Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/YUZn2fx90vVCMhpLuVKCc0vI2Xc.roa
File: YUZn2fx90vVCMhpLuVKCc0vI2Xc.roa (raw, json)
Hash identifier: 4EtLCw8dKNm0gd/uaSZaCdjzuujg0xTBu86asZJKXAY=
Subject key identifier: 61:46:67:D9:FC:7D:D2:F5:42:32:1A:4B:B9:52:82:73:4B:C8:D9:77
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 432A78B8
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/YUZn2fx90vVCMhpLuVKCc0vI2Xc.roa
Signing time: Wed 25 May 2022 15:08:13 +0000
ROA not before: Wed 25 May 2022 15:08:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34353
IP address blocks: 188.210.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126856888 (0x432a78b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 25 15:08:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=614667d9fc7dd2f542321a4bb95282734bc8d977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:17:c7:b4:28:3c:3b:df:a8:f5:4d:fa:c0:69:
86:ed:47:9b:ff:44:e0:37:39:45:61:1c:b2:34:45:
b3:d2:b5:31:dd:1c:07:81:b7:d2:f5:88:00:8c:a3:
ed:3e:d7:c2:33:95:54:e7:9b:8d:26:1f:ea:e1:c3:
af:c7:38:55:ea:01:cf:8f:1e:94:7a:0e:05:91:52:
3f:59:86:ea:80:e9:88:7c:93:94:fa:34:df:bf:65:
6d:95:4b:7d:95:1a:58:04:1f:be:68:93:a2:42:0b:
61:96:63:2c:2a:db:49:c2:b6:56:4e:2f:7e:bb:f4:
e8:a1:a0:98:eb:30:6c:c9:9d:bf:36:77:9e:0a:76:
3d:08:fe:54:75:13:d6:a9:d5:69:a0:c8:e9:a2:59:
e2:99:e2:27:14:5c:cd:d0:c6:45:e4:04:a4:1d:5a:
eb:b4:94:6e:74:4e:51:81:bd:fa:46:91:cb:9a:b1:
c6:5c:64:b8:36:3c:b3:42:da:b4:41:a3:81:18:8e:
3c:aa:60:ac:b5:9a:b9:30:a1:0c:12:dd:52:41:5b:
f5:e3:1f:96:bd:d9:84:91:26:30:5a:7d:b5:26:5e:
b3:21:db:65:b5:35:3d:db:63:83:fc:b7:2f:2c:34:
e3:2b:49:86:53:4b:8b:57:57:9b:1b:59:3d:7a:c2:
f9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:46:67:D9:FC:7D:D2:F5:42:32:1A:4B:B9:52:82:73:4B:C8:D9:77
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/YUZn2fx90vVCMhpLuVKCc0vI2Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.210.237.0/24
Signature Algorithm: sha256WithRSAEncryption
44:51:a2:09:f6:73:5d:86:13:71:a0:1c:50:53:1a:07:8e:85:
40:fa:d0:96:56:62:8a:d6:da:97:4e:14:f7:1c:7b:f8:c3:80:
76:2f:78:c0:d2:51:84:b7:a5:85:7b:00:81:2e:69:91:18:2a:
4e:fd:5c:93:df:4a:4d:32:12:35:ab:cc:59:df:d6:e4:6b:2d:
fb:69:97:4d:af:6c:a4:4e:73:ef:af:ce:d8:c5:04:08:02:5b:
e3:0d:18:f8:b7:1e:02:4e:a0:1b:19:b3:0d:08:b5:98:cc:50:
a6:9d:7e:a9:33:c6:23:bf:d5:7b:4c:ff:53:83:43:d2:1b:a8:
7f:b8:66:4c:cb:86:ce:73:d3:3c:fb:7c:b3:67:6f:5c:03:ae:
79:21:d5:4c:6c:34:63:51:49:8a:b6:a5:fe:e2:33:13:ca:dd:
ca:04:a0:62:fe:b8:ac:bf:81:03:9e:45:5b:86:33:d9:42:5f:
22:98:67:9c:6b:e3:bc:ae:c9:a4:64:01:76:ca:e6:cb:e6:8a:
e7:75:2e:89:a2:1e:34:d8:42:33:b9:b8:3b:86:e8:44:1c:28:
b6:f3:8a:f2:f6:6b:8e:4b:1d:1c:33:d5:c3:b9:97:7a:5f:43:
fa:4d:f2:f1:b1:58:2d:77:85:2e:34:e6:64:f3:d8:ee:c2:1c:
7f:51:48:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org