Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/YrDmysskOgvm0BmRBHpsjf2W-LE.roa
File: YrDmysskOgvm0BmRBHpsjf2W-LE.roa (raw, json)
Hash identifier: PO+p9Weh5kMa130GIVipYeNxZMB3aTGprPDVH/4aO7I=
Subject key identifier: 62:B0:E6:CA:CB:24:3A:0B:E6:D0:19:91:04:7A:6C:8D:FD:96:F8:B1
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0183155DFC8318482E9836AE651DA181F441
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/YrDmysskOgvm0BmRBHpsjf2W-LE.roa
Signing time: Wed 07 Sep 2022 00:33:44 +0000
ROA not before: Wed 07 Sep 2022 00:33:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201924
IP address blocks: 185.126.238.0/24 maxlen: 24
2a11:840:20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:15:5d:fc:83:18:48:2e:98:36:ae:65:1d:a1:81:f4:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 7 00:33:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62b0e6cacb243a0be6d01991047a6c8dfd96f8b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:19:28:1b:19:55:69:ed:e5:87:35:95:f4:ba:
44:4d:43:aa:1e:a5:cd:4a:2d:36:b0:72:e1:9f:06:
10:f9:bf:91:fa:31:90:a4:92:0c:93:05:f6:60:2a:
ae:47:cf:94:a5:c1:0a:e1:dc:fc:b1:a1:3b:7a:6a:
90:d6:6b:9b:44:8b:d1:36:e6:c3:ba:ce:60:d0:3d:
51:8c:ab:6b:1f:b5:ca:77:2b:0d:95:d9:96:47:41:
05:03:d9:1c:60:1f:90:9c:bf:05:01:90:6e:1b:a5:
72:1c:ac:db:5e:f9:c1:e3:1c:c5:f3:06:07:5a:e0:
f3:c3:ba:17:2a:c6:1f:0f:f9:55:c6:09:c9:93:9b:
53:c5:13:c3:4d:a4:cc:90:60:9e:65:fc:be:0a:d8:
43:98:34:44:26:10:85:20:97:68:82:0c:71:10:6d:
73:35:99:c8:5e:76:9b:68:f1:86:e7:c2:a0:ef:3e:
6f:aa:27:ae:23:45:0d:a6:aa:21:42:33:80:dd:e9:
5c:75:02:df:a8:4e:9b:d4:b5:b4:f2:10:4d:a2:e7:
aa:43:95:67:2b:7d:ec:cf:38:ef:bc:2d:39:19:3e:
06:67:7c:c7:ea:57:2a:0b:1f:7f:83:32:17:9f:4f:
b3:32:55:59:03:d8:c1:56:1a:b0:b5:04:2d:02:cc:
8c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B0:E6:CA:CB:24:3A:0B:E6:D0:19:91:04:7A:6C:8D:FD:96:F8:B1
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/YrDmysskOgvm0BmRBHpsjf2W-LE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.238.0/24
IPv6:
2a11:840:20::/48
Signature Algorithm: sha256WithRSAEncryption
13:a4:80:9a:bb:6f:e6:43:83:3a:36:8e:ed:d3:01:c0:79:0a:
57:20:fd:93:18:77:21:73:eb:9d:5f:73:c1:51:b8:3f:34:b3:
a0:f6:04:f0:92:4b:3a:76:e6:42:6f:57:12:53:db:6b:b5:ee:
0a:40:ef:8a:ca:a6:e9:5a:0c:bc:80:ba:25:d4:7c:b3:34:9f:
23:8a:44:c8:38:2d:61:2c:22:f2:de:70:e9:b7:e7:d6:f0:15:
8a:de:44:97:4c:f7:4b:a8:1f:4b:db:cc:1b:fa:d1:f2:6f:79:
6a:11:29:23:f7:b3:37:d8:5c:d2:30:3a:45:42:10:c5:ed:12:
19:81:bc:bc:75:62:a4:fa:f0:08:80:f7:d3:14:89:0e:0c:be:
24:58:14:92:69:d2:37:08:41:d5:e4:83:f5:e9:f9:93:bd:81:
3d:41:e7:bf:ff:e2:af:de:fd:49:26:49:d9:84:e0:72:b6:73:
2a:6e:69:11:73:8f:5f:ce:03:9e:de:70:d9:64:2d:02:fe:d0:
be:96:c5:cf:b5:21:8b:42:87:24:58:fb:8e:d4:41:38:df:89:
1d:4a:9b:40:e5:8e:ec:40:c5:75:3c:1d:b3:8b:14:66:65:e3:
bb:64:a6:b9:5c:de:db:ed:7e:50:06:93:22:ae:0a:de:0c:ed:
bc:ac:4a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org