Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/Ylz9mZfy6wPSK0pThLzRBWLdOVI.roa
File: Ylz9mZfy6wPSK0pThLzRBWLdOVI.roa (raw, json)
Hash identifier: kd3Bg0Yi9tRMwrIuhQA3JoP08y/M1U73eIQ0gAIaidg=
Subject key identifier: 62:5C:FD:99:97:F2:EB:03:D2:2B:4A:53:84:BC:D1:05:62:DD:39:52
Certificate issuer: /CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Certificate serial: 0183F602F5554C4D203665301E8AA8DE4D6C
Authority key identifier: 65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/Ylz9mZfy6wPSK0pThLzRBWLdOVI.roa
Signing time: Thu 20 Oct 2022 15:28:52 +0000
ROA not before: Thu 20 Oct 2022 15:28:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209525
IP address blocks: 194.147.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f6:02:f5:55:4c:4d:20:36:65:30:1e:8a:a8:de:4d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Validity
Not Before: Oct 20 15:28:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=625cfd9997f2eb03d22b4a5384bcd10562dd3952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1a:b9:4a:fe:8f:c7:40:66:e4:50:df:80:46:
fa:ba:37:01:05:07:63:38:92:7c:08:23:8b:f8:e5:
19:61:23:db:29:fd:52:cd:43:c3:bc:c3:44:e5:d1:
bd:4c:8c:a6:c2:cb:80:61:90:36:b2:04:47:32:8b:
fa:e5:e3:d2:d1:77:90:81:6d:08:8a:15:c7:d9:5a:
73:94:bb:e6:3c:8c:b6:27:47:10:94:9a:de:74:30:
03:d4:bb:b3:df:62:e0:67:5e:b8:fe:bf:90:e3:11:
9d:74:a5:34:7e:fe:0f:6f:e5:9e:a9:b4:1b:eb:c2:
51:b8:30:96:38:bb:f0:4b:07:23:28:f4:c7:d1:a1:
4b:42:dd:6a:64:3c:42:4d:d3:4e:21:2a:cd:29:50:
ee:b8:97:7b:85:a9:69:0a:49:57:75:5c:c1:79:cb:
f2:9a:20:fc:e7:84:85:02:ae:1d:21:12:02:30:f9:
d5:e4:3d:2a:7e:00:51:44:34:11:f0:5e:fe:e5:74:
f8:72:de:29:6c:cc:f6:56:f6:2d:49:e2:c2:fb:cf:
ee:0c:c3:3b:40:24:03:9c:fd:f4:f2:1f:7b:18:95:
dd:a5:35:3c:73:b6:44:da:f2:7a:50:ae:8e:51:16:
ab:41:27:80:b3:79:2a:48:e3:f0:6f:d9:07:9f:d4:
e2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:5C:FD:99:97:F2:EB:03:D2:2B:4A:53:84:BC:D1:05:62:DD:39:52
X509v3 Authority Key Identifier:
keyid:65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/Ylz9mZfy6wPSK0pThLzRBWLdOVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:88:7b:2f:e9:7c:ee:fa:d3:63:ea:d6:a0:18:8c:4e:48:f8:
8b:37:c9:d7:00:8d:f6:c0:4a:7f:b8:92:19:9c:a0:32:c7:2d:
d5:3b:f2:e6:de:34:ce:a8:fb:e3:fa:df:44:e5:5a:af:1d:52:
3d:e7:28:11:8a:8b:9a:7e:ca:85:bb:c9:b2:26:e2:7c:f9:35:
00:74:6b:77:2d:4c:22:9b:20:71:41:24:ef:81:02:a4:dc:85:
84:67:d2:07:6c:be:b9:34:ae:8f:02:b6:9c:19:88:04:85:3c:
11:ba:07:f8:2a:95:c2:65:5e:d7:f7:45:34:04:9b:24:7e:ee:
ea:d3:c5:41:eb:87:c3:24:52:ab:b4:15:ac:d4:1c:49:0e:d9:
db:76:4d:c5:bf:c2:6a:a8:c0:de:4f:7a:a2:58:e6:a5:f0:b0:
a2:a8:53:60:d0:42:3c:80:07:ca:04:90:fa:97:00:c2:f4:32:
32:b5:1d:4f:36:89:c8:86:23:19:38:bb:3a:56:75:a1:7e:c4:
21:fe:dd:99:03:ac:20:b3:2f:3c:fa:87:4b:cd:16:6d:3d:b6:
6c:e3:60:66:1b:30:6b:81:64:f3:5f:7c:15:20:84:0d:81:bb:
da:71:25:89:47:b1:2c:66:3c:8f:17:d0:62:90:6c:e7:8f:64:
c9:33:33:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:27 2024 by rpki-client on console-ams.rpki-client.org