Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/366560-096e-4835-89fd-563600319a1f/1/cYvlhhxvL30Ek97LhwxTynI3HbY.roa
File: cYvlhhxvL30Ek97LhwxTynI3HbY.roa (raw, json)
Hash identifier: Eh/KHmHEC0x05BezCQuUpU1bYHJdanKt8rZzZgGZtEg=
Subject key identifier: 71:8B:E5:86:1C:6F:2F:7D:04:93:DE:CB:87:0C:53:CA:72:37:1D:B6
Certificate issuer: /CN=8e987039b3f3b2db9b298ae0d8d0eb348969ad62
Certificate serial: 021F63
Authority key identifier: 8E:98:70:39:B3:F3:B2:DB:9B:29:8A:E0:D8:D0:EB:34:89:69:AD:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jphwObPzstubKYrg2NDrNIlprWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/366560-096e-4835-89fd-563600319a1f/1/cYvlhhxvL30Ek97LhwxTynI3HbY.roa
Signing time: Thu 05 May 2022 15:42:15 +0000
ROA not before: Thu 05 May 2022 15:42:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.134.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139107 (0x21f63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e987039b3f3b2db9b298ae0d8d0eb348969ad62
Validity
Not Before: May 5 15:42:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=718be5861c6f2f7d0493decb870c53ca72371db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1a:8f:32:65:6e:19:19:9c:f7:e0:db:c2:b9:
03:3c:10:ac:31:4d:e8:00:33:79:93:86:08:36:26:
9b:95:b4:7d:70:ae:4e:e3:76:04:48:b1:9b:c3:5b:
8f:91:4c:1f:0d:db:9f:ec:8c:e8:ac:2e:a4:16:c0:
0a:ac:89:ed:61:c5:12:e6:ce:e8:44:b6:68:04:12:
7b:cd:6b:af:39:b6:e7:e6:45:2b:92:7c:38:17:95:
cd:3e:45:21:6c:d1:44:ae:86:ca:b5:4d:fb:7b:bc:
00:b1:f6:36:7e:3b:f2:a8:ae:12:83:5c:fd:2d:76:
ab:40:fa:68:1a:77:f1:5e:8b:76:89:b0:47:52:36:
78:c4:a5:25:a0:40:b5:68:28:fe:c8:31:c3:83:24:
89:33:6d:af:d5:ff:4c:b7:9a:9f:d9:af:b1:7b:4d:
a1:e8:73:96:98:b8:28:02:c4:02:c5:72:70:78:a7:
cc:3c:5c:e7:a2:24:ef:fd:e3:c9:15:8e:94:77:53:
f7:11:9a:cc:2b:14:e8:78:d6:f4:8b:20:91:3c:57:
ce:06:d0:14:56:48:8a:71:c9:82:d0:e3:09:88:67:
1a:41:87:c3:da:20:68:11:f9:11:4e:62:30:08:68:
04:f5:1c:14:da:ac:7a:19:be:05:48:f5:1e:eb:5d:
0c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8B:E5:86:1C:6F:2F:7D:04:93:DE:CB:87:0C:53:CA:72:37:1D:B6
X509v3 Authority Key Identifier:
keyid:8E:98:70:39:B3:F3:B2:DB:9B:29:8A:E0:D8:D0:EB:34:89:69:AD:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jphwObPzstubKYrg2NDrNIlprWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/366560-096e-4835-89fd-563600319a1f/1/cYvlhhxvL30Ek97LhwxTynI3HbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/366560-096e-4835-89fd-563600319a1f/1/jphwObPzstubKYrg2NDrNIlprWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.159.0/24
Signature Algorithm: sha256WithRSAEncryption
38:98:f8:2b:c4:9a:29:3a:19:d1:d0:39:63:d6:75:fb:38:52:
92:d6:32:d7:74:e9:c3:dc:7f:7f:e2:a3:ac:e8:4d:3a:26:1b:
18:fd:42:b4:9e:1b:c7:e0:c7:95:d5:07:f6:ed:b9:46:df:86:
be:a3:e2:c2:7c:0c:ce:08:6b:ef:79:17:f9:98:5c:28:cb:f8:
ce:ce:86:3f:3c:42:47:d9:06:58:b8:0a:10:ce:73:cd:82:84:
0f:7d:9a:e7:40:af:af:b8:ed:e1:e0:0c:6f:e3:22:72:c6:5d:
35:70:57:b0:16:ba:f1:e7:42:e3:59:1d:b5:86:10:c3:81:31:
ef:64:9e:be:80:92:0d:66:a8:c0:67:2f:3e:79:9b:c3:9a:d5:
de:83:8d:07:ad:97:4b:23:06:ce:4b:c4:69:f1:a9:e8:1a:0b:
fa:a6:55:9e:86:b6:ab:24:a5:cf:47:94:ac:23:b6:38:fc:bf:
45:48:ba:30:66:15:33:e7:49:da:a6:89:e9:37:a8:3f:f3:b4:
65:d2:bd:72:08:92:c7:6b:e4:4b:16:e8:b0:f5:b5:d4:6a:c7:
f9:4f:68:39:01:c5:d2:3f:b6:38:00:2c:c2:30:d7:2e:7c:7e:
e9:bb:31:80:38:37:f9:22:e7:f7:cd:b1:8e:85:a7:4f:c0:c0:
b7:e8:20:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:41 2024 by rpki-client on console-ams.rpki-client.org