Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/yn7eWZD85gAi_vSDUcW4ElAidCk.roa
File: yn7eWZD85gAi_vSDUcW4ElAidCk.roa (raw, json)
Hash identifier: WgX0rypUFo89XT9WFP5+aRWgHpAMn2BCW4vNEO3yD3A=
Subject key identifier: CA:7E:DE:59:90:FC:E6:00:22:FE:F4:83:51:C5:B8:12:50:22:74:29
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 01833AB7D717BDF1152B037E5046DDB35521
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/yn7eWZD85gAi_vSDUcW4ElAidCk.roa
Signing time: Wed 14 Sep 2022 06:37:50 +0000
ROA not before: Wed 14 Sep 2022 06:37:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 194.15.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3a:b7:d7:17:bd:f1:15:2b:03:7e:50:46:dd:b3:55:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Sep 14 06:37:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca7ede5990fce60022fef48351c5b81250227429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1c:9c:ff:8f:c4:72:2e:3b:f6:9b:60:28:4a:
26:1c:ca:18:6e:d5:6d:71:9a:be:b5:4b:c0:ad:6d:
c6:12:25:13:7c:a7:ba:52:c7:33:b3:00:2e:f3:6d:
68:e8:d1:dc:d8:3e:03:fc:0b:9f:11:72:7c:45:91:
72:b2:29:c1:25:f6:fe:3c:a1:24:87:57:57:8b:7f:
99:5c:a1:25:f9:fe:b8:e0:b4:b7:98:a5:9f:09:d6:
7c:2e:45:3e:8c:68:d7:a1:83:fd:7c:d9:de:f9:c1:
66:7b:86:b2:f3:c5:6a:79:23:04:3c:58:45:c7:90:
12:92:28:96:04:75:d4:54:94:d7:ec:92:60:1b:c2:
e1:64:54:04:ea:e5:5c:0c:4a:1c:b1:fc:f7:9a:dd:
fe:dc:e5:30:3c:44:0f:ff:b6:3c:f8:ec:a8:aa:e0:
84:b7:37:55:72:9c:54:d9:5c:e6:32:a5:3e:8a:39:
c3:4f:79:29:44:35:07:ae:52:b5:8e:59:9f:9a:9b:
6f:7b:09:42:c7:5a:3f:9a:8b:34:56:09:de:a6:e1:
d1:5c:6c:49:15:52:e5:46:83:32:5c:56:88:39:a6:
62:80:73:5b:46:43:b3:eb:fb:b9:1c:91:0c:bf:66:
7c:76:7f:6e:a7:d3:16:16:4d:b3:93:89:fc:0d:f4:
52:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7E:DE:59:90:FC:E6:00:22:FE:F4:83:51:C5:B8:12:50:22:74:29
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/yn7eWZD85gAi_vSDUcW4ElAidCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.153.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:60:ad:1b:37:f6:af:77:db:68:5c:f4:04:03:11:d3:9b:84:
83:69:81:5d:32:81:56:0c:49:ce:df:8f:67:ff:81:01:33:9f:
cf:29:af:9a:3e:53:7f:88:20:3b:79:e2:98:54:f6:ac:07:65:
a8:a8:92:04:71:d0:44:fb:bc:64:fb:3f:e8:77:e5:b6:0c:c7:
18:6b:31:19:c4:f1:d6:dc:06:d5:a9:63:51:26:c1:0b:cc:68:
9d:72:73:c9:ff:9d:5c:92:68:26:1b:cb:f4:d6:ac:fd:61:8f:
9e:41:1b:7f:0a:ab:e2:a2:dc:ea:3e:33:36:dc:2a:6c:98:66:
a8:32:bc:d3:5f:10:8c:03:71:d3:e1:55:4f:f5:b2:57:19:a5:
63:6c:5f:01:8a:e9:ae:3f:55:17:a4:b7:0c:51:a1:75:af:5c:
fc:c1:98:e4:ce:d3:94:dd:4e:ef:1b:56:d3:34:45:a1:66:8f:
77:1f:d4:b4:46:04:b3:66:87:58:ef:b0:66:f8:f1:96:57:1f:
97:04:fe:1d:90:c9:96:a7:b1:64:c8:1b:c5:df:d3:60:0f:73:
f9:18:00:89:38:8a:a3:f9:42:a6:48:84:0a:01:3c:ec:41:41:
29:29:27:2a:82:93:06:0a:16:47:06:1a:dc:3c:38:13:ef:b5:
c2:c7:44:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:13 2023 by rpki-client on console-fra.rpki-client.org