Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/y16TFXktp74Z5UzSGE1h0XnlsEI.roa
File: y16TFXktp74Z5UzSGE1h0XnlsEI.roa (raw, json)
Hash identifier: c6JY8mZWB0Uob2doIva3xdUcl0OXTiNdqOouTP2zJpU=
Subject key identifier: CB:5E:93:15:79:2D:A7:BE:19:E5:4C:D2:18:4D:61:D1:79:E5:B0:42
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D35CFA7
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/y16TFXktp74Z5UzSGE1h0XnlsEI.roa
Signing time: Sat 07 May 2022 18:11:07 +0000
ROA not before: Sat 07 May 2022 18:11:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134176
IP address blocks: 194.163.70.0/24 maxlen: 24
194.163.69.0/24 maxlen: 24
195.252.172.0/24 maxlen: 24
195.180.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221630375 (0xd35cfa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 7 18:11:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb5e9315792da7be19e54cd2184d61d179e5b042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:20:4b:61:d2:f9:a0:ca:0d:2c:d7:17:76:df:
09:0e:09:38:05:70:de:cb:1e:49:ba:07:54:14:43:
9c:f3:a4:df:c4:a9:a7:44:32:9f:bc:6d:a7:a2:bf:
f0:51:08:84:b9:60:03:9f:e4:ab:68:6d:cc:c0:f8:
ea:d7:e5:10:cf:b7:a3:86:80:2d:1d:46:20:e7:90:
64:93:68:3b:61:3f:d8:12:3e:33:d3:13:4d:fb:f8:
27:5a:aa:f6:36:88:cb:16:c3:b8:18:f1:ee:ae:33:
2f:c1:d1:04:d3:84:3b:f3:39:7f:62:43:64:29:ea:
0d:4e:2b:b2:42:d2:e1:2c:aa:62:0a:2f:57:67:02:
7a:31:a2:90:29:ba:c0:bc:c5:94:24:a8:fc:9e:94:
15:34:f7:f3:b4:6c:43:76:c8:44:28:09:79:58:5f:
9d:29:d4:f1:ac:1a:09:67:71:31:b3:c8:32:6f:67:
e5:fd:f6:7d:bd:28:db:41:75:a3:60:ad:d2:cb:40:
ad:9b:8e:c0:1c:8a:5a:77:93:92:8e:30:e5:a0:81:
9e:34:56:b7:ee:23:a1:a0:42:fb:bd:20:77:00:37:
7d:72:4d:aa:54:80:d8:c3:f2:b6:e3:f0:3e:c5:f0:
45:b2:b7:f1:59:0b:e6:f7:af:f8:71:82:e0:b5:c8:
6a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5E:93:15:79:2D:A7:BE:19:E5:4C:D2:18:4D:61:D1:79:E5:B0:42
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/y16TFXktp74Z5UzSGE1h0XnlsEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.69.0-194.163.70.255
195.180.179.0/24
195.252.172.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:6b:45:da:78:e0:e3:2b:95:6f:de:1a:d1:47:37:8c:40:a8:
b0:bc:ea:c9:29:13:9b:19:d8:01:fa:6e:e7:a7:d2:e3:11:c8:
7c:bc:71:79:c3:e6:cd:d6:54:0d:33:65:69:62:dd:77:34:3e:
00:9a:fe:34:94:e0:1c:a2:ab:19:77:6a:ec:ab:84:87:be:8a:
0e:b1:35:a5:75:a7:c6:d8:8a:e5:22:aa:36:5f:5a:55:cd:9a:
bb:cf:fb:d5:88:74:a8:de:37:f3:0f:e5:94:b3:b7:28:71:10:
d7:91:5b:c4:e4:6c:77:15:e0:b2:e2:0d:0f:d4:3f:fd:07:41:
97:7e:28:bf:d3:07:2f:b8:c2:cd:13:3c:6b:80:8b:e5:14:a4:
8c:ba:f9:14:e5:bd:12:53:40:24:92:ef:00:e8:29:63:62:9d:
03:d6:3c:a4:5f:45:5b:61:ae:d6:88:4a:f0:f7:6c:6d:13:d6:
52:df:4c:c0:b3:76:13:ad:e6:fb:93:7a:59:42:f9:6b:be:e7:
44:76:de:4f:3d:c7:62:9f:d1:c7:c1:ae:37:23:41:5e:09:4b:
68:94:b9:e9:1a:a0:60:15:18:e1:1c:85:47:89:3f:50:ad:58:
a0:9c:1b:9f:0f:39:40:ff:50:86:a7:f3:a7:b2:3f:30:c4:51:
ec:2b:3d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org