Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/YwTBaZpJwPS-QzIkqf5n5-B4kRE.roa
File: YwTBaZpJwPS-QzIkqf5n5-B4kRE.roa (raw, json)
Hash identifier: E6X3jbUAsmjZyrlaADTiESS4wT5FTie0xBRH5sXQZTI=
Subject key identifier: 63:04:C1:69:9A:49:C0:F4:BE:43:32:24:A9:FE:67:E7:E0:78:91:11
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 0182AB333B7DDAA7405B12BACFF4922AF943
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/YwTBaZpJwPS-QzIkqf5n5-B4kRE.roa
Signing time: Wed 17 Aug 2022 09:47:17 +0000
ROA not before: Wed 17 Aug 2022 09:47:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 93.120.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ab:33:3b:7d:da:a7:40:5b:12:ba:cf:f4:92:2a:f9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Aug 17 09:47:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6304c1699a49c0f4be433224a9fe67e7e0789111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:93:b5:d0:5a:02:ac:38:70:b1:1d:0f:8c:8a:
7b:02:d0:5e:d2:d3:7f:d8:0e:09:03:e5:c6:72:f8:
f0:c6:15:35:29:97:de:f3:14:75:50:32:b0:24:a2:
87:b8:de:5d:ad:36:7e:dd:93:a1:fc:0e:13:66:0a:
c8:5e:26:b1:94:3a:af:cb:eb:3b:1d:b5:4c:b3:3c:
9e:7d:83:17:07:18:72:c7:6f:b8:31:ae:df:42:63:
e8:04:04:bb:92:65:ea:7a:10:10:37:b9:3c:87:a8:
5d:5d:5c:4e:70:d9:67:b4:d0:e4:61:87:a1:a2:49:
58:6f:fb:86:55:3d:61:7d:a6:83:7e:22:4d:04:bf:
82:f6:2b:84:c9:79:8a:5f:67:36:37:2d:a6:83:9d:
15:f1:1b:ab:ce:8f:85:63:ea:da:9e:62:ed:d0:1d:
8c:eb:5e:e0:0e:19:47:69:28:2e:4e:19:7d:17:34:
16:a0:75:87:31:83:18:1d:64:fb:3e:ae:53:61:de:
e9:7c:07:01:b4:84:9d:62:6b:2b:a3:79:5e:5d:b6:
37:9e:91:8e:75:85:0d:df:a1:a0:4e:ab:e3:37:3b:
de:33:5b:55:6c:72:b0:b8:75:fb:53:ef:bd:37:2d:
b6:f2:f3:90:83:7d:20:1f:06:ed:96:dc:64:bb:fa:
98:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:04:C1:69:9A:49:C0:F4:BE:43:32:24:A9:FE:67:E7:E0:78:91:11
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/YwTBaZpJwPS-QzIkqf5n5-B4kRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.120.36.0/24
Signature Algorithm: sha256WithRSAEncryption
37:9d:15:e0:df:47:fa:af:3a:47:e0:f3:52:39:89:09:67:90:
7c:2a:f9:35:40:7f:03:24:07:86:c9:95:76:1b:d0:c2:1d:6d:
21:01:a8:a4:f5:1b:82:1d:11:65:5a:e1:ac:e4:bd:0f:0f:56:
db:a0:0b:03:34:ef:64:1f:1f:da:8f:88:c9:97:21:cd:e5:48:
83:e8:bd:bf:d4:a4:75:35:ec:b0:79:fc:23:8d:a1:1c:d6:a7:
de:ca:31:ac:2e:e0:42:a5:ae:46:9c:bc:98:9d:36:20:e9:8b:
7b:0a:8a:d3:9f:a5:91:a2:e0:36:9a:be:8d:95:71:94:d4:c9:
ca:6c:d1:6c:6d:5d:88:47:6e:3d:bc:cc:3b:22:65:9d:b6:ea:
26:aa:bc:64:9c:2d:5a:bf:04:25:91:6f:02:ae:4a:dc:b2:3f:
38:81:68:44:1b:d3:71:ae:83:99:1a:7e:0c:04:b4:84:26:f9:
90:d2:ed:aa:f2:4d:9a:1d:a0:8c:ac:f0:35:81:8f:de:fa:9c:
26:14:cf:51:73:54:35:68:c9:ce:16:f5:a2:eb:a6:aa:e9:06:
71:90:14:ff:da:1f:3a:1b:eb:fc:e1:cd:04:9d:2f:52:a0:43:
2e:44:5d:ad:63:b6:f1:92:27:63:30:f2:07:06:90:c3:a4:1d:
9a:ef:93:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org