Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/y-shdQDCPYx5dK2cH4QpxbcRc8A.roa
File: y-shdQDCPYx5dK2cH4QpxbcRc8A.roa (raw, json)
Hash identifier: EosNFth+lpOlJTcW2ap0HHX/NBJekAH5Zj3Yj1ZAZtM=
Subject key identifier: CB:EB:21:75:00:C2:3D:8C:79:74:AD:9C:1F:84:29:C5:B7:11:73:C0
Certificate issuer: /CN=04268ae40737536a464c28493eaf503db9a18f20
Certificate serial: 05649D98
Authority key identifier: 04:26:8A:E4:07:37:53:6A:46:4C:28:49:3E:AF:50:3D:B9:A1:8F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCaK5Ac3U2pGTChJPq9QPbmhjyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/y-shdQDCPYx5dK2cH4QpxbcRc8A.roa
Signing time: Sat 01 Jan 2022 15:05:31 +0000
ROA not before: Sat 01 Jan 2022 15:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.134.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90480024 (0x5649d98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04268ae40737536a464c28493eaf503db9a18f20
Validity
Not Before: Jan 1 15:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbeb217500c23d8c7974ad9c1f8429c5b71173c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:3b:a2:c0:e2:49:09:bc:14:28:13:ed:6d:
46:6a:4c:27:34:72:cc:d2:e0:95:8a:bb:18:32:9c:
ea:30:a4:04:53:06:6a:df:e3:59:83:3c:e2:1b:bd:
5b:e7:2a:56:63:d8:23:e9:29:8d:97:63:8d:d6:cc:
58:43:57:bf:a8:c4:de:d3:bc:e4:3b:a2:54:98:cf:
68:73:bc:56:f9:7d:6b:d4:66:ab:4d:b3:76:23:40:
33:24:a8:49:d5:a9:e4:41:fa:1f:70:1c:9e:bb:59:
4f:63:b0:f7:fd:51:92:3d:c6:a2:23:40:38:b0:f4:
40:14:b6:15:f4:6c:b0:77:6b:60:fd:e2:d8:ad:ef:
2d:c6:6d:9a:64:d4:25:06:8d:b7:3a:9b:85:45:f7:
37:f0:d5:6b:e7:97:4d:f3:1f:4e:63:56:1b:f9:7f:
18:68:39:0c:af:86:67:c9:95:bf:36:50:3b:0f:69:
bb:04:9d:1b:33:6f:b6:f7:70:44:b1:c5:e9:4b:e9:
62:0d:93:9b:7a:0a:16:0a:86:c2:9f:87:50:77:a6:
f5:ca:8e:17:b4:58:a1:e0:55:32:10:d7:d8:13:8c:
5e:7e:58:c8:5f:e2:19:a7:21:8f:39:b5:7d:1d:b9:
d5:f6:8a:1b:39:cb:3f:54:73:22:fb:a4:c7:11:35:
0d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EB:21:75:00:C2:3D:8C:79:74:AD:9C:1F:84:29:C5:B7:11:73:C0
X509v3 Authority Key Identifier:
keyid:04:26:8A:E4:07:37:53:6A:46:4C:28:49:3E:AF:50:3D:B9:A1:8F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCaK5Ac3U2pGTChJPq9QPbmhjyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/y-shdQDCPYx5dK2cH4QpxbcRc8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/796823-6d81-4d91-b664-e0abd4d84571/1/BCaK5Ac3U2pGTChJPq9QPbmhjyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.79.0/24
Signature Algorithm: sha256WithRSAEncryption
36:7c:d7:ef:30:0d:c0:73:30:49:39:75:c1:fc:50:d9:e3:de:
96:c6:27:93:b8:dc:04:1f:47:00:97:b6:f7:c9:d3:1d:a0:20:
7b:a6:40:c0:fe:d1:cd:3e:29:3f:6b:09:60:85:b8:38:07:46:
76:74:37:93:64:94:da:9e:94:3f:0f:64:14:08:d7:da:1f:41:
6d:e5:10:30:0d:a9:fe:63:bf:e4:56:19:e5:0c:9e:7c:b7:88:
10:8f:68:2f:be:d2:58:e6:eb:dd:97:52:fc:3a:80:51:6a:07:
5c:a7:3e:01:08:00:2b:55:c3:57:8a:ad:d8:a1:ff:66:c2:57:
ad:2f:14:0d:98:9d:b1:97:2b:44:c8:e7:fc:26:61:3b:32:a6:
60:f6:ef:9d:a1:8f:4b:66:13:ed:eb:5e:2b:15:72:f7:89:ae:
6c:6f:f3:6a:6c:c9:f1:61:c6:ba:45:f0:82:f6:a3:a6:ce:6a:
10:32:5b:62:c2:c1:a7:9b:2d:e9:61:1a:d9:29:da:ff:41:a8:
8b:76:9c:e4:af:43:8c:e6:78:ea:96:03:fd:93:43:95:e8:20:
4e:07:c8:96:17:aa:ee:f8:e1:6c:4d:6d:7a:cd:ac:63:3c:7e:
c2:6a:9a:c9:a5:60:3f:48:a7:a7:af:86:03:d4:de:a1:fb:9a:
f3:04:1e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:43 2023 by rpki-client on console-fra.rpki-client.org