d:17:34:27:ee:38:20:98:f4:c2:b0:36:e3:bd:38:31:
b5:ab:ae:20:49:73:f7:81:05:d1:e3:24:4c:31:98:10:aa:79:
f8:9f:87:0c:7c:e2:ba:c1:db:a6:f0:11:52:e1:d9:ec:8e:c4:
8f:54:f0:55:7d:57:a9:cd:f3:a5:fe:c8:7d:fa:3b:75:5a:56:
ed:3b:59:e4:49:04:e9:a4:e4:d9:e5:aa:c3:0e:ce:63:db:1f:
f8:17:1c:32:6a:f4:bc:79:f7:fc:24:2e:99:14:5d:34:e4:e9:
48:9d:d7:ce:71:62:1d:04:61:56:21:fc:9a:97:c7:59:61:52:
46:41:ee:73:ec:52:7e:cf:53:23:ca:ba:07:a0:5c:c6:f9:47:
70:2b:c4:1a:d6:57:10:1e:82:7d:49:19:31:80:26:ea:e2:a9:
d7:06:b5:5f:28:6b:50:f8:dc:2a:57:14:98:6e:63:68:f0:9c:
17:76:e1:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org