Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/YkObs2FbtlYHA781sy6P1UwuRpQ.roa
File: YkObs2FbtlYHA781sy6P1UwuRpQ.roa (raw, json)
Hash identifier: T8L8KoZUfdKulGWkujLg1Tx0mSoWsJQtGp13zsbDJhA=
Subject key identifier: 62:43:9B:B3:61:5B:B6:56:07:03:BF:35:B3:2E:8F:D5:4C:2E:46:94
Certificate issuer: /CN=09253886a0250a04ec69be00bbf8433c2f014b7c
Certificate serial: 099E2C9D
Authority key identifier: 09:25:38:86:A0:25:0A:04:EC:69:BE:00:BB:F8:43:3C:2F:01:4B:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CSU4hqAlCgTsab4Au_hDPC8BS3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/YkObs2FbtlYHA781sy6P1UwuRpQ.roa
Signing time: Sat 01 Jan 2022 16:05:24 +0000
ROA not before: Sat 01 Jan 2022 16:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203576
IP address blocks: 194.110.169.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161361053 (0x99e2c9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09253886a0250a04ec69be00bbf8433c2f014b7c
Validity
Not Before: Jan 1 16:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62439bb3615bb6560703bf35b32e8fd54c2e4694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3a:f8:4c:a9:32:92:78:d9:e0:52:eb:0e:57:
56:12:f8:22:f8:d4:0e:45:d4:23:0b:2d:1f:4a:71:
95:12:7b:82:47:db:05:54:cd:01:af:3c:d7:fb:71:
96:26:5f:26:77:96:17:fa:ae:1e:80:4d:80:44:52:
36:a9:7b:4f:f2:ac:ea:09:68:40:fa:74:bb:9a:ce:
28:53:da:f8:cc:b3:8b:f8:91:3b:cf:96:fb:3e:d8:
a8:e4:10:af:ea:6f:4a:27:3b:fb:81:87:fb:13:b1:
0b:9b:ee:8c:bf:93:c4:ab:45:69:6e:eb:8d:c3:1f:
66:78:5b:83:e5:a4:c7:81:0f:04:e0:a8:ff:fd:55:
56:48:31:bb:3d:10:b5:44:5f:df:5a:6e:30:df:df:
af:df:79:35:52:9a:b4:10:f8:fb:4a:44:8a:df:67:
c6:9a:bf:78:00:96:a5:eb:e9:86:01:1c:62:9a:71:
92:e0:ab:cc:48:ab:c2:cb:52:0e:8c:6a:25:b3:2a:
60:61:e7:cd:e0:07:a5:40:6a:58:26:7a:a2:c1:05:
fb:a8:f1:8a:2a:07:4b:88:4b:93:a6:fb:c4:36:53:
01:4e:f2:8d:ee:ab:69:08:c5:21:d5:95:1e:af:e6:
ff:c7:28:dc:c5:63:8f:c9:a6:eb:0f:48:c4:88:50:
56:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:43:9B:B3:61:5B:B6:56:07:03:BF:35:B3:2E:8F:D5:4C:2E:46:94
X509v3 Authority Key Identifier:
keyid:09:25:38:86:A0:25:0A:04:EC:69:BE:00:BB:F8:43:3C:2F:01:4B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CSU4hqAlCgTsab4Au_hDPC8BS3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/YkObs2FbtlYHA781sy6P1UwuRpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/36f83e-6be6-42c5-8380-114ad41cf331/1/CSU4hqAlCgTsab4Au_hDPC8BS3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.169.0/24
Signature Algorithm: sha256WithRSAEncryption
62:8f:a3:62:81:5b:0c:a5:2f:d6:12:f6:8a:fd:7a:b9:e5:d6:
2e:b5:2c:1f:43:9c:81:59:2c:b8:bb:e9:cd:01:f3:0f:32:3b:
d7:65:83:58:75:17:76:6f:1a:98:f1:b6:35:ff:ed:af:15:b8:
6f:31:56:d6:47:4b:6f:b6:7e:30:b2:d6:75:a5:b3:27:b5:d6:
ea:92:1c:3b:16:2c:f5:cd:a6:01:c9:0b:d5:34:48:23:77:45:
96:81:54:c9:7c:31:a2:bd:fa:b9:5e:d5:14:5f:d6:90:e5:3f:
4b:a9:18:cc:b9:c4:70:06:b5:8f:10:bf:fd:a3:3f:b6:28:75:
c0:1a:5c:ea:b4:33:02:c3:52:2c:ac:0e:be:7c:6b:96:dc:ce:
6f:c9:16:90:e5:ca:03:da:a8:47:34:76:a5:09:48:4b:0d:fc:
90:f8:73:ad:ad:63:72:d1:7b:e1:84:3a:cf:f6:33:7e:91:ed:
6b:1f:50:fc:5d:72:5d:08:e2:72:fa:1f:bb:d3:83:e3:12:9c:
c8:63:4b:e2:1e:89:1c:60:04:73:e2:a1:cf:ee:d1:4d:05:69:
38:51:a3:85:11:d4:48:e0:2c:80:3f:2a:0a:fd:5c:09:a9:e8:
66:ea:63:00:e6:40:7e:c1:32:87:a1:9a:28:68:5a:c2:a9:77:
b6:9f:0f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-fra.rpki-client.org