Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/YdlL9R8EsEWvJHImE5JO2syCsNw.roa
File: YdlL9R8EsEWvJHImE5JO2syCsNw.roa (raw, json)
Hash identifier: pt3rINtCCRu0dl0F4vqCXCITNu0h/MieVoijhNMKczg=
Subject key identifier: 61:D9:4B:F5:1F:04:B0:45:AF:24:72:26:13:92:4E:DA:CC:82:B0:DC
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17FA7C91
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/YdlL9R8EsEWvJHImE5JO2syCsNw.roa
Signing time: Sat 01 Jan 2022 04:54:57 +0000
ROA not before: Sat 01 Jan 2022 04:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396006
IP address blocks: 85.208.154.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402291857 (0x17fa7c91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61d94bf51f04b045af24722613924edacc82b0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:06:37:96:07:18:73:c3:b0:ac:32:cb:e2:02:
37:8f:c4:44:1d:09:7c:9b:95:43:20:81:79:a7:ff:
60:bb:ab:b8:56:7c:49:7b:2a:60:35:1a:ff:9d:35:
8f:bb:87:4a:9e:bf:39:85:5f:22:e2:cc:21:93:d5:
27:33:72:95:7e:50:d8:39:7d:a1:5a:da:f2:a6:8d:
84:a5:56:4d:b2:16:b2:11:e5:a0:a1:77:bf:bc:7a:
17:52:da:98:e2:98:75:26:e1:0d:4e:12:2d:a6:3d:
ae:c0:62:ae:28:67:4d:2f:00:b2:4d:89:70:a0:1e:
95:c8:38:a5:87:ec:e2:58:fc:09:1b:8a:f4:02:90:
c3:ec:68:b1:8e:ac:fe:c0:3d:18:87:bb:49:f0:1f:
cc:3c:f7:a8:08:d3:e1:63:b7:3e:ad:36:e6:11:5e:
0f:11:f8:bd:c5:60:d3:fa:cb:c9:4b:5f:03:7e:99:
79:f5:e0:77:29:e9:f8:b9:a2:05:23:23:94:50:3b:
c9:b4:a9:fc:af:07:9c:89:c5:01:98:2a:54:8f:28:
86:2d:65:8a:2f:be:2d:93:05:57:bd:66:e0:9a:bd:
32:18:6e:80:be:cf:f0:97:fc:2a:cc:13:5c:bb:ea:
9f:66:a4:67:d2:2d:8c:6e:46:84:cc:5d:d8:14:5c:
02:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D9:4B:F5:1F:04:B0:45:AF:24:72:26:13:92:4E:DA:CC:82:B0:DC
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/YdlL9R8EsEWvJHImE5JO2syCsNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.154.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:41:75:cf:fd:35:72:a5:94:c4:bc:ef:c5:52:40:5f:eb:e2:
87:ae:f2:62:46:bb:13:26:2a:6c:83:3d:bc:33:08:af:8f:3e:
21:b6:7e:cf:b0:37:be:39:bb:72:60:2c:4a:e6:f7:70:04:63:
86:77:a7:87:6d:83:b9:32:11:4e:e7:54:d1:cd:d0:01:a3:d7:
1f:f5:01:e8:ca:70:66:0b:5a:50:4c:95:f8:c5:61:b4:09:40:
18:d7:ec:09:07:1b:ac:6a:db:35:a9:14:84:a3:7d:07:1c:d8:
87:55:40:c8:be:50:7c:79:2b:14:d9:7a:1f:b2:fd:c5:d7:6c:
8b:b0:0b:75:59:8c:7c:96:8f:1b:79:97:6e:64:b6:56:4e:b8:
f1:1e:e1:71:e8:e8:f7:f8:4b:c0:88:2a:16:ed:bb:54:f1:0e:
b8:5b:7f:4b:87:6f:eb:b5:ad:1d:7c:f9:5f:e5:14:11:7e:08:
e7:91:47:d9:b6:bb:ce:0a:23:a9:ec:43:70:2f:f7:c4:23:d6:
b3:a2:09:47:5b:b6:92:5e:4a:ca:2b:4a:eb:79:a4:81:f7:e6:
6c:f8:b9:45:f5:83:9d:f7:5e:d2:9b:7a:33:6c:1f:e3:a1:62:
aa:64:b3:50:08:35:ce:8f:81:ab:46:bc:a2:81:93:19:b5:30:
fa:67:87:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org