Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/be1adf-05ee-4701-9705-52489d715205/1/yJFBP3uXdjHX0aAGndKj5V1Gz1M.roa
File: yJFBP3uXdjHX0aAGndKj5V1Gz1M.roa (raw, json)
Hash identifier: e4t50S30+z7fTvtwZOWkKoQOzWBAp0E5iZTU2RBoWb8=
Subject key identifier: C8:91:41:3F:7B:97:76:31:D7:D1:A0:06:9D:D2:A3:E5:5D:46:CF:53
Certificate issuer: /CN=125b011f4fc2dbc72ae4ad480b851e7e46afb802
Certificate serial: 026D49DE
Authority key identifier: 12:5B:01:1F:4F:C2:DB:C7:2A:E4:AD:48:0B:85:1E:7E:46:AF:B8:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ElsBH0_C28cq5K1IC4UefkavuAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/be1adf-05ee-4701-9705-52489d715205/1/yJFBP3uXdjHX0aAGndKj5V1Gz1M.roa
Signing time: Sat 01 Jan 2022 01:55:07 +0000
ROA not before: Sat 01 Jan 2022 01:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206844
IP address blocks: 185.174.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40716766 (0x26d49de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=125b011f4fc2dbc72ae4ad480b851e7e46afb802
Validity
Not Before: Jan 1 01:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c891413f7b977631d7d1a0069dd2a3e55d46cf53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:21:78:56:db:87:99:2c:81:c1:8e:4d:f0:3e:
2d:2a:b2:3c:59:7f:1d:95:07:c3:81:f6:c0:b1:76:
c9:64:cc:3e:72:e9:44:ab:f4:75:78:7c:c4:be:1b:
cd:89:e6:38:dd:e5:fb:ed:cc:3c:58:ed:61:87:95:
a8:4b:4e:78:7d:51:db:24:6a:80:5f:23:9e:82:83:
a9:d0:1c:77:3d:fd:64:b4:ec:7b:be:83:34:15:2f:
30:16:bc:74:ee:96:47:b2:f0:80:03:d8:57:bb:a7:
c9:51:aa:ed:7f:59:83:76:4d:0e:24:fe:99:53:e5:
66:29:db:fa:17:12:5a:cd:40:dd:07:b5:d2:47:bc:
64:cd:f6:28:95:13:56:44:d5:4e:8d:46:83:30:37:
20:88:1b:73:79:55:df:0e:bf:d5:32:6d:aa:ba:32:
6f:ba:0f:c3:d0:37:9a:ea:ee:1e:c6:f6:13:a4:ce:
a2:e2:db:44:92:26:b4:6c:10:b3:6d:df:31:10:22:
4b:90:fc:8c:58:b5:d8:75:89:d5:b7:c2:d5:39:f2:
28:2d:75:4f:f7:0e:60:24:cd:3b:9f:63:a9:71:85:
37:dd:fa:f8:cc:f6:50:d2:a8:77:88:63:58:b9:6f:
9b:c7:97:08:b5:cb:28:9f:40:28:4f:eb:6f:4a:98:
35:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:91:41:3F:7B:97:76:31:D7:D1:A0:06:9D:D2:A3:E5:5D:46:CF:53
X509v3 Authority Key Identifier:
keyid:12:5B:01:1F:4F:C2:DB:C7:2A:E4:AD:48:0B:85:1E:7E:46:AF:B8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ElsBH0_C28cq5K1IC4UefkavuAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/be1adf-05ee-4701-9705-52489d715205/1/yJFBP3uXdjHX0aAGndKj5V1Gz1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/be1adf-05ee-4701-9705-52489d715205/1/ElsBH0_C28cq5K1IC4UefkavuAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.160.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:ff:c5:bf:7c:41:11:4d:1c:e3:3b:ac:05:89:1d:e5:18:08:
5a:f3:94:ae:08:ac:08:10:75:6f:1b:fd:48:9c:63:75:0d:74:
e9:ef:72:fc:55:0d:7a:77:fc:53:41:41:c5:43:7e:3e:04:d9:
5a:ec:cc:e7:7d:05:1b:1a:73:7e:50:4d:7a:3e:2a:5a:7f:1c:
00:00:b4:67:16:4a:a1:30:2a:d3:2f:d8:00:d7:24:fb:5b:f5:
2a:d8:09:71:d5:ca:1c:eb:61:95:2b:0a:6d:ed:31:53:28:5a:
53:8e:a8:17:6e:25:2b:43:f5:25:12:09:4d:1b:90:b7:68:d9:
6f:a4:26:f5:66:9f:2b:68:1c:ce:19:ac:a8:dd:f1:42:1c:9f:
25:06:e1:e1:e3:d7:a7:b1:9f:5b:ce:a4:27:cc:64:93:0c:9f:
4a:6d:f2:36:a3:a8:7a:19:96:72:29:69:fc:e7:24:e8:0e:52:
c9:25:b7:1d:4d:0c:4c:52:f8:df:e4:09:9a:4d:ea:02:ae:a0:
cf:2a:bd:00:4c:40:f1:1f:07:9f:c0:57:73:99:dd:11:e9:7a:
b6:d7:11:bb:2d:0c:19:a6:40:40:9c:2f:a5:c9:36:00:e1:50:
d3:52:d7:77:26:64:a2:18:c6:56:95:25:b8:ac:2e:b5:44:d5:
b3:9c:13:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:25 2023 by rpki-client on console-fra.rpki-client.org