Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/yIF4UGn_f3k7clbZbHlb-DjN9IY.roa
File: yIF4UGn_f3k7clbZbHlb-DjN9IY.roa (raw, json)
Hash identifier: Fnv4BEO7S+ZGcLwyPF5kmkNeKFCb4ehbUFXuUr95kXk=
Subject key identifier: C8:81:78:50:69:FF:7F:79:3B:72:56:D9:6C:79:5B:F8:38:CD:F4:86
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0183546B66D6E9CDBBDAED0930E6FEDAC6BF
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/yIF4UGn_f3k7clbZbHlb-DjN9IY.roa
Signing time: Mon 19 Sep 2022 06:24:28 +0000
ROA not before: Mon 19 Sep 2022 06:24:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 195.180.176.0/24 maxlen: 24
194.233.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:54:6b:66:d6:e9:cd:bb:da:ed:09:30:e6:fe:da:c6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Sep 19 06:24:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c881785069ff7f793b7256d96c795bf838cdf486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:b6:cf:0c:53:3d:38:dd:a7:7f:39:21:9d:
d7:2b:31:b0:e7:f9:00:32:12:4f:8e:fe:36:7c:f5:
4c:4d:11:60:c5:8e:9e:ae:77:b8:8c:1d:d0:00:f5:
06:cd:34:d2:30:f7:b0:ac:1c:7e:e9:ee:bd:fd:f0:
46:af:3b:e6:4a:0b:13:e8:d6:2f:7d:8d:58:5a:69:
f6:d8:db:b3:4f:dc:c5:64:d0:af:e2:cd:61:61:d4:
82:9f:b2:23:ad:bf:06:d3:88:64:d1:76:15:98:f4:
bc:fe:32:1a:f5:1c:d3:20:04:0e:f4:cf:7c:09:f2:
f0:38:44:a2:e4:6e:45:d0:21:19:6d:75:55:cc:37:
38:9a:16:b8:f4:17:89:08:6a:4a:3b:1f:fc:f1:df:
43:bc:e0:89:58:8d:a7:32:41:20:04:a3:b6:f1:01:
7d:46:a8:86:db:b6:5d:16:cc:3c:13:6c:59:a9:92:
fc:61:9a:c0:8d:35:b0:0c:a9:1b:fd:f5:09:ea:2f:
25:2f:91:05:75:c3:3f:f2:c5:6f:e1:e7:79:ea:ef:
b8:4e:aa:5c:8e:e3:35:b7:6e:a0:d4:9f:cf:59:87:
ff:2d:66:12:12:f6:99:f6:fc:48:5d:61:7b:57:e7:
16:79:88:96:d8:84:4a:89:05:14:1b:f6:a9:7d:f2:
bb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:81:78:50:69:FF:7F:79:3B:72:56:D9:6C:79:5B:F8:38:CD:F4:86
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/yIF4UGn_f3k7clbZbHlb-DjN9IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.5.0/24
195.180.176.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:91:4f:83:06:00:45:cc:8f:8f:d2:9c:1d:00:6b:e3:73:0c:
82:c7:c4:2c:cf:ef:c4:fb:78:0d:99:ba:2e:d3:2c:7b:2a:8b:
95:dc:23:ed:e4:3b:fd:36:66:9d:74:60:63:b9:90:e0:14:8c:
75:82:de:63:5d:90:b9:8f:98:c4:3d:58:8b:ef:cc:f2:c3:23:
30:6f:42:a0:4b:b9:0b:22:e8:44:d3:ff:1a:4d:03:5b:ed:a3:
23:37:07:72:7c:1a:85:5f:a9:f2:d2:9e:5d:ae:8e:da:72:fc:
80:84:16:7e:b7:aa:5c:0c:1b:d1:84:4e:e7:50:85:02:a9:bf:
f4:7f:8e:87:f6:12:4c:74:91:8b:0b:7c:5f:e2:a5:27:19:08:
96:13:21:8f:85:cd:05:ce:27:58:36:29:65:e8:9b:92:35:f9:
90:04:66:3a:19:3c:3c:e6:97:1e:b4:3c:4f:ea:72:be:29:d2:
2a:2a:c4:f6:2f:b9:33:2d:ec:1a:e2:6c:c6:bc:e9:8d:65:a0:
c4:85:0c:5c:44:11:41:d6:82:52:f5:ab:92:0c:80:c8:23:2b:
ee:9c:47:6e:20:75:3b:74:55:e0:30:a0:9d:51:7c:0d:07:e1:
4f:44:00:10:a9:fb:ea:c3:ab:fa:01:b4:5c:34:6f:82:52:f6:
f4:90:34:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org