Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/RiYAII8jHDKvALYgo9BkW55qx8A.roa
File: RiYAII8jHDKvALYgo9BkW55qx8A.roa (raw, json)
Hash identifier: 686V2UM1CIh2Xq2tnMdL1PPQNQ6czLcIm/KtT+N7HHY=
Subject key identifier: 46:26:00:20:8F:23:1C:32:AF:00:B6:20:A3:D0:64:5B:9E:6A:C7:C0
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0184317EE272363BEBF9E041A83F5682FC58
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/RiYAII8jHDKvALYgo9BkW55qx8A.roa
Signing time: Tue 01 Nov 2022 04:41:49 +0000
ROA not before: Tue 01 Nov 2022 04:41:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 188.191.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:31:7e:e2:72:36:3b:eb:f9:e0:41:a8:3f:56:82:fc:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Nov 1 04:41:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=462600208f231c32af00b620a3d0645b9e6ac7c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ab:87:d0:61:7c:16:4a:ff:8f:ef:93:9d:05:
3e:07:fd:ed:dd:96:32:67:17:bc:f1:1f:5e:cd:26:
7b:d7:87:25:38:fb:87:f9:5e:02:36:97:cf:8a:44:
ef:3c:8b:84:a5:e1:28:36:24:f5:14:fa:b7:6b:ed:
79:74:fb:ea:64:bd:7f:98:77:68:01:99:71:d4:ad:
f1:36:b1:86:b8:54:32:18:74:ad:aa:35:2a:cf:44:
98:78:72:d8:68:0c:74:ed:65:21:5e:8f:07:67:22:
fb:be:34:3e:2f:a8:50:a9:01:4b:2c:55:9e:c6:f9:
a1:d1:ed:de:a8:eb:0b:99:bd:fe:d3:24:99:f5:c2:
2c:00:37:c6:31:d4:33:73:b8:f3:4f:27:ad:93:32:
60:df:5a:0a:51:97:18:8f:7f:a6:37:ed:cf:0a:76:
aa:28:5d:bf:bb:50:ad:9a:98:5a:3a:1c:8a:42:d8:
96:3b:b1:61:d6:60:45:7e:c6:74:f0:db:55:dc:53:
7a:55:b1:7e:06:a3:0c:ce:8b:b7:8d:64:43:d9:ac:
76:79:1e:a2:a7:20:d3:b4:ca:82:48:ca:d3:ca:9b:
74:6f:7e:48:28:9c:7b:0b:92:93:bc:4c:4c:0b:52:
d4:96:65:13:73:cc:e1:ef:3b:21:66:e0:a7:b5:04:
df:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:26:00:20:8F:23:1C:32:AF:00:B6:20:A3:D0:64:5B:9E:6A:C7:C0
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/RiYAII8jHDKvALYgo9BkW55qx8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.97.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:48:fd:23:86:0a:b1:82:e4:a5:35:c5:95:c6:3c:3d:2e:20:
97:47:e9:90:3e:1e:d7:5d:49:37:5d:7a:40:65:29:4f:8c:5d:
f3:64:4d:1c:09:9a:6d:0b:49:d1:72:b3:de:72:ea:6b:84:60:
6f:49:e9:55:06:02:de:90:b1:f8:35:09:08:5e:f8:63:51:22:
4d:cf:fe:f1:7b:30:fc:6c:df:e0:ba:7a:18:3e:27:16:9f:57:
7f:48:3a:40:c7:18:89:a3:c7:03:25:df:01:ec:a7:78:4b:e4:
ad:72:d1:cd:1d:a4:e2:ea:3f:57:10:ea:6f:5e:2d:46:ee:ec:
6c:ac:94:77:65:df:a5:b3:7b:d3:86:06:a5:8a:5b:68:d3:2e:
4a:17:f3:ea:c5:8a:f8:c6:03:fc:d3:87:23:33:1d:0c:06:f5:
da:c8:b4:d9:6b:86:8f:76:04:7c:48:be:36:4b:93:fc:ce:51:
f2:91:f1:a2:a5:16:79:5e:a6:33:a7:30:a1:87:9e:0f:22:46:
e8:22:0b:3a:8b:41:ce:67:7a:f4:f3:fc:cf:fc:32:f6:a5:42:
4d:20:2d:e3:26:7a:b8:f8:e5:a2:da:fc:5f:95:e3:e5:f9:4b:
0e:a8:2f:6b:87:0a:98:1e:57:dd:16:63:96:b9:28:76:bc:a3:
d4:f0:6e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:58 2023 by rpki-client on console-fra.rpki-client.org