Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/Y9bXYh56bwCHXkHPsRpxrcaqYvg.roa
File: Y9bXYh56bwCHXkHPsRpxrcaqYvg.roa (raw, json)
Hash identifier: IikfCLLrgkbaPX2z7ka82CsrT6EZDrFSpUXUKxKT7aQ=
Subject key identifier: 63:D6:D7:62:1E:7A:6F:00:87:5E:41:CF:B1:1A:71:AD:C6:AA:62:F8
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 01856C352A85CAECE8A540A7F6D9DD4DF6FF
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/Y9bXYh56bwCHXkHPsRpxrcaqYvg.roa
Signing time: Sun 01 Jan 2023 07:21:41 +0000
ROA not before: Sun 01 Jan 2023 07:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 141.226.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:35:2a:85:ca:ec:e8:a5:40:a7:f6:d9:dd:4d:f6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Jan 1 07:21:41 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63d6d7621e7a6f00875e41cfb11a71adc6aa62f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fa:ca:48:6d:82:23:66:32:bb:a9:7f:30:e9:
5a:b0:24:dd:48:5c:76:f1:1d:b9:a3:cc:35:5a:72:
e8:87:e1:66:d8:24:7b:13:0a:2b:2e:83:c4:e5:9b:
fc:70:6e:f6:e4:a6:d8:98:a4:96:24:4e:82:8a:b0:
c6:60:d3:4a:64:ce:35:2d:66:bf:1e:10:79:e6:f4:
9d:4e:d8:33:e9:bc:47:29:ad:9d:57:d9:90:42:ae:
99:b1:c9:63:e6:17:c9:08:b1:c9:24:69:dc:62:a6:
03:cd:c0:5f:0a:0d:0c:bc:fd:0f:25:e9:72:c6:4d:
5d:75:dc:29:94:e2:92:24:a9:15:1b:1f:2e:79:8c:
1f:36:43:83:83:85:f0:88:c9:b6:5a:de:7f:74:17:
85:6b:f7:c6:38:03:2c:6b:8a:43:3d:dd:42:5b:23:
b9:47:ab:b7:e7:d4:b6:98:23:c1:b5:5a:f2:20:ea:
96:43:00:05:5a:b1:3b:9f:c0:37:d3:3b:73:63:dc:
8f:00:66:2d:0c:64:8d:01:61:e0:d6:50:2c:4b:df:
69:97:31:41:ea:1a:41:92:a8:9a:87:19:c3:45:a3:
3b:f5:a1:44:0c:20:ef:10:a8:24:26:65:c2:02:41:
30:d5:d2:b2:99:31:08:85:bd:61:b2:2d:53:c6:82:
58:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D6:D7:62:1E:7A:6F:00:87:5E:41:CF:B1:1A:71:AD:C6:AA:62:F8
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/Y9bXYh56bwCHXkHPsRpxrcaqYvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.241.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:69:9e:98:1d:11:f3:6a:05:a3:48:71:51:bf:34:53:9f:17:
09:0d:0e:a1:90:64:d1:56:09:b4:a4:bb:82:68:16:df:be:9d:
22:66:04:4c:c9:ed:f4:c5:52:01:87:3f:f9:22:16:d7:72:ca:
fe:89:e2:98:a5:75:03:84:d0:f9:64:f3:8a:5d:dc:2d:69:d0:
f9:fc:98:1f:32:79:09:6e:70:fb:21:f7:5b:0f:af:40:57:90:
b4:9f:f9:13:82:4e:b1:c9:5f:d6:4b:85:2e:5c:c5:c1:8e:95:
4b:cb:2f:39:a3:df:ed:36:99:e8:50:15:f2:53:fc:5f:bd:42:
bf:04:c4:85:75:04:5c:eb:25:53:00:62:c3:f7:5c:3d:59:8c:
38:d5:0d:c5:f8:34:cf:b5:7f:63:b1:85:f0:17:c1:3c:af:d4:
0c:36:d7:34:c1:dd:f3:ec:d5:08:01:a0:74:71:e0:8c:df:b2:
6b:fb:04:66:bb:b8:fb:2c:a4:12:7c:e0:aa:94:70:e0:02:19:
78:41:b9:ac:78:48:f8:38:ee:ac:89:e4:06:05:07:7e:15:81:
e6:6d:e3:6f:f0:5e:36:24:d8:cf:1d:7f:81:7a:62:87:78:32:
a8:fa:dc:20:c6:ab:1a:1b:ec:2e:27:9b:46:26:73:6e:0b:f3:
4f:55:c6:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org