Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/_YXxcIxAgUzssvlSGdts-ryFFs8.roa
File: _YXxcIxAgUzssvlSGdts-ryFFs8.roa (raw, json)
Hash identifier: 5hIx7mXrdyRtnCpxBfff1Hoh9DOSlRUkuyz6+mwdeWk=
Subject key identifier: FD:85:F1:70:8C:40:81:4C:EC:B2:F9:52:19:DB:6C:FA:BC:85:16:CF
Certificate issuer: /CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Certificate serial: 04DBE7AE
Authority key identifier: 0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/_YXxcIxAgUzssvlSGdts-ryFFs8.roa
Signing time: Sun 15 May 2022 08:36:41 +0000
ROA not before: Sun 15 May 2022 08:36:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61225
IP address blocks: 86.106.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81520558 (0x4dbe7ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Validity
Not Before: May 15 08:36:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd85f1708c40814cecb2f95219db6cfabc8516cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d2:ed:0a:33:6f:2b:f4:b5:b8:99:55:70:41:
76:a8:83:7e:42:df:71:cd:31:3a:a4:b7:6f:31:0d:
d8:30:2e:d7:44:f5:5f:c5:d6:c6:11:30:b4:a3:6f:
44:66:f7:fe:bb:8d:c3:80:2d:95:10:8c:30:a9:53:
30:3d:fd:53:7c:dd:03:68:02:fa:b3:7c:d8:d9:d7:
a7:ce:56:47:59:df:76:42:06:f9:a8:02:0a:a1:02:
5c:75:48:9f:0e:af:5c:31:30:48:89:8a:9c:85:f1:
0a:c6:a5:cb:d4:82:40:be:5f:97:bc:f3:5c:ff:d7:
6d:8a:29:bc:ce:e0:cd:b8:a1:43:4a:f1:b1:57:13:
22:a5:55:2b:a2:5d:d0:7f:0a:86:e0:c0:5c:74:ad:
f7:8b:ea:a4:0c:e6:e7:5a:a7:df:4a:f6:7c:0b:e1:
0a:8d:71:7d:3f:73:df:cc:ac:c7:d1:68:57:36:28:
0f:d6:72:f4:71:f3:37:f5:2d:8b:61:6f:7e:e1:6d:
94:f8:fe:0a:40:5c:eb:8c:fb:9a:ed:be:77:5f:24:
8a:31:8c:17:69:52:7d:eb:d9:7c:19:99:61:a4:b8:
c5:45:84:80:83:a2:c9:d9:46:64:f1:cb:47:41:60:
4f:d4:23:b7:f3:b1:b2:83:76:c1:1b:b2:ac:11:f6:
4d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:85:F1:70:8C:40:81:4C:EC:B2:F9:52:19:DB:6C:FA:BC:85:16:CF
X509v3 Authority Key Identifier:
keyid:0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/_YXxcIxAgUzssvlSGdts-ryFFs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/CvYXmN0YllwCevp_k64DD_Xh124.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.159.0/24
Signature Algorithm: sha256WithRSAEncryption
76:52:4a:fb:bb:06:a1:29:9a:3d:a2:31:46:de:06:5e:8b:a3:
16:73:f0:b4:3f:2a:ea:63:39:45:3f:a4:89:a0:1c:ec:f9:18:
f8:ab:ac:fe:dc:b7:a1:53:56:61:6d:25:58:e0:0d:06:39:47:
5b:46:4d:c6:62:4d:61:dc:ad:18:13:ee:1e:e3:7c:7f:d5:61:
2b:ed:e4:14:55:58:da:8a:ff:aa:f1:b9:a7:8d:fe:6e:5e:52:
a5:21:39:93:ff:f9:04:65:31:b4:ca:da:e1:bb:7c:c2:0e:d8:
38:15:3e:e1:94:e5:cc:00:2c:58:85:b1:15:a9:83:04:5f:ec:
9b:7e:3e:a6:2f:fa:2c:dc:13:5b:8f:5e:82:f6:21:f4:2b:0f:
1b:53:c5:3f:2d:11:80:5e:d9:7e:60:a0:fb:eb:14:5d:0a:f5:
6c:26:a4:e9:6d:3a:3d:af:d7:94:e1:3b:24:f4:fa:f3:b6:54:
06:2e:a3:dd:11:91:cc:d8:19:9b:fe:c0:d5:7f:7a:cd:70:7f:
7c:21:bd:c8:15:ed:f3:98:41:37:fc:e4:dc:84:33:8e:8c:f8:
d1:57:10:92:43:7c:20:aa:b1:21:76:2a:19:05:e9:f5:0e:05:
94:d4:e9:80:bd:20:1c:8e:26:fc:20:40:56:93:66:57:28:ed:
49:78:e7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:34 2023 by rpki-client on console-ams.rpki-client.org