Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/yob64o9F-PEVaJQwD4fuSobiGGw.roa
File: yob64o9F-PEVaJQwD4fuSobiGGw.roa (raw, json)
Hash identifier: WMg6yac94LEddLXbt7I9cbOX3SMUUcRaO5f+I6iRAS4=
Subject key identifier: CA:86:FA:E2:8F:45:F8:F1:15:68:94:30:0F:87:EE:4A:86:E2:18:6C
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B1AFFE3
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/yob64o9F-PEVaJQwD4fuSobiGGw.roa
Signing time: Sat 01 Jan 2022 13:58:13 +0000
ROA not before: Sat 01 Jan 2022 13:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207838
IP address blocks: 188.114.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723189731 (0x2b1affe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca86fae28f45f8f1156894300f87ee4a86e2186c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:de:13:42:55:09:1c:92:1b:2d:49:6c:35:3c:
24:34:e2:59:81:82:0f:ce:74:04:23:fb:f2:e2:58:
2f:0a:a6:51:dc:a1:68:1a:56:fc:48:57:71:7b:b3:
39:46:74:81:32:97:72:15:57:03:17:16:84:86:a4:
02:d8:37:ff:5d:ec:3b:0b:94:01:62:4c:69:c5:35:
8f:45:45:04:67:60:9a:6a:72:cf:26:db:87:3a:6d:
7b:0c:dc:8c:d9:80:71:00:4d:70:77:f1:61:78:09:
c6:1a:1b:18:8b:cc:f5:c4:8f:5c:2a:75:79:f8:f3:
cf:95:4e:e4:80:ef:69:ab:4b:1f:fb:25:30:07:2e:
55:40:08:61:de:88:12:ee:ec:ee:26:39:62:55:3b:
4e:0d:20:0a:d5:21:9a:e0:62:4d:06:9e:af:97:81:
79:e8:f2:41:cc:ab:86:4a:57:56:06:b8:ff:6f:85:
19:b3:b4:4d:b4:88:ca:4a:7d:6c:31:c6:b9:2f:1e:
e7:dd:60:62:92:ba:34:38:e7:bc:4f:f8:87:d7:ba:
a8:6d:d3:67:39:a6:a0:8b:fa:dd:44:4d:94:75:f9:
cd:89:cc:e3:29:65:5c:9d:a8:16:d4:ff:61:09:11:
3b:ca:45:df:a2:8d:46:54:f3:a1:6f:37:3e:a6:cc:
a8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:86:FA:E2:8F:45:F8:F1:15:68:94:30:0F:87:EE:4A:86:E2:18:6C
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/yob64o9F-PEVaJQwD4fuSobiGGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.91.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:e0:5f:d2:73:96:2b:2e:6c:b7:be:83:10:45:26:fb:f9:da:
e8:aa:c2:35:59:c7:81:b6:ee:5b:aa:b6:7c:21:bc:18:90:a7:
01:a7:63:05:8e:bd:bf:68:e5:67:64:c2:10:b8:c8:21:d4:bf:
f6:3b:8c:b7:4e:4e:01:cc:8b:30:1e:63:62:f2:3d:59:67:dd:
7c:2d:c1:cc:84:91:f6:19:44:f5:b9:6c:03:a3:1a:88:60:99:
ec:29:6d:c9:ae:ca:91:89:8e:ba:ed:36:18:f3:7c:89:74:7b:
eb:0a:ca:c3:80:0c:b9:71:50:62:7d:94:a8:26:9d:bc:29:d3:
51:30:dc:00:9a:84:7b:65:7a:e7:56:c3:3d:4e:3e:64:02:1e:
6d:c5:93:bf:62:2e:90:90:3a:ea:2e:25:24:c0:c0:84:1f:11:
38:ef:75:a7:38:55:77:9c:a5:93:fa:6d:9d:44:c7:46:1d:96:
25:6c:90:4f:43:33:dc:9d:0d:d3:28:80:58:4b:f1:4d:13:88:
4f:fc:d2:e0:32:6c:93:2e:5f:fd:af:94:26:fc:18:ab:ac:ad:
c7:d5:3c:3c:79:dc:6a:5c:57:9a:7b:97:72:bf:07:83:26:ec:
01:d1:90:d2:dd:84:f8:1f:e8:20:5c:c9:e0:63:5f:6d:2c:f3:
14:c8:1a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org