Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/yQE_NeclQRw4XQ0KquV1PJd_rL8.roa
File: yQE_NeclQRw4XQ0KquV1PJd_rL8.roa (raw, json)
Hash identifier: leMJ6Akp8VDjbbeYlKsf7Te0z9dc0NgVRHX0BLJnlNU=
Subject key identifier: C9:01:3F:35:E7:25:41:1C:38:5D:0D:0A:AA:E5:75:3C:97:7F:AC:BF
Certificate issuer: /CN=331bce2ee806e93621112dbd618536f775f44fba
Certificate serial: 13E7A9ED
Authority key identifier: 33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/yQE_NeclQRw4XQ0KquV1PJd_rL8.roa
Signing time: Sat 01 Jan 2022 13:54:51 +0000
ROA not before: Sat 01 Jan 2022 13:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25145
IP address blocks: 185.198.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333949421 (0x13e7a9ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331bce2ee806e93621112dbd618536f775f44fba
Validity
Not Before: Jan 1 13:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9013f35e725411c385d0d0aaae5753c977facbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d8:1c:af:f8:8e:ef:29:46:40:7e:5d:6f:4a:
83:a4:d5:02:b0:17:69:ab:f9:98:03:67:08:50:49:
16:3a:3a:cb:1a:61:6d:2d:bc:33:90:bf:12:bb:84:
47:7c:88:da:88:7c:e1:3b:52:67:4a:b6:e7:60:0a:
55:22:df:0c:68:b1:9e:94:aa:55:e7:38:22:18:e1:
66:3f:2d:2d:42:af:49:91:0d:67:0c:91:1f:ad:db:
21:bd:6f:36:e7:e0:e4:b7:48:97:5c:d3:f9:70:f0:
f8:93:f5:1c:8e:80:86:74:32:84:41:45:2a:07:46:
5c:cb:a9:73:62:85:7d:f0:72:36:a3:48:34:60:2a:
8d:2f:08:1e:cf:c5:2d:1d:d7:8e:02:e0:f4:8f:2e:
56:ca:1b:c1:06:1b:1b:b8:ae:26:50:cc:b5:19:42:
20:c2:76:00:be:f1:50:b2:dd:e0:ca:da:44:82:49:
e5:85:54:78:2c:54:3b:95:58:6d:06:e4:d5:e1:d3:
66:aa:5a:26:2a:a2:02:a9:dc:f9:f4:fe:a1:62:e0:
ee:b8:b1:d9:34:fe:ed:f0:35:3e:b8:e4:c2:d5:38:
19:fe:36:ca:68:39:a7:00:bb:08:35:c1:20:db:46:
7c:38:88:0d:1a:14:b7:c3:c6:f9:28:7c:a7:a1:e9:
36:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:01:3F:35:E7:25:41:1C:38:5D:0D:0A:AA:E5:75:3C:97:7F:AC:BF
X509v3 Authority Key Identifier:
keyid:33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/yQE_NeclQRw4XQ0KquV1PJd_rL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.73.0/24
Signature Algorithm: sha256WithRSAEncryption
63:67:67:fd:45:4f:98:2f:f9:50:e4:56:ae:b5:fa:63:47:fb:
2a:d1:b1:4e:ad:49:e6:dd:b7:ed:f0:15:a5:da:54:1f:8c:81:
1d:92:cc:40:af:a6:8b:09:8f:0a:99:ce:c4:88:88:bf:6a:0f:
e1:c1:b5:5b:fb:7e:69:97:da:04:d3:f9:2d:8b:14:f6:26:b2:
61:22:e1:5f:15:18:2f:8b:1c:ff:13:a5:5a:69:33:39:b9:67:
2b:8e:54:a3:cf:df:c0:c8:90:d6:78:76:24:d4:0f:f1:58:9c:
8e:0d:29:e5:84:74:83:d4:96:03:38:ec:8b:e7:0f:3d:5a:5b:
7d:ef:9c:c5:a5:bc:a8:1c:e6:5c:ee:0e:bb:91:9c:75:8b:ea:
f9:c7:e4:9d:e0:3d:25:d6:14:8e:8a:ef:1a:ae:9a:b2:53:0d:
af:f8:7e:ce:82:f6:4c:b4:60:36:02:8d:39:cb:ad:11:2a:7a:
2a:a1:79:35:84:10:67:b2:a3:76:c0:7f:5f:de:4a:96:8d:87:
32:fa:96:7e:29:18:d5:56:2a:63:d0:95:7d:67:17:38:c5:cc:
d8:b0:83:38:61:81:7a:97:6e:8b:f6:d6:6d:5c:88:82:60:42:
16:b5:cb:73:ea:1c:02:28:31:1e:f3:46:b3:08:70:4e:30:34:
3b:7e:36:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:20 2024 by rpki-client on console-fra.rpki-client.org