Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/Yw2aT9GFYU6-XF7208KBBr9EchE.roa
File: Yw2aT9GFYU6-XF7208KBBr9EchE.roa (raw, json)
Hash identifier: IYTAhmidMR9VVJcpWvH+3yJ4NDS4zMbURO0JxpqwSSE=
Subject key identifier: 63:0D:9A:4F:D1:85:61:4E:BE:5C:5E:F6:D3:C2:81:06:BF:44:72:11
Certificate issuer: /CN=88e719f426793b1e9063771460abd311a3dff116
Certificate serial: 05F010A7
Authority key identifier: 88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/Yw2aT9GFYU6-XF7208KBBr9EchE.roa
Signing time: Sat 01 Jan 2022 01:54:08 +0000
ROA not before: Sat 01 Jan 2022 01:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62528
IP address blocks: 185.134.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99618983 (0x5f010a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e719f426793b1e9063771460abd311a3dff116
Validity
Not Before: Jan 1 01:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=630d9a4fd185614ebe5c5ef6d3c28106bf447211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:91:28:1b:d4:78:d6:cf:25:5a:78:e2:fa:6e:
e4:32:28:8c:39:c3:cf:2d:3f:9c:2f:04:3c:09:d3:
69:22:91:e7:78:e3:6b:d4:92:33:f5:eb:3b:d5:c2:
4d:33:c0:f8:54:2f:47:5a:d8:1f:3d:44:8a:a9:a1:
d8:e3:3e:dc:66:77:1d:a8:54:2c:ee:11:71:4c:d1:
0b:1b:eb:af:01:c2:73:a4:ed:85:e4:e7:ac:9d:30:
60:72:84:42:81:e6:da:32:48:6e:2f:b9:98:4d:ef:
48:8c:36:7d:56:e5:de:f6:0d:24:f4:29:f1:57:45:
55:0a:a3:ca:43:91:ac:2e:fc:2a:ff:6b:b5:bd:92:
fc:92:82:5d:b5:68:56:6c:ab:1a:33:8d:71:a5:9d:
d6:3c:f2:6d:19:9a:c2:6c:24:3c:7d:f0:cb:01:62:
9f:08:30:8c:8a:98:a7:ae:5f:0c:71:33:2e:a1:d7:
51:e8:55:ba:88:07:e4:57:d4:8c:5d:8b:65:f2:f6:
1f:4b:3d:eb:c9:a7:cc:83:be:7f:91:86:85:37:2c:
f2:7c:28:ab:2c:0f:6c:9c:19:41:10:cc:8d:32:6f:
72:f2:c9:bb:ad:78:74:0d:c2:12:35:0a:f7:e7:f5:
7a:b9:4a:8c:c8:17:18:fc:25:3e:63:26:ca:e0:c3:
3a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0D:9A:4F:D1:85:61:4E:BE:5C:5E:F6:D3:C2:81:06:BF:44:72:11
X509v3 Authority Key Identifier:
keyid:88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/Yw2aT9GFYU6-XF7208KBBr9EchE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.183.0/24
Signature Algorithm: sha256WithRSAEncryption
93:71:e0:11:70:60:da:ee:7a:60:3f:8c:be:28:bc:f9:c1:9b:
68:0d:33:bb:92:5d:5c:30:60:08:c5:db:e2:d6:9e:35:4e:52:
7b:35:c1:e1:79:0f:1c:f8:4d:c1:d4:f9:1c:9b:13:42:a9:f7:
54:a0:de:73:99:ac:94:74:a3:64:ec:dc:4e:73:d8:26:fb:51:
f9:c8:ed:2a:b0:3c:e7:31:18:bd:33:db:20:ec:26:d3:24:c8:
58:05:f6:83:a6:a8:85:d2:6a:27:b1:5a:bb:12:79:d3:e6:30:
44:53:e7:ab:02:e5:6b:3e:fb:ed:a9:f8:09:4e:44:4c:cf:22:
73:40:3e:ca:92:62:bc:56:1d:d2:a5:c0:c5:c5:80:71:e6:ee:
42:a3:80:ec:dc:af:a8:9e:82:69:10:4f:e9:f1:5d:dc:92:25:
f4:f3:3c:62:0f:69:b0:fd:29:31:51:63:e9:4e:84:44:44:bd:
57:b9:8e:4b:29:1b:10:e4:0b:85:0c:8a:e5:29:da:bf:b9:3c:
3e:ae:1f:d3:9e:de:b0:95:d3:96:29:d5:ad:ab:8e:ca:ff:f3:
f1:11:72:f7:de:9e:6b:44:e5:c5:bf:8e:82:9a:fc:13:2e:bd:
0c:7d:67:3c:99:7f:cb:21:9b:28:69:44:32:c1:f5:c4:f7:e4:
a4:fa:07:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:16 2024 by rpki-client on console-ams.rpki-client.org