Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/08YdMaP1O7rpDIztw08YX-7LroA.roa
File: 08YdMaP1O7rpDIztw08YX-7LroA.roa (raw, json)
Hash identifier: clrQeVuPx4WilDMokxQwLcvqAJhjHC4PcnJqcaXIKaM=
Subject key identifier: D3:C6:1D:31:A3:F5:3B:BA:E9:0C:8C:ED:C3:4F:18:5F:EE:CB:AE:80
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0773AC33
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/08YdMaP1O7rpDIztw08YX-7LroA.roa
Signing time: Wed 06 Apr 2022 20:43:23 +0000
ROA not before: Wed 06 Apr 2022 20:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210472
IP address blocks: 194.26.172.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125021235 (0x773ac33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 6 20:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3c61d31a3f53bbae90c8cedc34f185feecbae80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:02:70:b9:34:df:d9:59:12:90:e7:40:83:4d:
8f:25:c7:3d:e3:09:ad:1c:ec:4a:51:ea:00:be:83:
5f:e9:cf:3f:2d:02:aa:7d:f8:b6:58:58:fb:7c:cb:
b9:9e:6d:09:3a:f5:ea:5d:97:fa:8c:a9:0f:ab:30:
95:d5:eb:cf:88:62:5b:8c:d1:e2:3d:54:28:06:58:
67:f9:12:a6:5e:9f:92:7c:5b:4c:77:07:bf:5c:62:
10:fa:1a:51:bb:07:8f:6f:7c:47:3b:e0:aa:4e:8f:
7c:ba:51:0b:ef:22:06:24:56:a0:60:79:18:90:77:
26:bf:21:c6:5d:eb:da:55:7f:f4:b9:54:7a:ce:bf:
c3:30:42:b8:3c:04:e1:77:e9:3f:dd:b1:c0:0c:f0:
45:67:a5:96:99:64:d7:be:f7:de:c6:07:f0:53:de:
7b:1b:7b:9e:50:ec:94:3f:67:4a:8e:33:a8:07:2f:
9c:85:59:7e:94:20:80:d5:7f:49:b6:7b:fa:b0:2a:
94:c7:86:cf:4d:84:01:6c:ea:43:e9:34:33:cb:fa:
6e:53:84:e7:1e:45:7c:7d:b9:58:42:44:8e:ff:9c:
71:d5:d5:3c:7e:47:5d:7f:75:98:38:f2:d7:39:e1:
ef:43:01:f7:ee:49:40:2e:ab:11:b5:7f:c0:6a:65:
62:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C6:1D:31:A3:F5:3B:BA:E9:0C:8C:ED:C3:4F:18:5F:EE:CB:AE:80
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/08YdMaP1O7rpDIztw08YX-7LroA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.172.0/23
Signature Algorithm: sha256WithRSAEncryption
80:20:0f:a3:b7:40:1f:12:36:27:23:73:61:88:32:5d:ef:ac:
b5:25:29:ea:4f:66:07:ef:95:3b:8a:fd:39:18:1a:fc:8e:55:
5e:a8:83:3e:9b:61:e5:f1:82:37:59:a2:66:82:1a:73:06:00:
b7:a3:e7:f0:38:dc:53:19:54:55:e6:ab:7c:8e:46:55:98:cb:
d0:c0:49:b5:cd:d8:0b:79:b4:6d:f6:dc:d5:d7:d4:68:87:40:
66:1e:2d:c4:29:e2:80:16:ac:1a:fb:b1:dd:c6:c8:e4:44:48:
10:8f:44:21:c1:d7:2b:e5:01:c1:ea:b6:34:96:04:9d:07:ff:
bd:d3:9e:5c:7f:39:7a:a1:b1:72:d3:51:8b:6e:33:e7:47:01:
40:4c:19:e8:77:62:f0:1a:f8:dc:9c:d2:9d:81:86:1d:f6:70:
83:5e:cf:5a:c7:67:c4:51:44:cb:9b:9a:f6:8f:88:bf:42:84:
19:5a:61:80:b6:6d:f2:cc:86:56:29:db:57:8c:0e:03:7f:22:
65:7b:5f:59:ba:37:7a:01:b3:dd:9f:af:21:39:c1:b9:fe:89:
47:d5:77:71:83:74:d8:fc:d9:4c:e4:c3:65:85:5c:8a:b4:26:
64:b6:08:27:ed:00:fa:9a:a2:6e:ef:8d:06:9b:01:cd:1e:1b:
f3:56:ba:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org