Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/y1n7swftioyZpGquVyGsILTTbfg.roa
File: y1n7swftioyZpGquVyGsILTTbfg.roa (raw, json)
Hash identifier: 4KsObvetXKxs5CWDXFOwASUoYK9SKdMuWMTlmr/ExlI=
Subject key identifier: CB:59:FB:B3:07:ED:8A:8C:99:A4:6A:AE:57:21:AC:20:B4:D3:6D:F8
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4857F24E
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/y1n7swftioyZpGquVyGsILTTbfg.roa
Signing time: Sat 01 Jan 2022 03:00:20 +0000
ROA not before: Sat 01 Jan 2022 03:00:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30475
IP address blocks: 5.8.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1213723214 (0x4857f24e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb59fbb307ed8a8c99a46aae5721ac20b4d36df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ab:bd:ab:98:76:aa:43:69:88:4b:fa:2d:6d:
78:7b:49:0b:62:15:b3:5d:78:b4:37:c3:11:7f:10:
ed:e8:ea:7d:c3:07:10:1c:02:85:af:97:da:55:c8:
61:bc:ab:ab:65:8d:53:6a:33:79:71:01:28:29:0a:
79:7d:1c:e2:e8:62:41:9b:1d:8a:93:4c:f2:cf:7b:
c7:0e:b9:52:f0:a2:8f:ed:0e:a8:d5:03:b4:9e:c2:
ca:71:e0:01:6e:fd:cd:b7:d3:53:0a:1f:e1:d7:67:
3f:ce:00:2f:66:29:87:8d:8b:1f:5a:2b:41:a5:8a:
a9:05:5c:af:cd:4d:66:1b:b3:4e:5f:c9:07:a4:fa:
cb:96:80:a2:ce:a2:17:b7:6a:06:2d:01:1e:06:43:
4b:0d:7c:c1:a3:15:89:33:ff:25:ed:d6:6c:9a:bd:
fa:64:9e:7c:42:a7:fb:a9:b2:54:3e:65:48:23:30:
d1:bf:08:f5:e1:df:e3:cf:46:75:03:31:91:74:39:
88:00:4d:d8:2f:d6:9b:d9:23:8c:c7:84:e5:dc:87:
f9:59:b7:e7:d9:39:20:68:af:81:b1:da:dc:cd:06:
3b:89:a9:88:22:52:64:c2:4b:79:57:8d:87:10:31:
7b:fe:7f:5c:d0:f6:fa:1f:47:77:52:d2:8e:b1:25:
45:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:59:FB:B3:07:ED:8A:8C:99:A4:6A:AE:57:21:AC:20:B4:D3:6D:F8
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/y1n7swftioyZpGquVyGsILTTbfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.63.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d4:ac:48:9b:2f:d8:af:83:ae:95:9e:9c:59:32:d8:5a:c4:
c6:a1:a7:4f:4e:72:72:d3:61:9a:ff:10:98:ab:02:86:31:ba:
c9:aa:e9:1a:5b:a3:05:7e:a9:32:55:60:be:dd:34:e6:47:e1:
1d:34:7f:b3:60:90:35:d3:6b:12:2a:d6:2e:33:ba:2a:22:8e:
b7:76:be:55:77:c4:62:46:38:b3:ab:10:14:b8:c3:db:ed:22:
6a:90:ce:14:59:18:87:13:8a:14:2d:ef:a5:e6:03:84:48:c5:
5e:53:2d:e1:b4:59:09:51:3a:98:0b:d2:af:e6:73:0a:9a:c4:
5b:b9:0e:76:2d:f7:f0:ea:45:2b:bc:9b:9c:cf:d9:ca:73:71:
af:ea:09:1f:4b:17:50:e1:66:71:72:0c:9c:80:84:d9:bc:64:
d9:19:bf:06:c7:f9:31:12:5b:84:01:87:6b:ed:0e:d2:28:6a:
a7:f3:a3:24:d2:33:60:dc:63:ac:93:d4:18:3a:04:e2:11:09:
33:5d:cc:b1:ee:4b:2d:2e:6f:4b:b4:a5:bf:cd:eb:5b:2a:68:
b3:98:7d:9a:79:01:2c:8d:09:47:3a:b9:f8:92:67:17:d0:98:
49:e3:94:1b:5b:15:c1:68:10:5e:7f:4a:70:c6:58:18:f2:8c:
9d:8f:e4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-ams.rpki-client.org