Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YL_3dL_OotQlVr1JNGRVVgqGNmA.roa
File: YL_3dL_OotQlVr1JNGRVVgqGNmA.roa (raw, json)
Hash identifier: ZQwdcSJQpVgx53SeVcVir3QwY0vgH7NHaf8VyMQ2tfg=
Subject key identifier: 60:BF:F7:74:BF:CE:A2:D4:25:56:BD:49:34:64:55:56:0A:86:36:60
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0184423B8EFFCC5C6FC5D4DF26CD2892BC48
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YL_3dL_OotQlVr1JNGRVVgqGNmA.roa
Signing time: Fri 04 Nov 2022 10:41:50 +0000
ROA not before: Fri 04 Nov 2022 10:41:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 163.5.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:3b:8e:ff:cc:5c:6f:c5:d4:df:26:cd:28:92:bc:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 4 10:41:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60bff774bfcea2d42556bd49346455560a863660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ee:2b:2e:8f:7b:fd:eb:a2:32:8d:37:8b:93:
22:b9:43:24:90:ae:84:30:73:ae:20:ec:c7:0d:ec:
f5:d1:71:88:3c:de:90:f9:16:14:e3:a3:25:f4:88:
80:e4:ad:30:05:99:0b:84:ec:ce:25:00:b4:11:c0:
b7:09:0f:43:ba:83:c0:93:34:f0:9a:7c:61:e6:0e:
d4:ba:54:22:7f:d5:91:9f:d1:06:0b:43:b5:08:b9:
eb:b7:2f:b7:5c:33:36:ff:bb:c7:d1:6a:df:90:9c:
5e:10:00:9c:24:a6:c2:c0:d0:ee:a6:0f:ed:84:2c:
cb:9b:6b:d5:63:93:1b:18:67:97:57:d3:fe:a0:04:
95:0f:71:4c:11:ac:68:5c:52:6c:33:70:ce:51:76:
6b:0e:d4:4f:e0:ff:2e:90:df:5f:93:94:88:c8:3f:
8d:d0:fc:f0:85:17:05:76:69:0d:e5:72:b8:49:bf:
e5:e1:72:da:31:57:c1:15:76:7f:f6:fe:04:5e:3b:
cc:48:e4:8f:08:de:ca:b8:a3:5a:25:02:ed:ca:2c:
30:3b:36:48:92:97:c1:e5:a4:07:2e:79:d8:75:64:
f3:b0:a4:ac:95:66:fe:18:5c:f4:69:86:ff:e5:1e:
61:00:22:3c:d5:48:d1:55:d7:87:58:11:c5:f5:d4:
11:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BF:F7:74:BF:CE:A2:D4:25:56:BD:49:34:64:55:56:0A:86:36:60
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/YL_3dL_OotQlVr1JNGRVVgqGNmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.166.0/24
Signature Algorithm: sha256WithRSAEncryption
22:56:11:a6:87:8d:1a:31:8a:cd:76:6d:8a:61:ef:ef:c0:4b:
25:80:1b:a9:4a:ff:2b:d3:93:82:2a:6e:f4:51:87:75:95:17:
91:0c:4b:80:c3:c2:13:06:0d:29:ea:fd:86:1a:3e:73:34:21:
74:df:fe:45:13:3c:1b:a8:bc:8d:05:1f:7d:bb:2f:b0:1f:6d:
30:b0:0f:e5:e1:32:dc:36:91:de:2b:97:99:6c:82:7e:95:a5:
54:fd:1a:2c:df:5d:7a:7e:f3:85:ee:5c:5f:2d:b0:7b:e9:92:
28:e8:6a:08:20:d3:bc:4d:e6:77:e4:83:46:bd:1c:01:d2:f3:
e1:55:84:aa:b3:14:24:c7:30:f2:4d:7d:4b:2b:f9:d0:ad:8f:
6b:7a:76:15:5b:54:89:9b:bf:08:8b:a5:79:cc:e1:14:b0:0a:
4d:37:10:76:f4:f3:c5:ca:88:a7:10:af:08:9e:f2:4b:77:49:
2e:c3:59:a6:5c:99:6b:7f:2d:ca:af:4a:68:02:06:e2:c1:3e:
8b:04:65:61:0b:60:4e:27:0e:ac:76:18:bb:57:e1:63:6d:ac:
a7:7f:e8:52:c1:a2:8a:58:89:f2:73:5b:bd:05:09:90:99:d6:
1f:13:b0:9c:ca:61:b1:25:12:8b:cb:da:63:db:3e:cc:89:34:
5d:72:0f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:21 2023 by rpki-client on console-fra.rpki-client.org