Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/ygdKDo3uZgoe0LAcczm7xgL1fpI.roa
File: ygdKDo3uZgoe0LAcczm7xgL1fpI.roa (raw, json)
Hash identifier: m3ziBd13VBN5bEbgyF9iaY3j4bEfCOSGa9BidOvaBSg=
Subject key identifier: CA:07:4A:0E:8D:EE:66:0A:1E:D0:B0:1C:73:39:BB:C6:02:F5:7E:92
Certificate issuer: /CN=fdd7002bf3a2eacfc881d5e1a0211098c669956c
Certificate serial: 01537E84
Authority key identifier: FD:D7:00:2B:F3:A2:EA:CF:C8:81:D5:E1:A0:21:10:98:C6:69:95:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dcAK_Oi6s_IgdXhoCEQmMZplWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/ygdKDo3uZgoe0LAcczm7xgL1fpI.roa
Signing time: Sat 01 Jan 2022 05:03:10 +0000
ROA not before: Sat 01 Jan 2022 05:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29273
IP address blocks: 193.41.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22249092 (0x1537e84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd7002bf3a2eacfc881d5e1a0211098c669956c
Validity
Not Before: Jan 1 05:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca074a0e8dee660a1ed0b01c7339bbc602f57e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bd:e3:d0:98:58:3e:13:38:78:07:2f:37:93:
f5:3b:5d:55:89:c4:ec:fd:a9:60:c6:f2:d7:dc:00:
f5:93:a2:03:0b:ab:e4:34:33:8e:eb:5d:98:53:4c:
76:f0:43:4a:20:05:79:46:b3:90:09:d0:21:48:62:
4c:44:59:3c:53:18:c7:dd:c1:82:73:de:4f:46:34:
c1:31:43:a7:5f:10:bf:50:be:e0:98:90:3d:ed:31:
fa:67:10:bf:bf:d3:24:5d:50:59:9d:12:bc:c9:b7:
e6:f0:04:2d:f5:5f:90:bb:c5:69:3f:c4:2b:0a:58:
76:ff:c2:18:89:37:d1:2f:97:03:64:ee:1e:26:06:
37:8e:d5:8f:64:d3:59:86:ba:5b:3b:22:23:b9:7d:
cc:b4:6f:f9:ca:0f:87:74:de:82:ef:d0:29:18:26:
cf:a6:6f:16:27:ae:d7:47:f7:52:ab:cc:81:43:ff:
65:58:e7:1d:9f:8f:cc:e2:e5:10:c4:f8:c1:c8:ee:
fb:b3:9e:f7:55:47:de:68:bb:8d:10:b4:88:55:a0:
99:bc:f8:c6:4f:6b:cf:0a:1d:d1:75:bc:eb:ad:30:
07:5a:c0:11:3b:36:b7:d9:e3:a1:f9:b6:58:b9:50:
47:3f:ac:2f:54:51:5a:c2:88:1f:6b:03:39:bc:7f:
3e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:07:4A:0E:8D:EE:66:0A:1E:D0:B0:1C:73:39:BB:C6:02:F5:7E:92
X509v3 Authority Key Identifier:
keyid:FD:D7:00:2B:F3:A2:EA:CF:C8:81:D5:E1:A0:21:10:98:C6:69:95:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dcAK_Oi6s_IgdXhoCEQmMZplWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/ygdKDo3uZgoe0LAcczm7xgL1fpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/101bcf-d1df-47c4-a2eb-2161ff47881c/1/_dcAK_Oi6s_IgdXhoCEQmMZplWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.36.0/24
Signature Algorithm: sha256WithRSAEncryption
63:37:58:29:94:db:80:45:72:eb:51:f1:76:03:24:ac:87:71:
52:5d:52:6b:22:57:7c:70:f1:be:a1:1b:2f:aa:92:ec:83:dc:
a2:48:6b:55:4b:d5:48:e0:e2:ed:63:00:46:3d:5f:59:bb:8f:
84:e2:d8:7a:36:43:42:22:80:3a:6b:ee:45:4e:ff:3a:dc:0d:
68:fb:22:2e:d7:3f:04:c4:7c:6a:02:45:21:21:9e:e2:72:4f:
d3:dc:62:94:b6:12:99:86:5a:56:b4:c4:33:16:83:3a:91:57:
a5:a3:9f:13:e1:e7:da:65:b0:4a:30:47:5a:45:d0:36:28:eb:
6d:10:d8:c1:c3:85:1d:bc:a1:fb:0f:0b:bc:86:99:f7:2a:5b:
d0:39:9b:c3:1c:b7:ce:2f:8c:35:51:d9:49:a6:d9:97:0d:7f:
0f:59:29:a3:1d:51:3f:80:11:67:27:58:a7:44:d6:05:29:7b:
3c:55:15:db:be:67:08:9f:cc:18:94:08:ec:35:4e:89:95:db:
57:73:dc:1e:aa:0d:98:f0:94:54:9a:97:f5:63:0f:62:2f:31:
ca:5e:1b:67:84:c3:e5:b4:7d:27:84:df:d7:3e:14:d8:cd:52:
66:3d:9b:27:95:eb:55:14:f5:1b:1f:4a:b4:0e:7e:5e:d2:58:
e6:87:09:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:52 2024 by rpki-client on console-fra.rpki-client.org