Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/yLCFHulvI5kNKSF-0VvOLusEyHc.roa
File: yLCFHulvI5kNKSF-0VvOLusEyHc.roa (raw, json)
Hash identifier: 5+JPH+IFWpwSFR3wu6HxZLYRNa83gHDBDTcH96uDdbs=
Subject key identifier: C8:B0:85:1E:E9:6F:23:99:0D:29:21:7E:D1:5B:CE:2E:EB:04:C8:77
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 018462139B68AB492F0E286400833BAF716E
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/yLCFHulvI5kNKSF-0VvOLusEyHc.roa
Signing time: Thu 10 Nov 2022 15:06:02 +0000
ROA not before: Thu 10 Nov 2022 15:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 93.114.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:13:9b:68:ab:49:2f:0e:28:64:00:83:3b:af:71:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Nov 10 15:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8b0851ee96f23990d29217ed15bce2eeb04c877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:43:6e:c1:e1:db:aa:46:d8:fc:12:0e:ff:ad:
0a:5b:eb:80:76:5f:c4:d2:2d:cb:8e:d9:b8:2b:58:
ad:df:cd:ac:1a:34:a2:33:f3:55:d2:02:5e:8b:4c:
b1:4e:32:74:33:3e:db:7b:00:c4:05:db:07:f1:49:
2d:40:ce:02:17:4e:b7:21:34:b8:39:07:67:47:ff:
b2:5a:1a:a6:8d:3b:5a:8d:65:db:45:3a:ee:d3:a5:
7a:3f:6f:a5:3a:3d:aa:aa:7a:87:08:45:0a:46:03:
a2:ab:16:24:19:57:6d:45:b9:32:e2:1f:1f:f9:38:
72:a0:4a:f5:75:cf:ec:e5:a3:cf:17:ee:16:da:0f:
dc:68:de:87:60:34:22:50:95:74:b2:60:82:2c:31:
1f:81:ba:29:88:db:19:6f:6a:46:bf:9b:e8:b4:fc:
36:c0:0b:dd:fe:3b:d8:a1:2b:d8:5b:39:17:a9:2a:
f3:fe:2e:7d:a1:fd:61:c6:4c:7e:36:7a:98:ff:14:
b9:50:0a:81:a3:06:70:bc:6c:29:1c:1a:cc:aa:86:
51:e8:b3:25:5d:7e:e7:fa:9c:86:fd:b1:f8:2c:15:
a7:ce:10:e4:4a:28:70:42:b0:a6:38:45:7d:63:7c:
84:52:59:aa:7a:97:4d:f0:19:66:69:0d:7e:6e:34:
cd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B0:85:1E:E9:6F:23:99:0D:29:21:7E:D1:5B:CE:2E:EB:04:C8:77
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/yLCFHulvI5kNKSF-0VvOLusEyHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.63.0/24
Signature Algorithm: sha256WithRSAEncryption
98:31:e4:d1:ac:da:48:a1:17:a0:28:bd:1a:54:5e:ab:14:90:
04:de:0c:cc:f6:ed:9c:30:db:cb:7f:12:2f:d2:50:e5:9e:a5:
c0:5f:b9:41:65:d8:b9:53:f8:78:07:fc:f1:58:5f:ea:b2:f3:
18:a4:dd:43:8b:c7:1c:ee:58:f2:12:71:1b:47:b9:87:2d:39:
43:59:8a:57:d8:05:cf:26:bb:eb:3a:c3:7c:f3:a4:b7:ec:0f:
98:2e:ab:65:38:84:e7:c3:00:ae:62:c0:f9:dc:6f:23:16:46:
f9:f2:1a:a1:ee:ee:5e:89:36:04:ef:7d:a3:a5:0b:21:04:7b:
60:7e:13:2d:62:b2:95:b7:cc:3a:8c:40:0b:67:24:1b:a8:9f:
c1:1e:24:ea:e0:d0:ba:97:d6:c7:a8:90:a9:b5:26:c5:54:46:
04:17:5e:24:1a:4a:d3:83:92:0b:67:cd:68:d5:c2:8f:c5:7a:
88:a6:fc:2d:d5:c1:83:15:f3:76:9c:77:50:6c:e9:92:23:55:
66:e5:b6:75:b8:3a:04:6b:eb:46:7a:61:98:f9:d4:db:93:3f:
fc:07:65:b0:af:93:fe:1b:7c:53:ed:c8:af:a5:1f:eb:89:48:
2f:55:f9:9c:03:fa:59:23:62:f6:22:fa:8a:ce:46:41:fc:40:
c4:fe:2a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org