Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/y0SeAyuCk6edB2ujj3aCNSuse-E.roa
File: y0SeAyuCk6edB2ujj3aCNSuse-E.roa (raw, json)
Hash identifier: H6gV5SIq06pOATOtIdsiVeFlORD5aGdu0xONddCFKJE=
Subject key identifier: CB:44:9E:03:2B:82:93:A7:9D:07:6B:A3:8F:76:82:35:2B:AC:7B:E1
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: B8E7BF
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/y0SeAyuCk6edB2ujj3aCNSuse-E.roa
Signing time: Tue 10 May 2022 06:48:28 +0000
ROA not before: Tue 10 May 2022 06:48:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 160.19.94.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12117951 (0xb8e7bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: May 10 06:48:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb449e032b8293a79d076ba38f7682352bac7be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b0:7e:b3:09:3f:a2:db:ab:11:ae:52:0e:d0:
fc:8c:f6:18:05:6a:9e:36:ed:31:48:e4:dc:fc:1c:
12:59:d6:3e:ca:c1:9c:88:0a:7f:58:ee:11:1f:e8:
c9:f3:94:f8:65:ca:56:53:e4:4e:70:a8:5f:ea:30:
ef:85:4c:a7:6c:b9:4d:0a:3e:7a:6c:35:52:3d:db:
36:5c:a8:d8:0d:50:33:2e:24:8c:a0:26:c8:8f:a8:
fa:88:0b:5e:0c:ed:37:ac:b7:4b:9b:32:7f:3c:e7:
c8:f1:8d:aa:06:29:96:2f:64:c8:a9:b4:fe:15:13:
5d:87:b3:ab:6d:98:b5:4a:39:98:62:e6:0f:12:3a:
12:e6:e1:fc:8d:e5:12:84:8b:63:71:36:a8:96:73:
41:7c:0e:c7:88:ea:40:7d:50:d1:61:bc:44:b0:79:
72:58:54:92:85:53:be:1d:46:1d:9a:da:5b:5b:0e:
45:65:7f:f1:20:1c:d4:e4:93:fb:b5:7e:c3:af:d0:
7a:5f:3f:56:1d:10:b6:66:c5:9c:e1:5f:5f:12:e1:
1e:8a:a9:72:b5:60:dc:1f:29:b7:51:a5:0e:69:97:
bb:0d:c8:3f:1d:06:3b:34:89:6d:e6:32:84:5f:de:
10:9e:30:5b:43:bc:d5:ef:0b:12:c5:77:6d:63:51:
8c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:44:9E:03:2B:82:93:A7:9D:07:6B:A3:8F:76:82:35:2B:AC:7B:E1
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/y0SeAyuCk6edB2ujj3aCNSuse-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.19.94.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:97:c0:d0:a4:7c:fe:e9:b6:d8:e5:06:f6:53:11:05:83:03:
9d:b0:a5:7f:66:eb:d2:11:0e:ac:5e:8c:a7:74:6b:84:d0:b8:
45:50:73:94:dc:2c:57:fd:88:85:2f:21:55:8a:9a:e1:61:89:
84:8e:15:ff:8e:ef:26:bf:63:d4:72:5d:31:78:d3:1c:c2:01:
c3:e1:58:9e:23:70:cf:22:a7:4d:99:ee:56:e8:70:2c:34:d0:
06:0a:4f:82:b7:2d:8b:2c:8f:cb:db:47:b0:0b:2f:ef:e4:b0:
22:65:57:38:e6:7d:0f:b8:74:83:a1:74:7b:fd:c7:a9:e3:0f:
f6:a6:e3:4f:5e:07:63:5e:01:43:e9:dc:c3:58:05:e7:7b:c1:
04:f2:37:ff:b5:3d:1c:ed:e4:9a:36:f0:77:29:88:28:09:4c:
1e:14:28:70:c5:78:a3:0e:80:59:8b:35:48:2b:d5:88:3e:c1:
d0:93:09:3c:76:5e:e1:a6:ea:96:19:36:2e:e7:0b:76:ee:3e:
b4:0f:ca:b1:f5:0b:1a:14:95:36:00:3a:60:b2:29:dc:c7:45:
68:0b:d0:ca:3c:95:87:d5:62:ae:2b:f1:ea:d4:fd:f4:f1:22:
60:3a:3a:43:6b:fa:b0:e8:1e:d1:38:19:a0:54:61:c9:06:f1:
7d:5d:6f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org