Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/YcI90-4y3v4XrFcHZpnT0ifkzg4.roa
File: YcI90-4y3v4XrFcHZpnT0ifkzg4.roa (raw, json)
Hash identifier: A1vHym5gUl6curQ84H/1KPxV+fJ+QZ61DHQlIHagJkM=
Subject key identifier: 61:C2:3D:D3:EE:32:DE:FE:17:AC:57:07:66:99:D3:D2:27:E4:CE:0E
Certificate issuer: /CN=fd89381307ae5e3b1ba8658cda7ee2ada4141447
Certificate serial: 023A4386
Authority key identifier: FD:89:38:13:07:AE:5E:3B:1B:A8:65:8C:DA:7E:E2:AD:A4:14:14:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Yk4EweuXjsbqGWM2n7iraQUFEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/YcI90-4y3v4XrFcHZpnT0ifkzg4.roa
Signing time: Sat 01 Jan 2022 03:59:31 +0000
ROA not before: Sat 01 Jan 2022 03:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58349
IP address blocks: 193.42.23.0/24 maxlen: 24
2a10:e5c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37372806 (0x23a4386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89381307ae5e3b1ba8658cda7ee2ada4141447
Validity
Not Before: Jan 1 03:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61c23dd3ee32defe17ac57076699d3d227e4ce0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8b:63:36:c5:2d:ac:f0:d4:34:8c:ad:c7:68:
5b:d5:b8:9b:e6:a4:0f:f4:76:50:b8:a6:54:87:41:
c8:91:3a:63:13:f7:2d:4a:06:a4:42:7e:c1:fb:ee:
1b:4d:a5:d2:7c:81:29:97:58:6f:22:d0:14:af:39:
a0:be:a6:28:d3:39:e0:d3:44:d0:8f:5c:b1:62:04:
f1:8a:27:f2:a6:93:1f:cd:50:b9:d0:95:07:3e:e7:
81:59:2f:37:48:53:69:13:3c:78:87:35:c7:3a:51:
a2:c6:1b:a1:5f:97:f1:60:05:96:12:8d:67:3d:b2:
ca:e5:01:89:e5:8e:21:04:fe:d8:20:ca:cc:17:04:
cd:42:3d:d8:b9:67:9b:ad:39:f7:bc:df:ee:c0:f6:
af:bf:27:5a:ea:1a:e8:c4:2a:26:cc:a5:5e:64:70:
dd:3d:fd:7f:20:8f:8a:65:c6:fd:c7:01:e6:87:bc:
5d:26:7b:39:c0:15:0b:6f:1b:d8:fb:57:74:45:b0:
bf:50:d5:ab:97:c5:f4:64:c1:e3:47:63:d4:ca:6c:
7e:19:ac:7b:af:0d:2d:cf:8c:2c:11:59:47:78:6d:
df:ac:c4:df:76:40:30:15:1d:1c:42:e9:36:c4:b7:
c1:c3:21:e6:eb:b4:93:7b:0f:17:1c:02:0f:30:e2:
1b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:C2:3D:D3:EE:32:DE:FE:17:AC:57:07:66:99:D3:D2:27:E4:CE:0E
X509v3 Authority Key Identifier:
keyid:FD:89:38:13:07:AE:5E:3B:1B:A8:65:8C:DA:7E:E2:AD:A4:14:14:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Yk4EweuXjsbqGWM2n7iraQUFEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/YcI90-4y3v4XrFcHZpnT0ifkzg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/dcf9b7-6d72-475a-baa7-646ee6dfa6b6/1/_Yk4EweuXjsbqGWM2n7iraQUFEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.23.0/24
IPv6:
2a10:e5c0::/48
Signature Algorithm: sha256WithRSAEncryption
7a:9f:13:48:0a:dd:5e:48:59:57:c1:b7:8d:fb:d7:c6:fa:ad:
a0:82:f1:25:1a:6d:3a:3f:05:73:2f:5b:2e:ce:bc:2d:52:a2:
bf:f7:37:76:1f:19:a1:63:00:a5:36:d0:d9:41:b9:c2:a3:3c:
d1:cf:b1:e0:a6:d6:1e:0d:a7:30:8c:3f:1a:8d:4f:04:3f:a7:
c6:89:43:27:93:35:5b:5b:b7:29:10:04:8d:30:ad:1d:29:03:
8e:97:22:40:bf:8e:50:d8:6e:53:0b:01:b9:12:da:81:ee:39:
2c:45:2d:00:7f:2c:b3:15:a8:7c:3d:a1:ea:d0:cc:28:d6:28:
69:6f:4c:2a:a3:4c:66:14:6f:64:db:b2:fa:35:ea:f0:d5:18:
23:65:b5:0c:31:90:89:50:f0:32:d0:d5:61:92:08:85:eb:39:
54:3f:70:a6:2f:3d:48:f7:07:d9:f8:df:3c:95:6c:86:9a:0e:
13:5c:29:37:c5:ca:a9:5b:58:4b:db:67:fd:ab:5a:7f:a6:e0:
d3:fa:05:7f:cf:f2:71:c6:02:05:81:29:83:c4:28:2b:a6:a5:
c3:bb:48:02:08:bc:d4:ae:ce:44:b3:0a:51:9b:2d:37:1a:6b:
0a:6b:41:2e:70:41:c0:24:31:41:0d:f6:86:e6:10:0e:5b:2a:
87:8c:e6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:37 2024 by rpki-client on console-fra.rpki-client.org