Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/y_YEcufOPwVQaXCLvQjjpN2z2L4.roa
File: y_YEcufOPwVQaXCLvQjjpN2z2L4.roa (raw, json)
Hash identifier: EC2fAsZIsZxXy0sng2Ukxc4sTtG6oEIhMn590rXr9G0=
Subject key identifier: CB:F6:04:72:E7:CE:3F:05:50:69:70:8B:BD:08:E3:A4:DD:B3:D8:BE
Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Certificate serial: 09C28816
Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/y_YEcufOPwVQaXCLvQjjpN2z2L4.roa
Signing time: Sat 01 Jan 2022 04:55:46 +0000
ROA not before: Sat 01 Jan 2022 04:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49652
IP address blocks: 195.254.128.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163743766 (0x9c28816)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Validity
Not Before: Jan 1 04:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbf60472e7ce3f055069708bbd08e3a4ddb3d8be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8e:1a:c3:dc:02:29:8f:6b:d9:69:5d:4e:db:
36:4c:45:95:cf:db:5f:71:39:38:5b:88:c3:43:13:
58:2d:53:02:7d:da:bb:35:0a:71:af:c7:2d:9d:c3:
fa:bb:21:89:8e:be:51:9a:c6:06:5c:15:f4:f9:73:
70:23:fc:b6:00:7b:a7:5b:c5:ef:9a:fa:ca:a6:9b:
1d:67:66:e4:fb:b1:4b:82:08:1e:31:17:80:6b:30:
0e:70:df:44:ef:6a:61:e8:47:51:f5:26:33:03:7b:
4e:40:62:36:a0:dd:de:e2:9d:5b:d1:ec:be:c9:b9:
8b:e0:9d:ef:37:c1:4c:ed:d4:2d:b1:8b:09:94:1d:
1b:a4:e2:8c:f9:77:95:18:65:61:a3:39:3f:c6:16:
a9:c8:b3:2a:5f:b2:66:b0:60:da:15:bb:c1:40:29:
4d:e6:97:b3:9e:42:0b:14:72:bf:aa:79:ec:f5:e2:
69:15:52:fc:64:42:df:b5:98:e2:2b:d6:1f:53:7c:
06:af:2a:8d:58:32:1f:72:e2:3a:a6:03:fb:01:f4:
73:64:bb:84:a6:2f:68:22:51:1d:e0:a4:1a:a5:e3:
9c:64:8e:c8:c9:18:88:6c:b4:33:c2:a7:1b:ad:ae:
76:e9:39:34:59:e8:84:76:5d:3d:b7:98:0b:7f:dc:
d8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F6:04:72:E7:CE:3F:05:50:69:70:8B:BD:08:E3:A4:DD:B3:D8:BE
X509v3 Authority Key Identifier:
keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/y_YEcufOPwVQaXCLvQjjpN2z2L4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.128.0/23
Signature Algorithm: sha256WithRSAEncryption
63:00:1a:b8:05:fa:ed:46:7e:f2:28:4c:ad:dc:e6:f9:b1:77:
12:82:2e:8e:9c:78:3d:3e:56:4f:ca:6a:75:5f:0b:85:9d:51:
7f:72:5f:61:07:a9:fb:53:b6:55:ac:b4:dc:06:ac:28:6a:fd:
33:75:72:0d:f0:19:26:fa:81:71:e9:cc:1b:b1:99:00:b0:3c:
89:e1:d8:b4:91:49:08:71:df:2b:97:bb:64:85:41:40:ae:e6:
36:c6:2f:ab:c8:bc:2c:18:3e:bf:12:a1:f7:ea:38:87:fd:aa:
55:b8:5e:fb:0a:7c:26:8e:97:cb:fb:1a:39:a2:25:43:0e:4c:
7e:11:c5:27:d6:9f:f5:61:8e:00:78:97:10:32:cf:38:88:b9:
2b:f3:71:fb:6a:7b:7d:c6:9e:7f:37:09:5c:8a:d7:08:e2:5a:
d3:66:14:35:c6:95:3f:80:ed:a5:cf:23:8f:d5:75:7a:ea:1d:
c1:c0:2b:c0:e5:ae:ef:f0:c2:a6:7a:c4:63:ec:a9:f9:5f:f7:
46:bb:96:e4:02:ed:69:e1:6e:c0:a1:17:e7:27:4f:6f:7f:84:
36:63:e6:48:31:28:7d:18:68:67:81:52:1c:00:38:5f:b5:55:
57:d9:55:03:e6:84:da:c1:39:99:dc:c3:f0:ab:65:5f:0a:ef:
ae:93:4c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:39 2024 by rpki-client on console-ams.rpki-client.org