Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ybHqrqP5XtkOXbeBiKN4-tgVGcE.roa
File: ybHqrqP5XtkOXbeBiKN4-tgVGcE.roa (raw, json)
Hash identifier: R/HiCOAR+e97+qj1GdSvzpen4ek21Z0PbCj954B+3Ds=
Subject key identifier: C9:B1:EA:AE:A3:F9:5E:D9:0E:5D:B7:81:88:A3:78:FA:D8:15:19:C1
Certificate issuer: /CN=64f47c98440f103825c8ea5074298b18cc113e20
Certificate serial: 134946C3
Authority key identifier: 64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ybHqrqP5XtkOXbeBiKN4-tgVGcE.roa
Signing time: Sat 01 Jan 2022 00:58:45 +0000
ROA not before: Sat 01 Jan 2022 00:58:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204194
IP address blocks: 185.3.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323569347 (0x134946c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64f47c98440f103825c8ea5074298b18cc113e20
Validity
Not Before: Jan 1 00:58:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9b1eaaea3f95ed90e5db78188a378fad81519c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:66:84:fa:79:fd:62:08:86:c6:23:5b:57:c5:
71:0f:c4:fb:a2:6c:cf:4f:8f:55:bf:6d:15:dc:cd:
6f:73:1f:3d:e3:af:a9:0e:ea:01:43:5e:5c:f9:0e:
84:e8:56:58:c3:7e:72:9c:f7:af:0c:d0:7c:b9:ec:
8e:15:87:67:2c:fa:01:0c:a3:c4:83:ae:34:2c:84:
d4:6a:50:60:3b:92:40:de:33:7e:3d:97:83:0f:ef:
0c:a2:e0:0b:b8:91:7e:97:1f:f5:12:4f:6c:74:82:
c1:fe:9d:b6:ab:7d:b5:69:26:70:0f:1a:dc:56:ca:
56:ba:76:c8:2a:97:c1:30:62:ed:3f:93:0e:b1:9c:
38:4f:61:aa:01:95:0d:be:c1:6a:45:82:1b:17:10:
35:9f:e5:79:7c:60:10:c6:39:f9:e8:df:fe:16:d5:
6a:e1:11:1f:19:54:32:cf:39:9f:ed:cb:66:4e:b5:
36:79:15:82:08:31:84:71:da:08:e0:9d:df:5e:93:
44:3c:dd:07:20:fa:3a:f1:73:65:52:a3:8a:8d:a0:
a8:00:4a:ca:af:06:e9:eb:7e:cd:25:45:a6:28:cd:
8c:86:30:62:70:fe:49:ae:0a:87:dc:c1:67:93:7f:
84:64:64:aa:5a:9f:4f:e9:a0:f1:6c:ba:f9:f3:38:
93:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B1:EA:AE:A3:F9:5E:D9:0E:5D:B7:81:88:A3:78:FA:D8:15:19:C1
X509v3 Authority Key Identifier:
keyid:64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ybHqrqP5XtkOXbeBiKN4-tgVGcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.191.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:f2:6b:da:29:f5:f7:ab:65:c6:db:77:c1:53:b5:14:d1:6f:
76:2d:cc:76:4f:40:8d:53:cd:63:0f:ea:92:dc:4e:5e:1c:49:
40:e9:5f:db:9d:a6:57:a3:cc:04:4a:4e:ab:9a:f5:c3:16:27:
04:95:09:4d:c1:0c:de:62:84:e1:21:c3:5d:ef:ba:52:de:b4:
22:2c:53:b5:46:53:f9:85:e6:0f:34:ac:08:a4:8c:33:e6:a1:
0d:92:13:d6:01:01:cd:b1:3d:f7:c3:fd:a5:40:b0:b9:3d:61:
77:48:b1:ec:09:7d:ac:5d:1f:a2:d1:ec:e3:1a:0a:ce:ab:78:
5d:13:5b:d9:23:70:77:b1:35:05:4d:ae:b5:a8:0b:80:bb:e7:
05:99:44:87:36:14:1c:19:19:a6:bb:bd:c1:7b:0e:3b:ea:6b:
3c:43:5a:54:10:5c:e5:3d:d2:b8:58:33:de:08:27:a1:8e:74:
c6:b2:c6:40:34:a1:ce:0b:21:fe:1c:c3:45:92:67:3b:fc:47:
bb:fe:8b:65:0d:e4:c7:76:b1:62:6c:03:35:23:ad:2d:5d:de:
d7:c0:8e:67:5b:8b:bc:07:3e:1a:fb:d0:60:16:a9:de:73:75:
a0:34:1e:e9:f0:7e:43:c0:09:a1:33:66:82:f4:d0:da:13:67:
5a:15:8b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org