Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/y7vom0HDsL-pyXqrrih_RZXTOgg.roa
File: y7vom0HDsL-pyXqrrih_RZXTOgg.roa (raw, json)
Hash identifier: ujFxnfMtFpbUqQpRNxUMMI9dEpn93H1GUUQP5OvbhJ8=
Subject key identifier: CB:BB:E8:9B:41:C3:B0:BF:A9:C9:7A:AB:AE:28:7F:45:95:D3:3A:08
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10BBE781
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/y7vom0HDsL-pyXqrrih_RZXTOgg.roa
Signing time: Sat 01 Jan 2022 13:02:18 +0000
ROA not before: Sat 01 Jan 2022 13:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199842
IP address blocks: 213.199.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280749953 (0x10bbe781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbbbe89b41c3b0bfa9c97aabae287f4595d33a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9d:da:d1:f9:6e:aa:ed:5b:9a:3f:b6:24:84:
41:4e:59:1d:d5:b2:be:11:7c:7e:cc:f0:4c:fa:de:
5b:00:a9:1c:d8:34:47:d6:2f:3a:e4:1c:fc:18:97:
43:84:41:31:88:7b:cc:c9:41:52:fb:5a:4c:b9:c7:
53:c7:7c:cd:e9:0d:0f:96:95:de:88:87:7f:da:66:
d7:91:dd:3a:bb:e0:10:31:bb:7a:15:e1:24:af:36:
93:49:73:bd:97:fb:d6:5d:02:cb:a4:11:71:a2:92:
52:ff:a6:07:42:ec:c9:a8:45:02:3d:49:d0:d1:e6:
1f:bf:bb:e3:a7:8c:d5:c5:6e:09:cf:83:89:cb:94:
a4:33:99:c2:f6:24:7e:1f:2a:8d:07:14:44:38:09:
28:f7:60:43:61:05:cd:26:3a:33:87:66:6b:04:1c:
62:0f:ed:a9:87:5f:9b:05:a5:c1:fc:60:6f:2b:25:
a2:e8:92:90:39:10:06:f3:56:32:e7:eb:00:4d:b9:
a4:67:1a:00:09:6b:e8:bd:f2:cf:6e:5c:cf:21:a8:
3e:4b:51:11:f5:3e:36:32:2a:8e:f9:8b:e0:98:49:
cc:e5:11:08:bb:3e:44:9e:d0:70:4e:53:95:13:28:
02:01:7e:d4:e9:08:50:90:6e:44:07:ab:f4:44:4a:
53:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BB:E8:9B:41:C3:B0:BF:A9:C9:7A:AB:AE:28:7F:45:95:D3:3A:08
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/y7vom0HDsL-pyXqrrih_RZXTOgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.199.254.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:7f:e3:11:39:3a:8a:4c:7d:6c:2d:b7:da:21:fe:66:44:7a:
28:b5:1c:96:15:92:18:33:7a:d8:a7:1a:15:1b:d4:6a:3a:c1:
b5:bd:9d:9b:03:ae:91:d6:d7:fc:0d:f5:86:ab:e0:7c:e3:f1:
3f:1b:17:8d:3d:8e:05:67:a4:41:2b:01:15:f5:59:6a:94:98:
bb:40:62:c7:4d:4b:8d:c6:07:80:c0:5e:a1:9f:f0:f8:a7:fe:
64:89:84:45:35:de:39:f4:fd:c0:b3:8a:58:bd:c8:66:81:e7:
87:ba:30:3a:91:e7:4c:79:8b:56:5f:2d:47:36:d4:c5:0e:fa:
e4:91:48:d5:11:f1:04:d2:1b:de:24:f5:dc:21:53:ad:3f:02:
4d:0f:18:78:0c:08:65:0b:7f:fd:3f:b4:21:3c:0a:5b:55:d7:
94:eb:29:59:b6:c4:fb:49:bf:07:1e:8a:06:52:5b:6c:9b:b7:
24:19:c4:cb:9c:13:f4:cb:75:6c:9b:50:e3:cf:dc:53:94:d2:
13:e9:ba:f9:a6:22:18:c2:a6:67:dd:95:83:ea:6b:f3:fa:03:
79:9c:f3:c9:f3:c2:ec:c2:0c:1b:21:fa:dd:5b:a7:bf:f3:6c:
c7:fe:4d:4e:d8:1c:9a:7d:40:6f:5a:02:ef:c9:60:c3:73:76:
5d:d3:60:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:15 2023 by rpki-client on console-fra.rpki-client.org