Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/Yr8jOWKMTQZMkXPKeDqt51A1nf0.roa
File: Yr8jOWKMTQZMkXPKeDqt51A1nf0.roa (raw, json)
Hash identifier: dYv2BEQpXfvfwyLpNYFsdG+PomWuoEnL96FuyXJeKqA=
Subject key identifier: 62:BF:23:39:62:8C:4D:06:4C:91:73:CA:78:3A:AD:E7:50:35:9D:FD
Certificate issuer: /CN=2f102815d27e6511746d4a3e9fd1359cd982a866
Certificate serial: 0184ED0C0A859A6456B8CB51A74C985F781F
Authority key identifier: 2F:10:28:15:D2:7E:65:11:74:6D:4A:3E:9F:D1:35:9C:D9:82:A8:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxAoFdJ-ZRF0bUo-n9E1nNmCqGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/Yr8jOWKMTQZMkXPKeDqt51A1nf0.roa
Signing time: Wed 07 Dec 2022 14:45:00 +0000
ROA not before: Wed 07 Dec 2022 14:45:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208842
IP address blocks: 91.209.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ed:0c:0a:85:9a:64:56:b8:cb:51:a7:4c:98:5f:78:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f102815d27e6511746d4a3e9fd1359cd982a866
Validity
Not Before: Dec 7 14:45:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62bf2339628c4d064c9173ca783aade750359dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b7:be:69:d3:88:64:75:e9:9d:7d:ac:e2:a3:
85:8e:97:43:95:67:c7:68:15:1a:15:5b:eb:b6:e1:
b0:80:42:f8:a8:7e:8c:dc:5e:bd:9c:53:d1:b5:bf:
1b:fa:25:23:13:be:dc:8b:53:c7:7c:e5:a5:08:2d:
98:cb:2f:0e:12:21:c2:0f:40:46:f8:ed:3d:47:86:
ac:87:4d:9d:82:7e:7f:6c:0c:34:8d:46:50:04:91:
f7:ef:55:c5:11:bc:13:0f:78:c5:ec:c3:1a:0b:b0:
24:44:74:98:4d:9c:8b:ed:15:0c:87:e7:1d:fd:bd:
0f:29:a0:8e:c4:8a:7e:09:8e:86:4f:b3:78:1d:c9:
4d:28:c1:63:79:55:1b:28:f9:a7:83:e1:e8:de:37:
82:1f:bf:8f:36:d5:7b:60:0f:df:61:26:5a:e4:9d:
e2:15:62:c4:29:d7:89:e0:03:c1:81:cb:d6:ba:59:
dc:64:ed:3b:c4:13:1a:1b:bf:0b:92:bb:09:d4:c8:
d6:bf:b3:f0:e8:43:b2:ad:79:af:e0:36:22:43:07:
c7:16:81:c5:aa:0c:4b:21:0e:e0:94:ac:91:07:30:
af:a8:1b:1f:dd:6e:2e:13:25:7a:62:56:92:33:0c:
a4:70:f4:56:e4:29:fb:25:a8:03:2e:4d:7b:47:3e:
3e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BF:23:39:62:8C:4D:06:4C:91:73:CA:78:3A:AD:E7:50:35:9D:FD
X509v3 Authority Key Identifier:
keyid:2F:10:28:15:D2:7E:65:11:74:6D:4A:3E:9F:D1:35:9C:D9:82:A8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxAoFdJ-ZRF0bUo-n9E1nNmCqGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/Yr8jOWKMTQZMkXPKeDqt51A1nf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/LxAoFdJ-ZRF0bUo-n9E1nNmCqGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.4.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:85:15:91:ba:d5:c6:84:9e:62:9b:07:c1:ea:25:2b:67:b7:
94:35:32:3a:68:03:2b:7f:7e:a1:49:a2:97:dd:af:54:3b:b3:
9d:0b:99:b5:8c:ea:8c:af:b1:9a:af:ab:3b:60:53:dc:cb:a5:
65:d9:d5:45:20:85:88:bc:e4:49:c4:b5:e6:95:c7:45:1e:1e:
73:c7:5e:2a:79:5d:86:e5:f5:96:95:8d:2a:2e:dd:20:53:0a:
61:e1:ee:45:d7:fe:4c:e4:a1:45:f4:d4:20:22:2c:a2:e6:df:
1e:74:fb:67:f5:45:09:e9:54:be:41:32:ed:05:d9:2f:e9:f8:
fc:f6:e9:0e:43:13:78:7a:48:b0:d9:5d:98:dc:77:e6:0f:58:
18:6f:39:d2:dc:65:bc:87:97:2a:5c:82:df:48:cd:b2:03:a2:
31:80:60:99:40:67:e7:a7:3c:95:3e:4f:c3:e6:bd:07:1c:d8:
da:21:10:4c:5c:f6:5b:01:82:fa:ad:c6:e2:5a:0b:1f:f9:3a:
fc:50:5c:bd:76:96:9a:37:55:7f:0f:4a:de:7c:9a:b8:4a:cc:
c0:91:88:21:1d:d4:c5:ae:9a:16:97:ed:cc:8c:8d:e0:0a:93:
ad:bc:15:a2:45:e0:4c:d1:13:d1:50:d4:7d:2e:4a:0e:78:8e:
91:2f:a2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:23 2024 by rpki-client on console-ams.rpki-client.org