Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/YiRSELLelfwoWcK4_FlJT6j7wcQ.roa
File: YiRSELLelfwoWcK4_FlJT6j7wcQ.roa (raw, json)
Hash identifier: o3d/Hbh5KFgOkvE4mX37zjkq/VPnyv/PG54Mr6Ae4wM=
Subject key identifier: 62:24:52:10:B2:DE:95:FC:28:59:C2:B8:FC:59:49:4F:A8:FB:C1:C4
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 018539BBEC990898CF456628BB7E14B68661
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/YiRSELLelfwoWcK4_FlJT6j7wcQ.roa
Signing time: Thu 22 Dec 2022 12:08:15 +0000
ROA not before: Thu 22 Dec 2022 12:08:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13045
IP address blocks: 195.8.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:bb:ec:99:08:98:cf:45:66:28:bb:7e:14:b6:86:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Dec 22 12:08:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62245210b2de95fc2859c2b8fc59494fa8fbc1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:86:9d:33:c5:49:6e:d8:13:47:b8:ea:08:c3:
6f:91:26:06:4c:10:e5:05:42:8a:0e:e5:03:5b:9c:
83:88:e5:0e:7c:0f:47:4a:fa:e3:37:51:47:c3:23:
d0:8c:74:ce:74:79:a5:ad:8d:4b:8a:52:b6:52:95:
8f:fc:12:c7:f8:dd:78:cb:9c:0c:22:da:88:0b:a8:
95:fe:02:12:f5:76:90:30:58:84:a5:34:d4:73:04:
85:3a:15:e3:cd:4a:26:c2:a0:92:06:ec:f3:3a:2f:
98:a0:04:b3:fc:e7:24:ad:58:d6:1a:a1:f2:8e:88:
54:5d:dd:8a:c4:9c:6a:27:12:de:88:fa:ec:f3:73:
7d:16:0a:ef:c4:a0:ab:b1:d9:af:81:3e:57:18:c2:
e1:0f:8c:23:2d:b2:fa:6e:77:67:12:0e:47:b7:f8:
12:36:0c:1b:48:a1:ca:a9:28:57:a6:ff:4a:5a:74:
ab:31:15:32:f7:cd:fb:24:2a:66:cb:40:2c:a7:b2:
fd:06:90:0d:30:a2:25:75:ff:6a:c7:ed:27:99:39:
df:6f:31:70:ff:c0:29:27:f8:48:47:0d:be:73:fe:
96:c3:59:4d:12:d5:cc:1b:0d:f1:fb:74:7c:cc:e8:
60:ec:19:e0:24:44:5e:ba:a2:52:c7:7a:31:88:1a:
cc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:24:52:10:B2:DE:95:FC:28:59:C2:B8:FC:59:49:4F:A8:FB:C1:C4
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/YiRSELLelfwoWcK4_FlJT6j7wcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:6b:58:9a:bc:b2:a0:4e:6e:c8:2c:14:bb:ef:d6:b6:d0:a8:
30:49:00:7c:47:89:4e:f5:e6:44:fc:a6:25:33:2c:18:1f:db:
63:9b:ef:36:e7:be:1a:c7:58:09:21:42:65:56:cf:46:02:09:
5e:c7:78:cf:6e:a3:b7:68:39:b9:b9:a4:36:46:7b:ec:04:4c:
76:bf:7d:ac:41:70:75:14:99:e7:e5:3d:b7:81:07:ea:96:61:
eb:99:00:4d:a0:e2:eb:9c:18:fe:4b:be:64:af:e5:63:0f:92:
40:cc:c5:5a:cd:b9:41:23:26:af:83:88:b8:cc:3c:e3:44:eb:
89:29:ef:06:eb:5c:6c:14:7a:46:2b:49:78:ee:29:07:2b:b1:
b3:d6:bd:65:23:1c:01:5b:b5:24:c1:c9:8f:07:0e:a8:47:29:
ff:80:63:a4:27:24:b9:22:64:f2:f9:e1:91:a5:e2:8a:fe:88:
fa:db:31:bd:d3:30:b5:15:f6:20:2d:a4:3c:71:e7:1e:78:12:
68:94:37:30:11:81:bf:8b:6d:fd:88:67:c8:5e:f6:e0:05:79:
69:ed:5b:42:9d:69:b1:f4:5b:36:6b:7d:36:3c:fb:2a:a5:10:
2a:a9:e6:17:68:4f:1a:1e:bb:a7:54:96:a0:9b:66:38:cd:30:
54:2e:3c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:16 2024 by rpki-client on console-fra.rpki-client.org