Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/ySW9RTFbrJvtWEgOInjWLnzBeOk.roa
File: ySW9RTFbrJvtWEgOInjWLnzBeOk.roa (raw, json)
Hash identifier: KMw07RF9xdTo7cKHfz4kXDi1yPsVFiuUjD7fk64K1f0=
Subject key identifier: C9:25:BD:45:31:5B:AC:9B:ED:58:48:0E:22:78:D6:2E:7C:C1:78:E9
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 0183CB0651814179DFB296EE3A818D6829E5
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/ySW9RTFbrJvtWEgOInjWLnzBeOk.roa
Signing time: Wed 12 Oct 2022 07:08:52 +0000
ROA not before: Wed 12 Oct 2022 07:08:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40123
IP address blocks: 83.126.16.0/23 maxlen: 24
83.126.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:06:51:81:41:79:df:b2:96:ee:3a:81:8d:68:29:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Oct 12 07:08:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c925bd45315bac9bed58480e2278d62e7cc178e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4b:30:2a:f7:88:47:cf:0c:e4:07:c5:01:9f:
09:c6:d0:d2:34:42:29:61:3b:73:5f:4c:40:28:e9:
7f:a5:ac:6d:55:10:ac:83:b6:77:ed:02:c5:79:5d:
9e:f5:3c:bc:77:d4:8e:e3:68:f6:40:17:62:06:49:
6b:a5:e7:2d:13:76:32:b8:df:9a:0a:03:5b:b8:fd:
6c:f2:cb:fa:dc:5a:24:48:f3:46:93:6e:3c:1e:7d:
c4:8b:fd:ef:d5:41:ae:d4:18:8c:74:b6:6f:07:46:
eb:ff:c9:0f:3e:4e:ed:29:23:4d:38:89:4b:de:db:
fc:2c:03:6d:e7:04:ab:d0:88:1a:3c:4e:14:9e:e4:
01:f5:3a:79:f1:a3:8c:c2:e2:71:7f:bd:6a:db:cd:
47:1f:a6:1a:77:35:fa:a6:06:4e:82:f4:04:b4:b3:
cd:5e:a3:d3:b8:76:12:09:94:06:d6:07:e4:de:04:
26:55:c6:80:9d:4f:06:51:2d:1d:08:f8:85:e2:35:
70:83:2e:e4:7b:42:61:29:76:1f:5d:b7:7a:c1:27:
64:64:2a:d5:36:15:37:22:0e:64:3c:27:c4:db:9d:
55:4b:23:01:81:5b:9c:f1:d4:10:cc:07:63:a5:40:
4e:c4:85:65:6f:a8:7d:88:04:c6:56:32:bb:e2:44:
0e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:25:BD:45:31:5B:AC:9B:ED:58:48:0E:22:78:D6:2E:7C:C1:78:E9
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/ySW9RTFbrJvtWEgOInjWLnzBeOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.126.16.0/23
Signature Algorithm: sha256WithRSAEncryption
79:bf:22:9e:18:14:c0:76:6d:79:49:85:7f:c1:04:d7:56:2d:
c1:2e:d4:40:60:ac:68:30:74:aa:ab:a7:d1:fb:89:e8:75:42:
b3:a2:2c:a5:68:92:b2:60:5f:a9:a1:87:41:43:87:05:87:2d:
2f:47:5a:cd:64:53:b1:34:f9:ce:16:79:57:7a:8d:3a:f6:b2:
ad:93:df:57:fc:2b:30:91:f3:d0:af:5b:29:df:74:79:e5:ab:
7a:21:3b:aa:e5:c0:9e:86:3f:45:67:ed:fd:bb:19:64:0f:69:
98:b0:8a:d3:4e:cc:de:23:31:f7:35:3d:53:03:89:a6:03:e2:
62:75:15:29:cb:06:9f:8f:79:00:3a:d1:37:7e:b3:fd:86:73:
c2:43:63:40:17:ba:79:20:c8:f7:87:2e:38:97:38:16:4b:ec:
45:6d:44:79:c5:5d:2c:83:a5:de:31:fc:ca:96:fe:9c:c2:30:
5c:ac:9b:14:c3:01:20:00:5f:8d:2b:12:e2:0a:98:4a:df:4c:
06:70:c0:9f:f7:18:8c:80:93:5d:9c:64:79:30:8f:2d:12:3d:
40:80:a0:a3:11:41:a5:9a:8f:1e:c7:1f:9b:f2:d6:55:ca:5f:
77:c7:7d:67:41:74:0c:dd:b9:eb:fd:cb:ee:bf:04:c5:36:34:
bf:9c:d1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org