Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/yz-woEtVFv5KF7BzZ3kdqojlSHY.roa
File: yz-woEtVFv5KF7BzZ3kdqojlSHY.roa (raw, json)
Hash identifier: tldHiRWI4TpW2ACkKWvrPyUf7YVXj7bhEp8175LM3Do=
Subject key identifier: CB:3F:B0:A0:4B:55:16:FE:4A:17:B0:73:67:79:1D:AA:88:E5:48:76
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16E5000B
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/yz-woEtVFv5KF7BzZ3kdqojlSHY.roa
Signing time: Sat 01 Jan 2022 12:01:40 +0000
ROA not before: Sat 01 Jan 2022 12:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202062
IP address blocks: 141.101.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384106507 (0x16e5000b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb3fb0a04b5516fe4a17b07367791daa88e54876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3d:31:01:df:90:67:9c:47:42:70:59:1c:d1:
45:a9:de:27:45:8c:43:95:81:b1:49:25:ba:a6:e0:
f9:90:61:29:c1:66:8e:d8:68:5b:4c:0f:2d:70:9a:
0f:bd:d4:70:56:c1:0d:6d:12:53:79:6b:03:fb:fc:
2d:67:3d:96:04:d8:5a:b6:1c:23:f8:4d:9c:83:92:
ec:d2:f9:ae:7a:19:d1:48:e9:60:e9:c3:01:c0:45:
9e:f8:2c:8b:6f:63:6d:40:c7:18:72:5d:c8:75:bc:
39:55:e2:36:7a:db:fe:85:3d:12:9c:d6:f3:56:0f:
eb:aa:3c:39:37:e0:47:45:ee:39:0b:f4:0b:ea:73:
31:7c:b0:37:98:a4:eb:e4:84:51:b0:f9:27:d3:cd:
22:b7:71:fe:08:50:7e:6b:9f:0e:47:0c:27:d5:ac:
6e:4a:7c:b8:cd:17:a1:74:e5:f8:cd:c0:c5:12:2d:
e2:6e:6d:80:e2:37:a3:23:2b:a9:42:8c:44:88:3b:
16:8b:23:da:ee:32:9b:1c:d8:3f:49:36:a0:94:a9:
98:47:a0:14:f5:64:1f:f1:b1:df:1b:93:11:f3:53:
05:59:a1:4d:38:a7:54:71:7e:ed:26:b9:8f:97:ad:
89:67:2d:15:00:5c:77:ba:8a:82:5a:bf:f6:14:0f:
5f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:3F:B0:A0:4B:55:16:FE:4A:17:B0:73:67:79:1D:AA:88:E5:48:76
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/yz-woEtVFv5KF7BzZ3kdqojlSHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.175.0/24
Signature Algorithm: sha256WithRSAEncryption
af:d0:fd:8c:09:e8:40:9a:ed:4c:a6:a6:5b:21:39:4b:5c:20:
55:0d:6d:8e:a6:e0:e9:3f:a4:e2:a1:13:fb:09:a7:f5:25:b3:
f9:0b:49:ce:7a:de:d4:9e:8f:31:48:78:26:d3:d6:f1:ef:80:
7e:9d:d8:d4:27:97:8d:ff:e1:38:ef:dc:1c:29:ec:8a:4a:c3:
4f:04:26:c9:42:b1:49:e4:ff:c6:a2:ad:ea:3a:5f:3a:29:24:
95:a2:c4:48:19:95:fb:74:b7:e9:e6:9f:02:39:cf:f7:9f:57:
04:fb:91:c0:f8:da:bc:49:48:a8:8a:9a:90:69:2c:e0:c1:66:
12:ce:ac:4b:4c:9b:6a:04:be:42:2c:49:b7:65:06:5b:f2:ed:
78:6b:56:d4:35:75:85:73:7d:a4:3f:ca:28:ca:fa:08:cb:e1:
4d:11:d5:96:fb:d1:53:72:a5:e5:18:c7:52:58:13:0d:41:2a:
f5:6f:17:5e:f1:0e:4d:34:70:d6:06:67:e9:12:df:e9:3b:b2:
a2:c1:7c:c6:ac:3f:96:ed:59:2e:99:13:73:0a:13:29:8a:34:
f2:d6:a3:af:eb:be:5c:47:05:c4:41:a2:ee:2f:18:4c:e4:cf:
91:03:3b:73:7b:7d:6a:0d:d7:11:e4:8b:e2:5c:5d:f0:c8:8b:
52:8e:a3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org