Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/YVUS7qVdRE39n7qpe39drGtlKfU.roa
File: YVUS7qVdRE39n7qpe39drGtlKfU.roa (raw, json)
Hash identifier: kwI/kZCjTDu+acsffFRMMZbYlF+WNwk/PVa+qWcioSI=
Subject key identifier: 61:55:12:EE:A5:5D:44:4D:FD:9F:BA:A9:7B:7F:5D:AC:6B:65:29:F5
Certificate issuer: /CN=0b84ea549f88211058b34bfcab0640c3030393c3
Certificate serial: 06CA4A18
Authority key identifier: 0B:84:EA:54:9F:88:21:10:58:B3:4B:FC:AB:06:40:C3:03:03:93:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/YVUS7qVdRE39n7qpe39drGtlKfU.roa
Signing time: Sat 01 Jan 2022 07:52:28 +0000
ROA not before: Sat 01 Jan 2022 07:52:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203408
IP address blocks: 185.237.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113920536 (0x6ca4a18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b84ea549f88211058b34bfcab0640c3030393c3
Validity
Not Before: Jan 1 07:52:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=615512eea55d444dfd9fbaa97b7f5dac6b6529f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bb:95:46:f0:67:07:aa:9b:13:56:ef:d6:e7:
e3:10:0e:de:a4:59:18:c2:5f:26:8b:dc:03:cd:e2:
32:c8:c9:bf:04:f4:c9:1b:6a:31:7b:3e:75:6f:86:
35:9a:10:43:0b:56:22:c3:90:f5:4d:65:c6:4b:39:
36:3a:14:c9:13:d0:16:d1:a0:0f:13:f9:95:ed:41:
c9:64:70:3b:4b:56:07:a7:ee:84:18:c6:44:b5:65:
c7:cf:fc:0f:8c:eb:f3:9d:cf:66:37:b2:e9:85:01:
73:ee:1e:0b:51:b6:e3:4c:c2:55:13:b8:98:11:fe:
14:8c:b6:17:30:1c:df:8f:9a:e7:d0:f9:99:9b:2c:
f2:1e:1f:40:a8:55:96:d3:8e:54:9f:46:46:8f:fb:
f7:7e:b2:cc:07:89:15:cb:69:65:ee:71:a1:f7:6a:
ef:89:d3:ec:98:0e:31:36:1e:2c:76:56:ce:de:bd:
27:37:5b:d5:37:97:ae:ec:39:b0:28:c2:45:83:da:
04:7b:2a:8f:ef:6a:52:68:10:ce:5e:53:c8:34:38:
27:36:71:53:f5:91:70:45:bf:88:83:9f:42:b3:b3:
76:c4:5f:77:b3:28:c5:aa:dc:f6:ab:8c:94:ed:bb:
fa:c5:40:b2:70:7d:bf:ec:e5:f6:6d:f4:37:a3:3e:
84:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:55:12:EE:A5:5D:44:4D:FD:9F:BA:A9:7B:7F:5D:AC:6B:65:29:F5
X509v3 Authority Key Identifier:
keyid:0B:84:EA:54:9F:88:21:10:58:B3:4B:FC:AB:06:40:C3:03:03:93:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/YVUS7qVdRE39n7qpe39drGtlKfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/2fc167-b357-4394-b4e8-c825be2813bc/1/C4TqVJ-IIRBYs0v8qwZAwwMDk8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.161.0/24
Signature Algorithm: sha256WithRSAEncryption
54:6f:e0:76:b9:09:a7:cd:f0:c1:cf:88:7e:ba:57:de:33:bd:
1d:43:16:7b:d4:a9:70:1d:25:12:de:fc:6a:2a:fc:41:82:bb:
d7:7d:2d:f8:af:e0:3b:6e:65:be:33:75:75:77:18:77:2a:6a:
42:1b:d8:57:15:87:2d:ca:53:e7:95:0b:d0:c8:ad:d7:b4:81:
a0:b4:4c:f6:3f:d4:7c:01:d7:62:4c:07:7e:85:a0:70:2f:4a:
bd:02:e3:c6:70:83:6c:82:80:5c:e1:0f:8c:a5:57:cf:49:c0:
2f:e7:00:43:d9:30:c9:ba:17:c1:41:58:66:92:ff:a6:04:af:
14:85:b4:96:70:15:41:7b:43:a2:6b:47:87:e7:75:05:5b:53:
33:4a:b5:1c:70:b7:3a:a9:c4:e6:8f:9b:2e:18:f0:43:b5:4a:
9d:84:6b:a7:da:97:b9:69:e2:fd:30:76:84:8a:ed:87:b1:f9:
a0:68:c6:12:4f:3e:75:df:50:a5:5f:36:2e:f9:39:db:a0:87:
6b:84:3d:db:a0:92:a2:21:81:6f:1a:12:a7:35:2c:e0:13:9e:
de:20:ba:d3:39:67:c7:6b:a6:ce:c3:e7:6c:15:bc:87:8e:22:
b0:9c:f1:c0:4f:21:ba:ea:4f:9b:40:37:b1:84:09:0d:29:e9:
8f:9a:b8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org