Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/yp1_dOisSsjBBZ7zegX9cc3wYBs.roa
File: yp1_dOisSsjBBZ7zegX9cc3wYBs.roa (raw, json)
Hash identifier: BFkJNNURhLEXkeZwhjuukTs8wAP/pCJ/m8L+CjSL1G8=
Subject key identifier: CA:9D:7F:74:E8:AC:4A:C8:C1:05:9E:F3:7A:05:FD:71:CD:F0:60:1B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 192E9449
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/yp1_dOisSsjBBZ7zegX9cc3wYBs.roa
Signing time: Wed 16 Mar 2022 15:15:51 +0000
ROA not before: Wed 16 Mar 2022 15:15:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13830
IP address blocks: 185.251.233.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422483017 (0x192e9449)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 16 15:15:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca9d7f74e8ac4ac8c1059ef37a05fd71cdf0601b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cd:53:e5:d6:61:4d:29:7d:43:8e:0e:e9:d1:
0c:7f:11:9f:5b:1d:d5:f9:42:b4:7d:88:60:d1:22:
e6:1f:23:de:00:7b:8d:fd:5d:f9:dd:77:22:f9:2a:
ef:49:ec:a8:d6:5a:18:ca:cc:21:a4:75:ee:c3:ae:
da:19:50:59:db:85:f2:fc:de:6d:c7:2a:68:3c:f6:
ae:84:bf:52:3e:40:4e:48:fb:e1:fb:eb:3d:54:f9:
95:56:f4:0b:67:68:95:87:3a:ad:57:d4:75:96:db:
0e:70:f0:ee:4f:14:e1:51:ae:89:9e:68:f6:2e:26:
50:3a:a7:23:89:d7:94:94:3f:04:6a:ee:01:16:b9:
99:85:c6:d8:e7:19:8c:1c:fb:86:fb:66:64:e5:cc:
a2:d5:77:f9:3e:4c:68:61:f0:da:50:00:aa:ea:19:
b6:46:f5:f3:3e:3d:54:f6:de:62:24:f6:ba:44:5a:
86:ac:e7:35:21:e5:46:75:55:7e:b9:56:e6:1e:1a:
6d:08:b9:c9:9b:3d:5f:2c:00:bf:b9:eb:41:54:8d:
24:d6:ee:3e:c8:a0:9a:06:4e:c8:b4:e6:fc:65:aa:
f0:ed:27:ca:02:d8:c9:e4:f7:5a:31:a2:af:46:eb:
72:8b:51:f9:6b:72:42:a7:d5:0b:a1:cf:0f:b9:e4:
07:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9D:7F:74:E8:AC:4A:C8:C1:05:9E:F3:7A:05:FD:71:CD:F0:60:1B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/yp1_dOisSsjBBZ7zegX9cc3wYBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.233.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:1c:29:5f:26:f9:22:be:33:51:26:28:3a:d3:1d:d5:fb:4b:
ca:1d:69:de:10:55:1a:96:f6:cf:74:01:47:b4:99:0b:5a:3d:
d6:71:7a:5b:b0:fc:f8:45:d3:5a:2a:51:2a:17:e3:db:30:fb:
69:78:e2:35:2b:84:6e:c7:21:5d:ff:c9:27:01:95:28:ef:33:
dc:a5:d4:11:a4:9b:c2:71:45:ab:87:49:08:ba:94:93:64:ac:
d2:7e:6a:a1:16:a7:0b:2a:32:10:95:86:12:00:6e:65:35:83:
a1:fe:ae:71:a5:3e:42:5f:dc:c1:9a:64:a9:33:58:08:d6:01:
8a:2f:f2:7f:92:ed:94:73:6a:17:a2:a0:da:85:8f:3c:14:b6:
fe:71:71:99:a9:5d:12:89:31:89:19:be:c7:b2:0e:cf:21:39:
0c:09:4d:ec:90:86:14:2f:f1:8d:3b:2a:3c:7c:03:4c:af:a8:
3a:8f:e2:1f:03:e1:43:cc:95:b7:86:ed:a8:46:6e:7d:58:e2:
cd:f0:41:4a:d5:57:f9:95:dd:49:bc:3e:36:e7:ba:18:af:84:
55:bc:0a:7f:d1:32:a8:c4:fe:06:c0:af:07:69:40:4e:d9:03:
80:3d:78:e7:1f:a6:28:be:da:98:4c:64:f9:a4:39:5e:c2:02:
8d:d3:b9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org