Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/YysJf9_9hhNhcXQnfw7JE9bzwOg.roa
File: YysJf9_9hhNhcXQnfw7JE9bzwOg.roa (raw, json)
Hash identifier: 2ojWDOdTVcXu8Re0ERx7DZcXlJ0ZWMUeghr5hwjWffI=
Subject key identifier: 63:2B:09:7F:DF:FD:86:13:61:71:74:27:7F:0E:C9:13:D6:F3:C0:E8
Certificate issuer: /CN=951c8b406e8299a7294dd7224570fc32b629dc6b
Certificate serial: 073D2236
Authority key identifier: 95:1C:8B:40:6E:82:99:A7:29:4D:D7:22:45:70:FC:32:B6:29:DC:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRyLQG6CmacpTdciRXD8MrYp3Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/YysJf9_9hhNhcXQnfw7JE9bzwOg.roa
Signing time: Sat 01 Jan 2022 03:57:19 +0000
ROA not before: Sat 01 Jan 2022 03:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29802
IP address blocks: 193.56.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121446966 (0x73d2236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951c8b406e8299a7294dd7224570fc32b629dc6b
Validity
Not Before: Jan 1 03:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=632b097fdffd8613617174277f0ec913d6f3c0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ab:ed:3a:fe:7b:cf:da:91:a9:09:90:a6:7c:
28:c8:65:a9:03:8d:bf:fa:5f:44:fa:b4:52:7d:d5:
52:45:11:ed:63:9e:f9:00:5f:31:76:cb:a2:f6:1e:
27:58:64:f6:77:96:70:19:56:42:93:79:ec:da:89:
e1:25:4c:a4:36:e1:53:23:c0:8e:fc:51:f0:e6:db:
fb:99:58:b3:3b:12:22:44:c5:52:ad:24:91:88:6f:
4e:65:cb:03:36:c4:2d:2f:5b:20:f7:e9:af:05:cd:
8a:f1:69:7d:95:fe:da:00:fd:cc:38:ec:45:ba:4b:
0c:8a:99:ff:07:e5:b1:9f:67:d7:cb:aa:f3:52:8a:
3c:87:ac:79:27:c7:7f:37:55:f8:6a:28:9b:f0:19:
16:55:19:fe:51:03:2f:9c:3e:9d:c1:5a:1b:ba:a1:
a4:4d:a7:49:23:45:4d:ad:04:d2:97:41:1a:4b:13:
dc:f7:4a:30:2c:97:7f:b3:23:98:d2:61:49:59:38:
34:99:29:c1:b8:86:9a:50:63:45:10:4a:e2:82:e3:
e4:2e:51:43:d6:53:2a:de:3b:0e:c6:fd:df:7e:fb:
2d:08:5e:4f:74:ef:25:09:c6:ae:2c:95:9d:3d:7b:
4c:27:ec:8c:28:df:2c:51:ea:00:5d:a8:61:0b:67:
f1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:2B:09:7F:DF:FD:86:13:61:71:74:27:7F:0E:C9:13:D6:F3:C0:E8
X509v3 Authority Key Identifier:
keyid:95:1C:8B:40:6E:82:99:A7:29:4D:D7:22:45:70:FC:32:B6:29:DC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRyLQG6CmacpTdciRXD8MrYp3Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/YysJf9_9hhNhcXQnfw7JE9bzwOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d226bb-7210-4c92-9312-33b36224d6d7/1/lRyLQG6CmacpTdciRXD8MrYp3Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.117.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:f7:0a:aa:1f:d4:bf:45:63:6a:d6:19:cf:40:c2:96:1f:6e:
6a:1b:0a:5f:89:12:d7:9d:71:fc:ab:d5:79:ff:af:1d:92:54:
70:ee:c3:fb:96:7f:0e:18:ad:c4:f2:8c:66:2a:53:e8:66:0b:
8f:16:86:e2:be:3c:64:e9:ee:f1:4b:4f:c9:d3:81:41:f3:84:
15:f1:a7:83:e2:90:50:91:47:4a:fe:ab:61:f1:82:4f:77:1b:
b7:57:a1:d5:0f:11:94:4a:28:c9:be:6a:58:e0:75:d7:bd:fa:
ee:61:c4:b6:00:ef:40:55:30:44:5d:b5:98:41:fa:a9:6a:41:
90:19:82:9d:4b:cb:68:ad:f8:50:36:7c:14:39:7c:e5:73:41:
bd:6e:a8:af:e2:51:5d:18:20:52:71:74:88:b3:7e:19:7e:e9:
d9:f1:60:74:05:a9:98:64:95:98:57:4b:7c:8b:99:14:c6:34:
59:d9:03:9a:b4:e5:b6:47:67:c4:44:59:12:73:be:14:13:a9:
ba:cc:4e:d8:6d:91:37:8b:ef:43:21:fe:4f:1b:fc:c9:75:b4:
83:55:f3:1f:48:9a:d1:32:0b:c2:7a:cb:9d:e0:93:25:2b:65:
14:83:bf:6f:9c:71:41:5e:07:d8:fd:c9:4c:fc:ac:24:76:fd:
94:2f:7b:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:55 2023 by rpki-client on console-ams.rpki-client.org