Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/Y4Wrsh5Amg-6I1gvuKqADp3BmPI.roa
File: Y4Wrsh5Amg-6I1gvuKqADp3BmPI.roa (raw, json)
Hash identifier: 4WhwUGhyajVt1jChF7ajlg1up1mcxAMf0FgEP/xRQoo=
Subject key identifier: 63:85:AB:B2:1E:40:9A:0F:BA:23:58:2F:B8:AA:80:0E:9D:C1:98:F2
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 04A0FC7F
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/Y4Wrsh5Amg-6I1gvuKqADp3BmPI.roa
Signing time: Tue 28 Jun 2022 20:49:02 +0000
ROA not before: Tue 28 Jun 2022 20:49:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 195.8.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77659263 (0x4a0fc7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Jun 28 20:49:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6385abb21e409a0fba23582fb8aa800e9dc198f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:38:3d:ed:e1:d8:75:86:cd:a5:c6:26:21:78:
13:19:c9:eb:7c:0a:15:61:1c:54:66:79:27:c1:38:
c8:69:31:86:99:81:48:f4:3c:4d:45:29:eb:25:cc:
7a:8f:83:6c:ba:cd:6b:4a:47:0a:37:cb:70:0a:1b:
2f:f1:cb:34:85:02:ba:67:e1:91:de:84:47:96:3f:
f7:bc:ec:5d:33:81:72:95:b8:8f:91:c9:79:ff:d5:
0b:50:de:a6:a4:73:c7:77:1f:c9:09:69:7d:86:ad:
bc:b5:9b:95:4f:02:cc:b4:da:73:e2:ff:1c:71:76:
e8:bc:54:a1:23:e8:4c:85:0d:b1:f3:02:23:10:10:
e4:c8:25:02:80:9f:ae:47:e5:a1:b6:35:7c:ad:d5:
f8:80:f8:f8:62:db:42:f3:20:65:ae:c0:7d:94:8b:
19:a7:d6:87:e2:a6:15:56:b8:43:cc:f0:38:d4:ec:
03:6e:88:ee:18:2d:37:65:49:95:b4:98:b3:4e:69:
4f:fb:09:e4:3a:52:24:b6:99:9a:6e:29:a0:7f:fe:
b3:f5:0e:01:07:e3:8c:31:db:66:bb:d5:50:87:9e:
bf:0e:e2:b6:cc:cd:d7:67:fa:d9:1b:ad:85:79:ad:
83:91:b2:a3:2e:52:e8:de:87:1a:41:59:5c:8f:2e:
51:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:85:AB:B2:1E:40:9A:0F:BA:23:58:2F:B8:AA:80:0E:9D:C1:98:F2
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/Y4Wrsh5Amg-6I1gvuKqADp3BmPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.200.0/24
Signature Algorithm: sha256WithRSAEncryption
47:41:05:1e:92:99:b9:03:90:f8:33:0f:d7:ff:47:b8:31:e6:
2e:c2:f1:60:2f:bd:2c:03:df:63:7d:1a:0c:91:b6:24:9b:9c:
94:a3:f8:78:6d:6f:bb:51:76:2e:e8:01:d9:dc:51:d9:b2:bd:
a6:45:bb:88:81:ee:73:c7:63:58:be:85:b1:6c:85:47:d5:1a:
b5:cb:34:fd:59:8a:91:3f:21:10:8f:42:d2:64:3a:3b:1f:3e:
7f:8e:45:cb:4e:e1:c8:31:42:cb:bb:67:04:57:18:34:1f:01:
96:42:99:bb:fd:87:b0:d0:fa:2e:31:92:e0:31:34:90:bc:19:
91:b1:cd:66:e0:84:9c:e7:82:66:ba:28:12:d3:c4:65:7d:e3:
23:e3:00:80:3a:5c:68:c2:89:d1:50:46:ed:0d:41:62:54:0d:
c3:c7:f2:72:0d:0d:f2:89:d4:91:c3:8b:a1:d3:31:43:d7:b7:
e8:df:11:ba:f6:31:9e:d8:62:5f:2a:02:72:9a:5e:a4:9c:05:
86:b4:6a:ba:b2:ec:03:a7:99:a3:7d:63:95:3d:64:5d:df:63:
83:08:93:d9:4f:06:da:2e:d7:9c:09:30:47:bf:bf:79:ef:ad:
c0:c5:4a:dc:8b:55:aa:eb:63:d1:eb:ab:28:fe:9b:a3:9a:59:
02:c0:47:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org