Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/619250-12e7-4ea1-939c-51766b9ca86f/1/yDTJZIi_4Qhlx3jZpGiel4YqkXM.roa
File: yDTJZIi_4Qhlx3jZpGiel4YqkXM.roa (raw, json)
Hash identifier: FpBZEAZWPlhpFeNvhu0SWMS6w5wFt+GL8Sa97GS8c38=
Subject key identifier: C8:34:C9:64:88:BF:E1:08:65:C7:78:D9:A4:68:9E:97:86:2A:91:73
Certificate issuer: /CN=8e3bf3d0b765f2ea42461d1237ce7eade43b68af
Certificate serial: 01856F14AECADBD8599BAE405D39A23CCD10
Authority key identifier: 8E:3B:F3:D0:B7:65:F2:EA:42:46:1D:12:37:CE:7E:AD:E4:3B:68:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjvz0Ldl8upCRh0SN85-reQ7aK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/619250-12e7-4ea1-939c-51766b9ca86f/1/yDTJZIi_4Qhlx3jZpGiel4YqkXM.roa
Signing time: Sun 01 Jan 2023 20:45:04 +0000
ROA not before: Sun 01 Jan 2023 20:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 185.212.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:ae:ca:db:d8:59:9b:ae:40:5d:39:a2:3c:cd:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3bf3d0b765f2ea42461d1237ce7eade43b68af
Validity
Not Before: Jan 1 20:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c834c96488bfe10865c778d9a4689e97862a9173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e8:ee:ce:70:63:86:ea:b6:d1:12:96:1b:0d:
55:4d:9e:15:38:2a:32:5a:72:fa:61:93:fb:17:5a:
19:0c:c1:3c:d4:52:31:12:82:c0:56:0d:fe:88:cb:
4b:4f:e3:5b:a7:8d:3c:cb:4c:1e:5a:fe:c1:eb:5f:
ef:03:61:f9:1d:cc:e6:67:77:af:42:ab:83:f8:d0:
ab:e0:87:5d:f0:29:0d:e2:5c:da:9a:ba:0e:a7:a2:
ef:30:83:2e:41:49:8a:80:b7:dd:e4:4a:95:7c:28:
83:7b:f0:7b:81:d8:ba:8d:bb:82:69:40:2a:3f:ce:
17:ce:9b:46:13:92:20:42:5e:80:3e:09:9a:e7:55:
f3:83:4d:1b:b6:00:be:f3:f1:9b:93:17:61:7b:9b:
8a:cb:ae:50:df:f1:ab:68:08:25:e0:31:91:7d:7a:
98:7a:96:a0:0b:e4:3f:3e:c8:ea:ed:4e:15:bf:2a:
74:6c:b1:06:a7:fd:a8:af:6b:c9:c0:4b:e2:86:b2:
90:99:8d:9c:8c:51:b8:81:9d:7a:ca:7a:8e:45:24:
98:b8:70:0e:68:8e:27:60:3d:1d:d9:f5:e4:91:9a:
d9:1c:9d:54:31:e8:e4:50:56:4d:ff:18:b2:e6:95:
68:3e:54:ce:ee:30:3c:ad:32:ba:e7:ac:91:3c:ac:
9c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:34:C9:64:88:BF:E1:08:65:C7:78:D9:A4:68:9E:97:86:2A:91:73
X509v3 Authority Key Identifier:
keyid:8E:3B:F3:D0:B7:65:F2:EA:42:46:1D:12:37:CE:7E:AD:E4:3B:68:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjvz0Ldl8upCRh0SN85-reQ7aK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/619250-12e7-4ea1-939c-51766b9ca86f/1/yDTJZIi_4Qhlx3jZpGiel4YqkXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/619250-12e7-4ea1-939c-51766b9ca86f/1/jjvz0Ldl8upCRh0SN85-reQ7aK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.34.0/24
Signature Algorithm: sha256WithRSAEncryption
94:82:c0:9c:7b:49:94:2c:0e:bf:2a:b6:cc:ac:79:2a:a5:02:
fa:ef:68:9d:53:cf:73:f1:ed:eb:02:b7:7d:1d:ea:ce:bf:d9:
be:b5:6f:5e:bf:a0:56:01:f4:1c:2f:56:3f:37:15:1d:5e:87:
59:a8:1e:2c:46:5b:1f:01:a3:8c:9c:62:14:ec:0c:9b:79:5b:
60:92:8a:17:36:f3:02:7d:6f:69:5e:67:d7:bb:60:c2:d6:22:
98:57:5b:a4:83:e9:4d:50:b7:9f:e0:0f:b9:f0:8f:73:7a:07:
8a:f1:f2:bf:fd:a4:ae:31:3f:50:61:2d:88:1d:ca:b6:8a:dc:
f2:98:2f:b2:c2:d9:0f:32:b3:27:c9:eb:12:a5:91:b4:83:a8:
1b:d9:1d:7b:10:7d:26:88:30:f3:91:85:77:04:b1:4b:d0:c1:
8c:fb:bd:64:6f:78:54:16:ea:d7:3f:b5:8b:4e:8d:d6:a8:e7:
4e:eb:ec:be:b6:47:a7:76:26:cf:06:cd:3f:81:67:f7:5b:e3:
d3:e1:8f:16:6b:a6:df:19:76:85:91:87:68:fd:50:8b:ea:47:
66:d3:41:d3:09:bd:fc:e9:8f:b5:8c:85:4a:c5:fd:e3:af:33:
98:01:01:5d:0e:f2:2b:9a:9c:f3:88:05:a0:e2:e4:98:6b:3a:
f0:9a:da:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:27 2025 by rpki-client