Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/yDOma60RbwxDGeAABO3aneWHUs4.roa
File: yDOma60RbwxDGeAABO3aneWHUs4.roa (raw, json)
Hash identifier: zfmrhAKdP9sxMyC9zWr0oWiuuDatRQHu+J3ZIR2K3Wo=
Subject key identifier: C8:33:A6:6B:AD:11:6F:0C:43:19:E0:00:04:ED:DA:9D:E5:87:52:CE
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 08C69C0B
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/yDOma60RbwxDGeAABO3aneWHUs4.roa
Signing time: Wed 13 Apr 2022 18:04:30 +0000
ROA not before: Wed 13 Apr 2022 18:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42898
IP address blocks: 185.73.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147233803 (0x8c69c0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Apr 13 18:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c833a66bad116f0c4319e00004edda9de58752ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b2:61:b5:21:f5:a6:68:a5:38:18:ee:b6:41:
18:65:84:f9:0a:89:92:7d:85:a3:e1:89:ec:c0:e9:
d6:7e:f7:ab:6c:6f:25:dd:c3:de:05:80:1e:5c:2c:
3f:26:aa:7a:5f:08:0b:73:68:77:52:b6:1c:43:d5:
43:d1:06:9b:40:49:b8:a7:09:c1:76:e1:64:b5:e3:
a2:4a:2a:4a:59:ef:26:78:35:9f:36:e1:dc:62:cc:
76:de:cb:e7:b5:83:75:ec:f6:13:8e:b0:32:e0:6e:
b4:2c:79:f0:a5:7e:e1:50:d8:bb:76:67:40:eb:4a:
6a:d3:50:e9:e2:ef:0e:67:90:46:ec:4f:23:0b:97:
4c:87:0b:72:17:6a:4c:68:b2:ce:9f:4b:fd:18:4c:
89:9c:5c:b4:85:ea:51:e2:e9:88:13:7f:ba:c0:84:
80:75:cc:9e:a3:53:37:ed:59:20:82:7d:f8:0f:77:
53:a8:af:f6:25:1d:91:8e:d9:de:fe:c5:a7:8b:64:
15:f9:16:1d:55:a3:3d:3a:36:c3:e2:40:68:69:01:
69:cf:e6:06:51:85:4d:cf:8c:a1:2e:fc:56:93:a4:
b1:8f:4d:50:9c:6b:8a:60:7e:e9:fe:a3:66:cc:5b:
0f:aa:ee:ff:01:66:13:a5:b0:d7:bb:05:87:cd:a8:
91:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:33:A6:6B:AD:11:6F:0C:43:19:E0:00:04:ED:DA:9D:E5:87:52:CE
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/yDOma60RbwxDGeAABO3aneWHUs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.243.0/24
Signature Algorithm: sha256WithRSAEncryption
83:b7:f4:eb:43:a5:d8:ad:18:27:e1:6c:b9:e1:96:2d:af:d8:
de:d4:83:18:98:a1:e4:92:a1:60:a5:65:34:33:3b:3c:e0:df:
09:93:ab:e3:15:e2:8b:a4:48:cd:2b:5a:e8:7e:dd:d0:ec:55:
11:7e:c6:20:c7:8d:05:18:9c:2f:cd:b0:9b:4a:8d:a0:33:1f:
39:57:17:61:df:30:8c:d7:80:1d:12:fd:a7:75:e5:49:c1:b6:
28:ce:ea:76:2c:92:b5:a6:99:f5:ae:8b:60:19:c4:fe:82:c4:
03:74:b7:49:be:6c:63:06:77:56:e3:07:28:a0:9c:7b:fd:af:
78:d9:b5:0c:67:2a:a7:e5:b1:a0:97:36:66:5c:14:37:5a:58:
40:79:35:aa:bb:f8:65:57:99:9a:92:9b:2f:3b:74:25:26:52:
ed:18:53:17:5a:57:4c:14:89:c2:75:6a:53:67:0d:a2:3d:3c:
66:bd:04:d5:ba:a1:64:88:51:5c:f6:12:43:15:f1:bc:65:85:
4e:8c:34:33:16:5c:4e:e3:4d:44:f4:a9:07:a3:26:fa:79:0a:
02:46:43:86:8a:eb:55:87:61:81:77:7f:d9:b9:b4:3e:12:da:
87:97:73:45:61:09:c7:84:84:3c:96:34:b9:b3:91:12:d5:f8:
88:01:58:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:06 2023 by rpki-client on console-fra.rpki-client.org