Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/yQOxmjVanxFNSeSqiygqNGYP46Q.roa
File: yQOxmjVanxFNSeSqiygqNGYP46Q.roa (raw, json)
Hash identifier: yasK6BREH0dcARQHodg5NmTyVX/NwtyP90S1VVqRZmI=
Subject key identifier: C9:03:B1:9A:35:5A:9F:11:4D:49:E4:AA:8B:28:2A:34:66:0F:E3:A4
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0AC564DB
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/yQOxmjVanxFNSeSqiygqNGYP46Q.roa
Signing time: Sat 01 Jan 2022 03:02:32 +0000
ROA not before: Sat 01 Jan 2022 03:02:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201064
IP address blocks: 185.87.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180708571 (0xac564db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 03:02:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c903b19a355a9f114d49e4aa8b282a34660fe3a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6a:f6:19:0e:ba:5c:ae:63:5d:be:b1:d8:2d:
32:1c:03:4e:57:fd:26:80:65:6b:4b:87:22:72:03:
72:ea:e4:92:6c:33:aa:30:d8:16:f6:3b:33:ee:8c:
ab:44:d8:c8:37:55:78:cd:d9:c9:7f:c3:1e:0d:35:
72:08:1e:76:b9:e4:8d:69:dd:4a:61:d3:dc:1c:07:
b9:08:91:33:09:87:89:49:bd:50:bd:bf:a3:57:b0:
41:d0:29:b1:d6:22:5f:33:4c:01:77:9f:06:ff:5e:
fd:29:ee:13:b3:a6:c0:78:61:87:37:be:ad:1c:6c:
90:54:cf:e1:a9:87:ac:dc:60:21:64:51:9b:98:7b:
3d:7c:1d:51:9b:41:c1:1f:ce:81:02:ab:a7:2e:c0:
ca:5c:c6:1a:d9:50:27:24:f9:01:90:8d:79:3c:9a:
af:00:2a:8a:0a:3f:38:fd:28:d3:57:9e:78:bb:a1:
31:f8:ea:ff:45:30:16:f9:13:3f:0b:a4:f7:50:cf:
e6:2d:36:4e:58:23:fb:19:60:ae:67:fd:a9:82:ef:
7d:36:b3:18:31:22:02:11:28:07:fe:2c:e5:bd:3c:
1f:e5:fe:68:b1:55:d7:39:22:73:9f:c3:eb:ff:16:
f5:ab:91:11:c6:e0:f9:8b:8c:83:2d:3e:45:e8:ca:
5e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:03:B1:9A:35:5A:9F:11:4D:49:E4:AA:8B:28:2A:34:66:0F:E3:A4
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/yQOxmjVanxFNSeSqiygqNGYP46Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.25.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:c5:12:66:90:c2:09:1f:d7:89:fe:83:71:61:5f:e9:8c:d1:
92:03:40:0f:09:bd:4f:be:a4:6c:78:51:8c:de:9e:e1:d6:67:
d9:1c:72:4f:29:ec:68:fb:72:be:0a:6e:10:35:43:89:29:3e:
2b:91:c3:06:b5:66:ac:b0:82:88:15:75:1b:3a:0c:37:43:b8:
ce:70:29:93:5a:34:ce:b4:99:a9:66:fb:99:7b:d0:40:95:44:
20:74:61:82:d1:64:96:44:8f:6b:bf:62:c1:a8:aa:bd:d5:10:
17:5c:d6:a3:d5:82:47:f5:09:d9:24:31:6c:d4:01:6e:8b:0e:
42:15:7c:10:89:2e:87:27:f1:3a:72:ed:72:f2:f7:b7:98:ba:
6e:d7:5f:49:9b:89:cd:f9:00:7e:3f:9a:38:1f:ab:9f:21:f1:
b6:ce:a4:5a:53:ef:8b:12:0d:81:5f:29:76:59:68:14:47:ab:
84:64:47:32:2d:ac:98:d0:dc:a0:00:a3:a7:1a:db:f5:94:73:
36:9c:0a:a0:d8:82:1f:89:cb:fd:6b:dd:52:72:d3:47:90:75:
d0:f1:58:f5:31:1f:b7:0c:1d:97:9b:42:72:9c:9f:7d:53:4f:
bc:0c:ba:3d:98:29:0c:78:d3:a5:c9:b2:07:39:72:8c:4a:22:
06:ed:02:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org