Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/YeNb2r5yZCOb11mYI9_RCrqk8dA.roa
File: YeNb2r5yZCOb11mYI9_RCrqk8dA.roa (raw, json)
Hash identifier: MKhZw9CMl05l7nH8yQZjdzOpl/0pP/T6Um4qSs11hLQ=
Subject key identifier: 61:E3:5B:DA:BE:72:64:23:9B:D7:59:98:23:DF:D1:0A:BA:A4:F1:D0
Certificate issuer: /CN=19d65fa33ce5b3f7bdb497e5fca509d7fc03c693
Certificate serial: 1426CE48
Authority key identifier: 19:D6:5F:A3:3C:E5:B3:F7:BD:B4:97:E5:FC:A5:09:D7:FC:03:C6:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdZfozzls_e9tJfl_KUJ1_wDxpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/YeNb2r5yZCOb11mYI9_RCrqk8dA.roa
Signing time: Sat 01 Jan 2022 13:03:37 +0000
ROA not before: Sat 01 Jan 2022 13:03:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56532
IP address blocks: 185.103.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338087496 (0x1426ce48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d65fa33ce5b3f7bdb497e5fca509d7fc03c693
Validity
Not Before: Jan 1 13:03:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61e35bdabe7264239bd7599823dfd10abaa4f1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ab:54:54:0e:7a:21:4b:2f:ec:49:bf:88:76:
a3:12:0d:aa:2c:22:e0:c1:04:03:b2:40:a0:73:4f:
60:23:a8:60:cc:ed:7c:64:81:4a:c1:00:1d:49:91:
4e:5b:73:67:85:f9:f7:79:4d:c0:f8:81:78:08:a4:
14:5a:9f:09:38:c2:53:60:9c:44:f6:b9:00:c5:de:
a7:9c:a3:68:04:c0:f8:27:3e:71:6e:14:07:20:2f:
c5:cb:0c:9c:2f:5e:4a:80:9b:0a:ab:76:b3:d3:26:
f6:76:6d:55:39:a6:e4:d6:83:1c:7c:3b:8c:f5:cd:
a9:e4:be:d9:fc:a3:b0:df:3c:d4:6a:ad:86:9a:51:
78:65:66:c9:7e:e1:04:fa:f6:ee:2d:e2:28:a7:37:
48:c3:1c:15:6b:dd:1e:a3:d5:13:ed:94:2c:25:d0:
9e:62:95:ed:f7:bb:dc:52:aa:bb:fd:6a:0f:5e:f0:
5c:52:a2:7e:18:5a:a7:57:52:ab:f6:fe:0d:9e:46:
ca:20:44:34:54:b6:31:f9:f0:10:18:80:bf:74:16:
e5:ae:a0:d9:9d:3e:79:ba:f5:1e:f9:97:be:eb:ce:
fc:8e:ad:0e:72:f1:85:98:9d:81:b9:5e:e8:51:4e:
6f:91:05:3d:d3:6b:35:6d:08:59:83:0d:4c:e5:aa:
6f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E3:5B:DA:BE:72:64:23:9B:D7:59:98:23:DF:D1:0A:BA:A4:F1:D0
X509v3 Authority Key Identifier:
keyid:19:D6:5F:A3:3C:E5:B3:F7:BD:B4:97:E5:FC:A5:09:D7:FC:03:C6:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdZfozzls_e9tJfl_KUJ1_wDxpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/YeNb2r5yZCOb11mYI9_RCrqk8dA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/GdZfozzls_e9tJfl_KUJ1_wDxpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.232.0/22
Signature Algorithm: sha256WithRSAEncryption
71:19:78:7a:71:9e:9d:d9:c2:d2:c0:28:d4:f6:19:19:a5:79:
48:45:08:7b:a8:73:24:ba:af:c0:fe:06:d3:7d:c1:92:ce:6c:
db:b6:6d:72:4c:76:df:4e:8a:92:a3:98:ab:21:23:83:a0:f2:
b9:db:91:3a:73:17:b4:a0:f0:c2:27:12:41:e6:50:f6:c5:4b:
8e:ab:44:0d:cb:b7:0b:eb:5e:ad:3f:6a:10:c0:7c:a0:1e:38:
1a:09:e7:35:33:4b:5c:63:8b:25:46:5e:5e:0e:49:3c:0c:3d:
3f:43:59:2b:1b:7c:0d:40:52:58:53:ec:57:1a:1f:85:a6:04:
71:62:ff:c0:5a:1a:dc:07:15:0c:8b:34:5f:7c:02:23:a0:95:
87:78:7a:f3:4e:55:82:ef:35:49:72:e2:92:3a:d7:93:fb:98:
4e:63:6e:dd:15:12:72:6e:e1:da:ff:b0:f3:d3:a4:7a:ad:1b:
08:91:e2:3b:6a:a4:b0:61:39:3e:3f:e7:92:86:f0:6a:28:e0:
a1:a9:f1:cc:29:e5:d6:83:75:74:a6:ac:bf:79:ef:aa:c0:0a:
f7:66:f6:09:dd:ba:c7:aa:ed:67:b9:83:aa:39:87:48:3d:11:
99:97:f0:41:d5:10:54:ce:f7:f1:e1:cd:68:6e:42:08:65:bb:
e5:30:46:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:03 2023 by rpki-client on console-fra.rpki-client.org