Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/yum3vbrs7YhFRSg47cETU_FVyAM.roa
File: yum3vbrs7YhFRSg47cETU_FVyAM.roa (raw, json)
Hash identifier: xy9Kvl18wTCiorexZg0zwa4QIgItLBYV8c9usMOqamI=
Subject key identifier: CA:E9:B7:BD:BA:EC:ED:88:45:45:28:38:ED:C1:13:53:F1:55:C8:03
Certificate issuer: /CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Certificate serial: 08354DD9
Authority key identifier: 9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/yum3vbrs7YhFRSg47cETU_FVyAM.roa
Signing time: Mon 24 Jan 2022 07:59:50 +0000
ROA not before: Mon 24 Jan 2022 07:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45000
IP address blocks: 193.0.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137711065 (0x8354dd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Validity
Not Before: Jan 24 07:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cae9b7bdbaeced8845452838edc11353f155c803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:52:07:40:c4:9b:48:b4:0a:e5:f5:43:c8:43:
ae:75:c5:d3:f8:3c:6b:3b:00:15:5f:ab:d3:fd:65:
b5:e1:23:03:6f:a6:75:0c:5d:5a:ca:b9:71:e6:44:
21:d6:28:65:8d:19:4a:10:47:e2:88:c1:ee:23:a3:
0d:b8:01:22:88:c7:87:36:f1:f9:7b:c6:99:20:14:
c5:a8:8f:33:08:ab:2f:29:0b:15:11:c0:c5:0d:d2:
6e:3c:69:e5:f2:2e:b9:36:17:d3:a2:2b:a6:09:c2:
dc:66:af:32:a8:49:3c:12:50:71:68:19:80:e5:b6:
5c:08:1f:52:97:1a:47:b9:28:f5:71:33:a5:7e:7f:
b9:5f:c3:ad:d1:37:c4:73:e7:f2:ca:c9:5e:b4:f5:
05:41:22:25:81:9c:32:d3:9d:58:f0:ff:b6:8f:53:
91:6e:f3:07:af:25:60:d1:31:49:75:1d:80:39:08:
b8:17:98:38:cb:73:b2:ee:45:d2:9a:95:29:c5:0e:
23:91:49:a9:46:1e:a9:e0:3a:bc:b5:a8:a1:61:cc:
f5:e4:e5:9c:f9:b4:60:95:2c:79:41:2e:8a:59:5d:
32:de:0f:9f:59:0c:33:20:75:ee:3b:65:18:5e:41:
20:af:f9:26:bb:d1:20:c2:ae:4e:01:1a:b2:2c:b8:
33:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E9:B7:BD:BA:EC:ED:88:45:45:28:38:ED:C1:13:53:F1:55:C8:03
X509v3 Authority Key Identifier:
keyid:9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/yum3vbrs7YhFRSg47cETU_FVyAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/mlJqc86Pn2LBShGi6pE-wnPVjEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.185.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:64:42:bd:9e:89:52:ff:2a:a4:62:5e:23:59:5e:f5:60:d8:
2a:fe:ef:af:4c:f6:32:1c:e0:ac:02:cb:41:5b:cc:16:cd:ff:
7c:67:0e:fb:8d:c7:10:2f:d2:5f:f6:2e:ee:13:9e:2c:88:c3:
75:3d:37:d2:27:e1:09:58:fa:c3:24:f5:26:4a:46:d8:7d:a0:
0c:c7:8d:b7:1b:99:84:2a:e5:c7:60:3b:49:0c:9a:f6:4f:bd:
08:9d:99:3e:e7:d3:cc:98:ec:1d:36:a6:20:bf:ed:1d:57:16:
a2:48:dc:a9:41:3d:94:66:ca:5b:1c:56:72:a2:c7:f7:f3:79:
0e:dc:98:47:b9:5a:1b:a3:f4:84:de:aa:bd:c2:3e:00:2f:d0:
5b:dc:59:ee:c5:9b:13:ab:7a:a8:a2:f4:4c:6c:af:be:47:39:
36:37:89:c3:88:80:34:4a:db:43:00:7e:f1:fb:c8:2d:af:8a:
c2:db:e5:c8:e9:21:85:74:08:bd:1f:ef:03:4a:84:fc:1a:8f:
5f:81:95:e4:05:d9:43:70:ff:df:bb:58:d8:6b:0e:31:7a:7c:
42:b8:62:da:f1:83:34:80:03:71:64:fa:a8:3c:e8:99:32:b2:
49:fe:f7:b3:38:cd:56:35:b4:99:42:8c:34:cb:18:94:73:14:
b5:62:4f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:51 2023 by rpki-client on console-ams.rpki-client.org