Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/yYstoKBty-ECR_zfD3e_dPqpvYw.roa
File: yYstoKBty-ECR_zfD3e_dPqpvYw.roa (raw, json)
Hash identifier: aFXzArUFJs6dTqFuJ/82MBKfLFFNp8e9hNbfyhkZGf8=
Subject key identifier: C9:8B:2D:A0:A0:6D:CB:E1:02:47:FC:DF:0F:77:BF:74:FA:A9:BD:8C
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0659F8C8
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/yYstoKBty-ECR_zfD3e_dPqpvYw.roa
Signing time: Sat 02 Jul 2022 14:11:25 +0000
ROA not before: Sat 02 Jul 2022 14:11:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400040
IP address blocks: 194.246.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106559688 (0x659f8c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jul 2 14:11:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c98b2da0a06dcbe10247fcdf0f77bf74faa9bd8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a4:f4:8d:61:bf:34:14:a2:b5:a8:0a:f7:31:
65:13:0e:bf:82:85:d7:1b:0c:0f:8e:9d:68:5a:a2:
aa:44:a2:a0:bf:e6:d3:78:51:02:3c:c0:c7:ea:7f:
69:03:32:35:a9:38:c1:18:e2:7d:53:e3:d2:bc:07:
40:12:b5:29:ff:f8:4c:02:54:f4:80:af:18:c4:2f:
e3:e7:18:0e:5a:51:86:3b:18:68:45:e5:b1:b7:71:
6f:6d:55:2e:df:23:8e:3b:14:b5:c9:87:d0:a1:24:
2f:c6:80:94:7e:45:2b:63:cc:e5:64:76:f8:2a:fa:
48:cc:de:b0:44:89:2d:1c:38:24:c4:81:cb:45:0b:
52:82:3e:a0:11:8b:0a:5a:ca:38:22:54:45:99:42:
fd:d6:9a:4b:05:63:6d:81:3e:dd:76:9b:e7:dc:ae:
2e:df:4a:8a:48:87:4b:0a:ac:21:ed:58:ab:51:88:
d2:1b:20:a9:54:9d:7c:9c:44:23:94:8d:8d:36:c7:
a4:bf:73:ab:62:f0:3f:cd:84:21:7f:91:27:55:29:
91:9d:2d:63:02:10:5f:fa:2b:7b:2d:63:7e:71:9c:
ba:5a:dc:e3:12:8c:cd:ea:ff:4c:65:bd:49:c9:fc:
67:a1:26:bf:db:9a:89:be:fc:a8:05:ae:67:c9:27:
b8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8B:2D:A0:A0:6D:CB:E1:02:47:FC:DF:0F:77:BF:74:FA:A9:BD:8C
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/yYstoKBty-ECR_zfD3e_dPqpvYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.36.0/24
Signature Algorithm: sha256WithRSAEncryption
62:da:08:41:77:99:02:1f:ae:91:cb:b5:ed:ae:81:47:eb:65:
f6:da:91:cb:7a:30:75:30:4c:1e:d7:17:88:b0:c8:22:a9:8c:
44:e8:04:28:d2:c2:a3:7b:7a:d6:cc:fa:f6:10:36:44:9b:df:
bc:76:b5:51:9f:3c:d3:d1:26:b0:55:8b:19:a3:25:01:63:75:
dc:0e:c9:af:45:2b:09:8b:aa:f2:80:6a:d0:ea:6b:0c:9b:c0:
cf:b6:4e:14:c1:23:87:84:09:74:7e:3b:21:46:72:d0:48:8d:
01:9e:a4:3b:91:aa:59:88:f8:1b:45:92:2a:ec:19:ad:b1:1c:
dd:5b:2c:60:72:39:c5:4e:93:92:35:df:46:47:6f:8f:d9:1f:
41:77:ef:f6:59:c2:06:b0:cd:da:b1:f2:2c:a0:77:12:99:4d:
52:07:c7:7c:b8:b5:77:f0:4a:47:04:b8:99:6f:91:a6:55:60:
30:f8:a2:0b:1d:7a:6a:b6:cd:ce:a5:d4:65:87:1b:d5:5f:f3:
02:a1:02:32:14:e3:6c:2b:32:01:29:0c:8f:11:83:21:6d:45:
7d:da:4a:a7:b8:7c:7b:f7:29:f1:41:51:ca:53:95:a2:04:27:
cc:32:0f:b5:a1:1c:22:5b:f9:f1:c7:5e:2e:5a:5f:fe:aa:a0:
eb:9c:4c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:53 2023 by rpki-client on console-fra.rpki-client.org