Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/YxNO7M9YNlT1o4aUD4I1Y0V73WI.roa
File: YxNO7M9YNlT1o4aUD4I1Y0V73WI.roa (raw, json)
Hash identifier: KnJe1Na2KB+YT1/tlqaQ/KA7HJP/fqMU/BxQK8dWWiQ=
Subject key identifier: 63:13:4E:EC:CF:58:36:54:F5:A3:86:94:0F:82:35:63:45:7B:DD:62
Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Certificate serial: 03266E53
Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/YxNO7M9YNlT1o4aUD4I1Y0V73WI.roa
Signing time: Sat 01 Jan 2022 05:03:06 +0000
ROA not before: Sat 01 Jan 2022 05:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32181
IP address blocks: 193.203.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52850259 (0x3266e53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Validity
Not Before: Jan 1 05:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63134eeccf583654f5a386940f823563457bdd62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:4a:ef:43:18:8b:ea:63:c1:6a:7a:ff:96:
ca:0b:85:ad:22:66:24:a0:df:d6:17:e2:5a:9b:bb:
31:a9:58:fa:e7:cc:84:e2:32:2b:66:dd:4e:44:15:
94:d8:fb:b3:43:c0:3a:dd:59:0c:24:6c:5d:35:aa:
99:2e:19:53:91:a7:cc:f4:10:c1:21:71:68:57:24:
84:ad:78:27:6c:28:0b:f1:c0:37:37:d4:b6:c4:bf:
a6:e1:3e:b7:c3:26:dd:55:1f:fc:55:7b:d0:0d:4b:
e9:3a:3b:34:03:35:c8:2f:54:5f:c1:37:2e:f3:fa:
78:7d:9a:c6:65:eb:04:f6:a3:01:31:2a:f5:ec:ac:
41:ff:8c:e3:2c:1e:e4:85:48:8e:d1:4d:6d:7b:41:
50:8d:8d:77:9a:be:92:af:92:6b:89:41:4b:1b:15:
3b:a9:43:ef:98:fa:a4:5a:1a:63:f0:d8:f2:43:f8:
88:30:db:f2:7b:ad:94:49:05:20:03:66:e0:a3:84:
a8:42:9d:4f:1c:e0:35:ce:e9:40:41:ec:d7:85:0d:
47:58:a2:44:2f:4d:90:74:26:34:16:b0:8f:60:b3:
3c:ff:56:67:2b:63:cb:ff:76:66:26:73:1f:87:c7:
9f:4b:99:91:f9:7e:e5:1f:2c:f8:bd:ab:05:c8:15:
cc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:13:4E:EC:CF:58:36:54:F5:A3:86:94:0F:82:35:63:45:7B:DD:62
X509v3 Authority Key Identifier:
keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/YxNO7M9YNlT1o4aUD4I1Y0V73WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:5c:01:86:bc:22:81:a5:d3:d6:7e:fb:68:b3:66:2e:55:04:
55:9c:4c:95:46:04:08:ce:9d:61:cb:3e:f2:56:71:eb:f5:99:
29:dd:5d:d3:d8:ba:38:14:6b:ca:ab:93:47:af:89:2b:1d:38:
e9:0f:08:eb:84:34:1e:05:6c:48:fb:34:5d:17:6b:d9:90:6a:
41:92:8e:f4:16:a2:d7:03:e9:80:56:0a:ea:2f:a7:d9:75:11:
99:60:ec:32:ed:f6:cb:1d:48:0f:a4:a3:81:2b:27:b2:e0:9d:
e2:76:d8:27:e7:20:7c:f0:65:ce:6d:74:f4:f0:5a:b1:54:2a:
54:3e:6b:1f:84:f7:97:03:a9:2f:08:7b:5b:e4:99:59:6d:36:
a0:4b:bc:12:b9:75:67:c6:61:c2:d7:10:68:7d:7c:5d:9d:1f:
a2:63:66:ea:71:0d:e5:2f:70:f9:e2:b7:e7:00:5c:2b:a8:9f:
84:89:3a:3e:ca:e1:e6:ad:3d:a2:91:11:51:90:3c:00:f0:7f:
6f:67:a1:64:f8:99:a2:42:0e:ee:98:59:05:e2:d3:6f:da:cb:
12:4d:c9:ed:66:5b:f9:7c:89:98:85:e5:ea:54:a5:39:89:8f:
71:58:06:28:f8:b6:e6:2f:b1:79:a8:b3:30:11:9f:4c:3d:a2:
49:49:c3:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:43 2024 by rpki-client on console-fra.rpki-client.org