Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/yG5lbnzuzQkum_OiuQiOnWHVW2U.roa
File: yG5lbnzuzQkum_OiuQiOnWHVW2U.roa (raw, json)
Hash identifier: 47NaKroaploLyV4NPOwgHKiKmEjhqn7lwfnHHX3rBaU=
Subject key identifier: C8:6E:65:6E:7C:EE:CD:09:2E:9B:F3:A2:B9:08:8E:9D:61:D5:5B:65
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 01824E7B67022BAE5A828C6625ADDEBE4784
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/yG5lbnzuzQkum_OiuQiOnWHVW2U.roa
Signing time: Sat 30 Jul 2022 09:41:26 +0000
ROA not before: Sat 30 Jul 2022 09:41:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 152.89.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4e:7b:67:02:2b:ae:5a:82:8c:66:25:ad:de:be:47:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Jul 30 09:41:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c86e656e7ceecd092e9bf3a2b9088e9d61d55b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7d:0a:7c:c8:12:b1:f0:f1:93:59:67:52:1b:
86:5b:8e:ef:d6:32:c9:0f:64:9f:1e:3f:97:03:dd:
98:2f:4e:7a:74:4e:b4:7d:4c:82:ef:e3:88:e5:b9:
84:4b:e2:cf:fc:4d:1e:9c:75:63:12:6b:67:9a:78:
93:fb:49:fe:ff:08:d6:f0:8e:e8:06:94:11:2a:84:
36:2b:1b:54:b5:1e:1b:04:26:78:22:43:46:af:d3:
da:5b:1e:3f:61:fc:a0:18:a7:3b:99:f9:fc:47:0e:
ad:4c:1b:89:f7:dc:ef:7d:58:49:19:a5:ba:3f:43:
ed:3e:ad:bf:35:f9:a3:48:a7:4e:5a:8c:0a:f3:77:
87:3c:4a:22:c3:b1:c1:2a:db:60:75:25:1e:b0:d2:
cc:31:8f:ed:6e:ad:33:9d:e1:ac:0f:37:ef:2d:6d:
fa:64:b1:b9:9a:c9:d2:0d:ae:8a:e8:7c:a7:c8:42:
40:34:49:33:09:b5:7c:a7:0c:d0:62:53:52:d1:ff:
0a:76:1c:dd:09:b0:00:ac:ec:af:63:b7:08:d5:05:
b0:0e:6f:6c:e3:db:59:7b:a9:67:24:0f:bf:7d:9a:
36:bc:b1:71:2b:33:d4:49:da:e2:af:d2:f4:be:1d:
42:a2:1b:66:32:b5:40:4b:c4:18:c0:b4:55:59:7f:
3e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6E:65:6E:7C:EE:CD:09:2E:9B:F3:A2:B9:08:8E:9D:61:D5:5B:65
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/yG5lbnzuzQkum_OiuQiOnWHVW2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.195.0/24
Signature Algorithm: sha256WithRSAEncryption
95:68:ef:98:1d:41:f7:1a:5a:18:65:d4:1f:5e:60:d4:0d:c7:
a0:54:3e:a3:64:ff:79:0f:3b:37:53:f2:ab:05:4d:55:a6:c1:
5a:37:9a:81:f0:4f:2a:ab:18:df:e0:32:db:6a:b8:9e:c8:b0:
43:8b:b0:ee:c6:7f:61:e2:4b:27:f6:f2:9d:9a:da:d1:f3:d5:
63:99:da:d6:26:f6:d8:2f:23:d5:9c:90:5f:c9:ff:c5:3e:ff:
bb:84:64:25:fd:7e:37:85:23:03:a6:f6:29:4a:3a:a1:db:00:
58:45:04:ca:27:a9:b3:83:95:ac:af:13:95:d1:63:e3:49:a4:
42:a3:e2:57:ae:c6:82:48:6d:ba:cb:1f:c2:04:f5:7b:a5:af:
97:ad:90:2b:e6:71:20:1c:87:25:5e:d3:ff:9a:6e:56:37:99:
22:31:c7:94:7c:09:b7:46:88:54:78:44:45:5f:b1:28:fd:8d:
a3:2b:1b:04:bc:93:c6:d5:49:8a:d9:c5:3f:7e:64:56:fe:33:
ea:4d:1e:6a:ca:b5:06:3f:8f:49:05:79:86:99:cb:99:96:3c:
ea:5d:d4:92:56:6e:cd:54:82:da:27:69:5d:b8:e6:e9:f9:03:
8d:cb:49:35:8a:2c:78:a8:dc:ef:ea:68:61:7d:96:f1:99:ea:
02:9b:d3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org