Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/83647a-44e5-4049-b879-9337f374168e/1/Y96LlLC2VWna-qWesBgpEHOGRBE.roa
File: Y96LlLC2VWna-qWesBgpEHOGRBE.roa (raw, json)
Hash identifier: gaqXc7bjQaTjPmOfnOoPFyGzrMNBxCDC0IkQV5WcXNs=
Subject key identifier: 63:DE:8B:94:B0:B6:55:69:DA:FA:A5:9E:B0:18:29:10:73:86:44:11
Certificate issuer: /CN=3f96703f30e2099a3d9006bfa84e5c6c486a8d2e
Certificate serial: 01767CE8
Authority key identifier: 3F:96:70:3F:30:E2:09:9A:3D:90:06:BF:A8:4E:5C:6C:48:6A:8D:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5ZwPzDiCZo9kAa_qE5cbEhqjS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/83647a-44e5-4049-b879-9337f374168e/1/Y96LlLC2VWna-qWesBgpEHOGRBE.roa
Signing time: Sat 01 Jan 2022 06:03:11 +0000
ROA not before: Sat 01 Jan 2022 06:03:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212085
IP address blocks: 185.145.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24542440 (0x1767ce8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f96703f30e2099a3d9006bfa84e5c6c486a8d2e
Validity
Not Before: Jan 1 06:03:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63de8b94b0b65569dafaa59eb018291073864411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b4:8f:06:91:2b:96:56:94:79:46:88:44:a9:
13:68:9d:4f:82:a5:83:dc:f7:71:27:b0:05:ff:1a:
0c:76:c9:dd:83:07:e5:91:27:b5:68:78:8a:91:a7:
3e:c6:f8:c4:3d:e2:00:47:96:84:45:3d:96:2e:48:
e8:4e:b5:61:82:97:77:26:6d:af:5f:2e:83:81:6f:
7f:9c:52:b1:3e:f2:21:d5:2d:ee:20:c0:ac:01:82:
ed:61:46:b5:73:90:14:8c:57:01:6f:bd:93:8f:fe:
15:5f:76:72:b8:ac:a8:ee:78:8e:00:22:35:68:62:
62:96:c1:05:c3:64:ab:a7:9e:4e:f0:17:5e:b7:ac:
9e:32:ee:42:b7:64:3e:fa:77:9d:59:c3:f4:23:57:
0f:bf:80:a4:0d:02:3a:fa:2d:ed:1c:a9:6e:24:af:
e8:c9:90:a3:29:0c:f1:be:ed:e9:cb:de:31:f3:0a:
f6:e8:20:a6:4b:39:42:dc:d8:9b:ac:9a:27:5b:9f:
66:92:57:a6:7a:b1:04:02:d6:d1:ff:ef:ef:6f:bc:
dd:ea:27:15:41:0e:d9:e6:b2:3f:da:c4:1e:f6:99:
af:32:af:85:4d:5c:24:72:c9:2c:61:9f:e8:2b:21:
80:18:16:0c:c4:de:7b:79:fa:d3:de:42:be:c7:4e:
4c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:DE:8B:94:B0:B6:55:69:DA:FA:A5:9E:B0:18:29:10:73:86:44:11
X509v3 Authority Key Identifier:
keyid:3F:96:70:3F:30:E2:09:9A:3D:90:06:BF:A8:4E:5C:6C:48:6A:8D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5ZwPzDiCZo9kAa_qE5cbEhqjS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/83647a-44e5-4049-b879-9337f374168e/1/Y96LlLC2VWna-qWesBgpEHOGRBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/83647a-44e5-4049-b879-9337f374168e/1/P5ZwPzDiCZo9kAa_qE5cbEhqjS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.234.0/24
Signature Algorithm: sha256WithRSAEncryption
37:9d:a8:82:6d:27:6f:8e:43:ff:3c:25:0e:1b:8c:68:cf:75:
28:b5:30:27:ea:2e:7b:95:76:a5:8c:3b:3e:e5:7c:6c:d9:97:
9b:7c:2a:74:cb:57:29:b1:f2:b1:73:2a:14:97:1c:49:87:e6:
c5:e6:55:88:95:3c:76:32:4c:6e:e9:5d:d8:68:52:60:8f:43:
80:89:d7:5c:c1:4b:78:18:4a:86:05:22:e7:cf:d3:34:1f:de:
80:dc:af:79:68:a9:d5:2c:0a:9b:6e:22:08:91:51:b2:f0:66:
e7:ed:ff:b5:8d:49:5a:89:2c:5d:1a:39:77:4b:45:6e:c0:16:
22:b9:0e:6d:90:f4:4f:15:f1:3d:64:36:9a:c4:61:63:66:6a:
42:90:3c:97:df:87:37:59:33:b1:97:c0:27:0a:f6:17:56:71:
47:a3:f8:6f:51:5c:0c:11:f5:60:36:4a:10:da:32:57:17:dc:
b5:91:de:e4:b2:0e:ee:0f:30:56:ae:c3:d7:65:9a:53:54:ad:
6f:99:71:da:90:1f:9a:f4:9b:9a:6e:77:bd:af:ca:27:ae:8e:
2c:01:a4:a1:0c:a7:79:a6:f6:ae:f1:1f:1b:94:c9:3d:94:98:
5a:11:79:9f:48:f3:93:dc:31:b2:a8:21:a8:17:43:1f:59:d6:
88:d1:97:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:50 2023 by rpki-client on console-fra.rpki-client.org