Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/ytYk4rzndhgf4DIbt3CDPU0rl5g.roa
File: ytYk4rzndhgf4DIbt3CDPU0rl5g.roa (raw, json)
Hash identifier: U6JEcSbZ3wJUVWvRxv6Vjk8LxelP8PjhKsv+dUXvpxU=
Subject key identifier: CA:D6:24:E2:BC:E7:76:18:1F:E0:32:1B:B7:70:83:3D:4D:2B:97:98
Certificate issuer: /CN=33fc1e5b6c788faf8fe9331981d65b5f864b80f7
Certificate serial: 152C34A0
Authority key identifier: 33:FC:1E:5B:6C:78:8F:AF:8F:E9:33:19:81:D6:5B:5F:86:4B:80:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_weW2x4j6-P6TMZgdZbX4ZLgPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/ytYk4rzndhgf4DIbt3CDPU0rl5g.roa
Signing time: Sat 01 Jan 2022 12:59:34 +0000
ROA not before: Sat 01 Jan 2022 12:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61267
IP address blocks: 185.73.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355218592 (0x152c34a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33fc1e5b6c788faf8fe9331981d65b5f864b80f7
Validity
Not Before: Jan 1 12:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cad624e2bce776181fe0321bb770833d4d2b9798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b3:8f:bb:00:b0:f4:d6:bb:d7:d7:a7:e1:36:
d3:fb:c2:a5:5e:c9:f8:8b:f9:25:67:ea:0b:02:b8:
e9:89:c4:3d:a1:0a:4a:69:db:ce:d2:d4:e6:95:cd:
ac:4c:5f:b3:63:88:58:5a:8d:e2:75:47:b6:86:85:
b6:02:6c:ed:0e:08:fa:a0:56:c7:57:8c:88:4c:72:
eb:cf:7e:96:8c:54:bd:1a:fe:8e:31:11:50:51:25:
42:fe:79:80:dc:ee:51:43:2f:f8:25:84:ee:c1:fc:
20:74:30:d9:7e:aa:63:05:30:00:5e:ce:10:61:ac:
1a:34:a1:93:39:1a:9f:54:98:4b:c1:d8:65:41:b6:
6e:d2:c1:2a:44:66:1e:c0:d2:e3:3a:10:c1:7e:bb:
97:4d:82:1f:14:ad:69:c8:80:ed:55:0b:6c:a7:c2:
6f:97:14:b6:4c:95:51:96:4e:0e:44:2d:33:2d:58:
79:7a:e4:73:eb:80:9c:fa:42:7f:23:56:cd:70:42:
04:d6:d8:0d:d3:03:91:60:be:f6:be:c6:29:c5:a8:
c3:4f:75:3d:e8:db:02:6f:96:4e:8a:da:23:c6:34:
c6:e6:c7:a3:4b:63:2f:8c:81:5b:c8:5b:81:38:99:
dd:a0:79:0d:4e:14:63:76:ed:fb:81:bb:bc:c4:83:
11:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D6:24:E2:BC:E7:76:18:1F:E0:32:1B:B7:70:83:3D:4D:2B:97:98
X509v3 Authority Key Identifier:
keyid:33:FC:1E:5B:6C:78:8F:AF:8F:E9:33:19:81:D6:5B:5F:86:4B:80:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_weW2x4j6-P6TMZgdZbX4ZLgPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/ytYk4rzndhgf4DIbt3CDPU0rl5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/5dca9d-73dd-47dc-8549-b1c4de84e70e/1/M_weW2x4j6-P6TMZgdZbX4ZLgPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.19.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:0b:5d:b5:c1:5d:7a:cf:e6:a2:2a:be:23:ca:7c:82:66:75:
82:d5:24:74:ff:e9:cd:9f:0b:0b:47:53:eb:72:3b:26:90:a8:
dc:65:a6:2d:8e:08:2c:4a:5c:14:2f:32:54:f3:59:28:75:5f:
60:af:ef:d9:58:01:b2:8c:c9:72:b6:99:38:c3:89:2d:c7:5f:
6d:5a:0b:0e:c6:63:a1:22:8d:f5:e3:cb:c2:0e:92:cc:9d:01:
cc:9a:6e:4e:09:a3:19:25:49:8f:13:ba:b9:45:2c:9e:28:72:
dd:c6:34:e1:39:05:42:73:4f:9d:26:2f:ff:8a:b2:e8:4f:b6:
9a:7f:31:9b:e8:c4:c8:57:07:3c:c4:ec:24:1e:1b:8b:cd:c7:
8b:85:e7:f6:e8:2e:d5:89:9b:ec:72:b3:52:d9:d0:78:b6:64:
22:7d:65:9c:35:00:1b:db:ba:64:f3:ce:e9:3b:2e:04:67:d1:
2e:08:84:9e:8b:2e:7e:a5:be:3e:96:6e:35:28:5e:b7:7d:67:
ac:d5:95:30:08:9a:8d:18:0b:ec:65:f0:c1:4d:6c:5b:78:6e:
cb:82:bb:d5:94:ea:e4:e1:1c:35:30:d0:dc:77:10:24:73:00:
aa:47:71:d3:9e:bf:75:82:a8:03:6e:6e:44:25:fb:53:cf:d5:
de:18:0c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:49 2023 by rpki-client on console-ams.rpki-client.org