Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/YQq1Q8e_PwlV0WhpoEBa82K6VcQ.roa
File: YQq1Q8e_PwlV0WhpoEBa82K6VcQ.roa (raw, json)
Hash identifier: BIh2HaSVbMetweJTxXj57Uu6BDzUYPJ6CnPcuzuGhNM=
Subject key identifier: 61:0A:B5:43:C7:BF:3F:09:55:D1:68:69:A0:40:5A:F3:62:BA:55:C4
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 018337DF13A7DC3EFC326FEBB24B0DA04954
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/YQq1Q8e_PwlV0WhpoEBa82K6VcQ.roa
Signing time: Tue 13 Sep 2022 17:21:49 +0000
ROA not before: Tue 13 Sep 2022 17:21:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 213.238.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:df:13:a7:dc:3e:fc:32:6f:eb:b2:4b:0d:a0:49:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Sep 13 17:21:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=610ab543c7bf3f0955d16869a0405af362ba55c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4e:fd:d8:f2:5a:bf:79:8e:aa:31:0a:65:d8:
6a:1f:f3:a6:2c:45:d0:94:be:4b:cc:1f:1d:a7:a5:
84:bb:a3:f6:8d:e8:0b:8d:21:31:9c:1f:ff:03:1e:
3d:58:05:53:dd:31:cb:a2:14:42:0e:1e:ab:1e:53:
e4:8e:9f:6c:2a:37:04:97:2f:6e:3a:c2:9d:f8:f7:
bb:f9:f9:e9:51:86:35:d7:0a:a1:07:0d:65:99:66:
9a:1e:61:ee:0a:5a:6a:a1:48:96:7c:52:bd:7a:4c:
22:26:be:8a:d7:b6:d0:64:e2:40:87:26:af:f4:d1:
a2:d9:d2:bb:a7:2a:cb:43:74:27:3e:5a:62:9f:79:
e2:3f:98:a7:1b:f4:1c:a9:c3:1f:3a:5e:a4:bb:c8:
6a:39:2e:87:f8:3c:26:1e:30:01:e2:72:14:55:94:
7f:54:1d:68:25:26:55:8c:e0:af:ab:81:0b:08:85:
70:5f:d1:10:82:d6:98:39:7c:f7:cb:61:7d:eb:02:
b3:c0:24:b0:d5:4e:49:03:46:c2:f5:5a:50:5f:b0:
b0:60:2f:16:05:53:8f:59:77:1a:49:d5:80:84:25:
a8:bf:39:24:26:9c:05:75:32:19:99:fa:b3:2c:c0:
2e:27:93:fd:ea:4f:c9:59:9b:0c:94:5f:ce:82:4a:
25:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:0A:B5:43:C7:BF:3F:09:55:D1:68:69:A0:40:5A:F3:62:BA:55:C4
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/YQq1Q8e_PwlV0WhpoEBa82K6VcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.170.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:fb:cd:27:2e:a6:46:de:5e:c6:69:fa:2d:ec:15:f5:4a:3b:
16:31:10:1f:c3:1b:34:1c:d1:84:8b:46:12:0c:3e:bb:64:3e:
59:0c:cb:48:93:82:b6:7c:66:e9:03:8a:19:73:83:55:11:8f:
34:14:87:f0:02:f8:59:d2:ad:81:ce:b2:fd:0a:53:dc:15:fe:
29:a4:f8:72:f2:ed:88:89:db:a8:27:1d:02:6f:b5:67:58:f1:
86:ce:b7:ff:a1:71:4d:66:fe:0a:50:78:59:22:6a:6c:2a:77:
77:d8:7e:38:94:d8:24:b4:69:d5:90:5b:05:77:e4:22:70:e9:
c0:3a:72:6c:74:8c:bb:44:16:12:f9:7b:80:5c:75:62:f0:9d:
89:c7:4e:c4:94:07:15:b4:5e:c3:45:1d:3d:b4:9c:30:9c:3b:
b5:33:6a:f2:ff:f3:c8:1b:32:96:fe:ec:c5:bd:c6:f5:28:da:
4f:ff:c3:28:52:a7:42:7c:f2:9f:bb:81:b3:08:f5:1a:38:25:
27:39:96:be:fb:d9:58:4f:47:ac:55:fa:58:0d:03:80:a6:ba:
ec:68:b9:ae:21:8f:09:18:81:43:10:77:1c:64:09:d9:12:ff:
f5:0b:e0:55:99:1b:cb:d6:9a:0f:8c:b4:ab:37:d0:ff:9c:cc:
06:74:a7:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:53 2023 by rpki-client on console-ams.rpki-client.org