Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/0yARdyTcgRma_19BgIHyDPfhah8.roa
File: 0yARdyTcgRma_19BgIHyDPfhah8.roa (raw, json)
Hash identifier: HjpfM7Brtev1cLj0tduNA/p/O515Nr9thrd8/eGMBsE=
Subject key identifier: D3:20:11:77:24:DC:81:19:9A:FF:5F:41:80:81:F2:0C:F7:E1:6A:1F
Certificate issuer: /CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d
Certificate serial: 03014F95
Authority key identifier: 1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/0yARdyTcgRma_19BgIHyDPfhah8.roa
Signing time: Tue 05 Apr 2022 16:05:18 +0000
ROA not before: Tue 05 Apr 2022 16:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211270
IP address blocks: 194.61.34.0/23 maxlen: 23
194.61.34.0/24 maxlen: 24
194.61.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50417557 (0x3014f95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d
Validity
Not Before: Apr 5 16:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d320117724dc81199aff5f418081f20cf7e16a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9f:9e:28:01:ba:af:88:ff:07:9c:63:c3:a8:
7a:33:dc:31:bc:3b:d1:3d:2e:a3:2a:2b:8d:9c:2b:
61:c3:2e:5d:30:48:6a:fe:1a:3b:0d:e8:5a:54:a0:
6c:6e:50:1c:30:28:fc:5d:0a:01:c7:3f:b9:e0:6c:
2f:1f:76:98:4a:d9:76:fa:1f:fc:dd:4d:c6:81:fb:
01:7e:d1:44:4e:0b:72:5f:5d:21:8e:46:13:b5:15:
2b:df:1c:bc:d1:8a:39:0f:b6:19:90:1d:60:31:8f:
77:51:30:ff:8c:42:0a:f7:4b:fe:5a:aa:cb:a7:b4:
6f:22:13:b4:14:e9:f6:68:05:c3:05:22:80:0b:2a:
9c:56:5b:92:b3:48:a5:3b:5f:04:c5:5a:27:bb:aa:
8c:98:ca:39:5f:2e:d1:38:14:63:70:71:e8:7c:cc:
bd:93:d4:86:99:a0:36:da:83:2f:4a:86:1f:b3:13:
32:93:32:18:1d:32:11:33:c0:a3:27:77:23:86:28:
b7:a7:27:52:02:37:d1:a8:44:4c:ad:ce:1b:16:1e:
e8:74:01:9c:83:38:dd:91:5a:59:c4:01:f7:ce:79:
17:7c:17:55:95:26:b7:94:90:9b:13:4a:ec:57:40:
92:77:51:2e:94:30:35:0b:4e:52:e3:75:ee:43:27:
0e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:20:11:77:24:DC:81:19:9A:FF:5F:41:80:81:F2:0C:F7:E1:6A:1F
X509v3 Authority Key Identifier:
keyid:1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/0yARdyTcgRma_19BgIHyDPfhah8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/G9LUY64VNG1e3Xk3uL-o4JsUN20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.34.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:26:92:ce:d1:ce:db:34:9d:70:bc:78:10:57:fe:7e:73:4a:
dc:4d:af:e4:65:68:28:41:ff:7a:e9:83:47:2e:05:f8:44:02:
aa:00:b4:d7:b3:18:b6:d4:53:d6:2f:25:e4:58:ae:c0:ae:78:
3a:fc:55:a3:9f:a5:52:00:4d:ea:62:c2:b9:79:c1:c5:ab:bc:
7c:aa:39:7b:c7:1e:7d:b6:61:f1:7e:ac:2c:7b:70:f3:9b:38:
26:e8:9b:f1:f6:6f:e8:84:39:77:ed:44:b5:f1:f8:65:ca:46:
27:84:15:d8:83:5e:4f:81:69:bd:54:62:d3:96:88:40:31:40:
8b:66:bb:04:a5:74:dc:eb:a3:29:6b:5b:63:ed:1e:14:29:2e:
71:56:f3:d8:d5:e3:1c:1f:ec:96:db:0b:1d:63:61:9b:3e:51:
b0:42:07:e1:4b:a4:23:77:58:dd:cf:62:01:ab:4d:ce:27:9a:
fa:7b:78:4c:ac:16:01:c8:05:bf:0a:a9:d4:76:ea:13:e5:4d:
8a:11:85:82:8f:14:5d:ac:de:94:8c:12:2f:5e:ef:7c:b4:b8:
4b:54:73:bb:b5:01:63:47:16:fe:41:77:67:e4:17:f7:93:91:
a7:67:b8:9f:af:ba:c2:fa:15:e2:45:5b:f5:d1:aa:3a:e5:d1:
8a:02:3c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org