Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/Yduaufb49vMzp3uq2DUzZBxEC28.roa
File: Yduaufb49vMzp3uq2DUzZBxEC28.roa (raw, json)
Hash identifier: GgtrNypQp3VP/iamCDwVnUp9jLBsQwZyJmCbklJoNuE=
Subject key identifier: 61:DB:9A:B9:F6:F8:F6:F3:33:A7:7B:AA:D8:35:33:64:1C:44:0B:6F
Certificate issuer: /CN=0bcf721c71c8ae7caf706d9df3358b12d54b4d90
Certificate serial: 0185391EFC15C4204169511510F52D42C8E5
Authority key identifier: 0B:CF:72:1C:71:C8:AE:7C:AF:70:6D:9D:F3:35:8B:12:D5:4B:4D:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C89yHHHIrnyvcG2d8zWLEtVLTZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/Yduaufb49vMzp3uq2DUzZBxEC28.roa
Signing time: Thu 22 Dec 2022 09:16:49 +0000
ROA not before: Thu 22 Dec 2022 09:16:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1234
IP address blocks: 193.110.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:1e:fc:15:c4:20:41:69:51:15:10:f5:2d:42:c8:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bcf721c71c8ae7caf706d9df3358b12d54b4d90
Validity
Not Before: Dec 22 09:16:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61db9ab9f6f8f6f333a77baad83533641c440b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:f5:94:6d:f3:b1:53:07:82:df:64:d0:3f:
d0:b3:40:9d:d4:09:01:b3:11:4e:3f:a7:2d:75:47:
95:b3:7a:d4:bd:de:fc:9d:f2:b2:42:75:52:0b:a2:
c4:ca:30:47:1d:f3:68:3c:4e:89:3a:56:62:3d:70:
6c:ce:74:ab:cf:e9:67:60:c9:f0:4a:b3:3b:6b:8a:
7e:f7:95:1e:0a:cc:fd:35:3c:06:1d:27:c8:2b:9a:
ef:8a:78:ff:c8:02:c8:4a:9e:f4:30:c6:94:be:24:
e0:c3:92:30:68:9a:af:07:c9:30:e6:c8:3f:25:d7:
68:a5:f4:a2:5b:ea:4d:92:9d:31:dd:b1:37:93:d1:
43:34:2a:f3:29:ea:67:cd:5e:d1:64:7e:2f:6f:69:
c6:93:71:16:64:06:1d:3e:c3:3a:d3:d8:f0:e8:00:
1c:a0:5d:92:3c:79:ca:be:98:21:d7:ad:0d:1e:c6:
ca:ad:73:e0:b2:5b:41:dc:d5:92:4f:7b:22:46:2c:
54:29:ca:98:42:eb:b5:ed:8c:9c:3e:50:22:ec:49:
bf:2e:30:32:ad:90:a2:d3:4e:b0:24:4c:22:7a:49:
3b:f5:8c:18:e5:54:a3:a1:6b:72:19:48:84:ed:60:
19:bd:bb:95:07:13:ff:23:99:f9:20:b4:de:80:af:
8c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DB:9A:B9:F6:F8:F6:F3:33:A7:7B:AA:D8:35:33:64:1C:44:0B:6F
X509v3 Authority Key Identifier:
keyid:0B:CF:72:1C:71:C8:AE:7C:AF:70:6D:9D:F3:35:8B:12:D5:4B:4D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C89yHHHIrnyvcG2d8zWLEtVLTZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/Yduaufb49vMzp3uq2DUzZBxEC28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/C89yHHHIrnyvcG2d8zWLEtVLTZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.32.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:12:f1:aa:43:52:0a:1a:6f:aa:6a:55:86:61:cd:fe:3d:fc:
13:47:74:fd:f7:59:02:7f:c5:1a:67:c6:2d:64:38:36:a4:55:
41:2a:fc:b1:76:81:02:d7:42:ff:3f:68:cc:8c:4e:97:42:4c:
67:e1:56:9c:af:5d:08:4b:fb:8d:39:71:bb:7e:29:48:88:3f:
33:ec:eb:94:5a:50:ac:b2:b9:1b:bf:5a:fc:e2:e1:ad:59:8e:
79:3c:42:d9:8f:5a:5b:76:48:3a:24:49:aa:50:a5:6d:e9:58:
39:c4:db:77:ee:c9:44:af:e8:58:f8:10:15:81:91:e3:a3:5a:
ff:64:5d:bf:8a:22:f7:5b:a6:f2:3c:b5:ae:36:82:29:c1:7e:
2b:70:65:0a:58:28:48:fa:fa:1c:18:16:89:66:b6:4f:ba:e6:
e0:c1:e1:69:e2:e7:94:51:35:b8:0f:fe:e8:6e:ee:91:bf:bf:
3b:e4:88:e5:85:a5:19:34:55:19:3f:d1:4a:3f:f0:ca:40:f7:
19:6d:b7:b8:2f:d4:7e:92:c3:c2:17:e5:64:ed:82:b2:7c:ed:
08:63:21:5c:cb:53:90:02:36:18:47:16:dc:b3:b2:01:c8:f9:
38:07:8e:a2:ea:29:bd:5c:53:84:b5:13:4e:1a:0b:bc:f1:1b:
d6:f2:0e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:29 2024 by rpki-client on console-fra.rpki-client.org