Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c8a364-e897-446f-89f7-5df99d28eb4b/1/yjtpVYymryJnppSKPGJiaRwZy5M.roa
File: yjtpVYymryJnppSKPGJiaRwZy5M.roa (raw, json)
Hash identifier: 6mJs07yyZlu6HxhIeE0AXbViUI+SFSFZocUXJnkj8jw=
Subject key identifier: CA:3B:69:55:8C:A6:AF:22:67:A6:94:8A:3C:62:62:69:1C:19:CB:93
Certificate issuer: /CN=d1e00cfced9e3ba55c79ec22581ef1b34be01cae
Certificate serial: 01833A
Authority key identifier: D1:E0:0C:FC:ED:9E:3B:A5:5C:79:EC:22:58:1E:F1:B3:4B:E0:1C:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAM_O2eO6VceewiWB7xs0vgHK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c8a364-e897-446f-89f7-5df99d28eb4b/1/yjtpVYymryJnppSKPGJiaRwZy5M.roa
Signing time: Wed 26 Jan 2022 18:27:56 +0000
ROA not before: Wed 26 Jan 2022 18:27:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 80.68.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99130 (0x1833a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1e00cfced9e3ba55c79ec22581ef1b34be01cae
Validity
Not Before: Jan 26 18:27:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca3b69558ca6af2267a6948a3c6262691c19cb93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:33:f5:c0:74:41:6e:57:27:8f:9b:fa:aa:
a0:3d:27:dc:fe:98:d2:fd:52:a5:0b:af:61:12:f8:
0f:ff:72:2f:5f:77:b8:9b:48:3e:0c:dc:3e:80:96:
bd:6c:d7:8d:8c:54:12:77:41:b3:76:21:34:f7:f4:
16:60:fa:d1:b5:d8:a9:c0:e3:ca:64:6a:33:7f:1e:
94:d2:63:0f:d9:9c:35:7e:76:53:d4:25:2d:4a:0d:
d8:a2:f3:bb:99:79:4b:7e:c4:2c:c4:8e:5e:1e:a7:
87:d7:6f:13:3c:88:b8:d8:ec:e9:49:33:04:96:19:
08:98:c3:90:25:f8:0d:f0:49:ec:57:9e:48:64:1f:
2d:c0:ff:68:70:5c:69:99:20:ea:75:13:b4:e3:7d:
7f:02:c5:72:13:8f:9b:d3:f0:b4:01:97:12:5c:ac:
ee:15:c0:3c:52:af:aa:1a:b2:a6:68:a0:79:fe:11:
2a:99:81:ec:53:07:76:e7:3a:a4:1e:a4:d2:0e:dc:
55:c7:e8:92:66:35:53:7a:be:d9:38:9b:53:53:89:
4a:87:e3:88:dc:54:a6:dc:a6:b3:bc:8a:4f:47:a1:
95:69:23:fb:e5:7a:da:68:26:b1:3e:a8:f1:ca:6d:
3c:cb:a3:d5:1e:33:1b:a6:45:a3:27:5b:89:fa:1e:
a3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:3B:69:55:8C:A6:AF:22:67:A6:94:8A:3C:62:62:69:1C:19:CB:93
X509v3 Authority Key Identifier:
keyid:D1:E0:0C:FC:ED:9E:3B:A5:5C:79:EC:22:58:1E:F1:B3:4B:E0:1C:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAM_O2eO6VceewiWB7xs0vgHK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c8a364-e897-446f-89f7-5df99d28eb4b/1/yjtpVYymryJnppSKPGJiaRwZy5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c8a364-e897-446f-89f7-5df99d28eb4b/1/0eAM_O2eO6VceewiWB7xs0vgHK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.148.0/24
Signature Algorithm: sha256WithRSAEncryption
88:82:37:be:88:f9:9c:6e:8e:b7:d1:02:69:6f:bb:8e:a4:d0:
92:71:88:e0:fc:dc:a9:1e:94:73:c0:dd:3e:d6:91:99:0d:c2:
1d:cf:43:89:be:14:1f:3d:05:79:93:d7:c2:10:e5:d0:a8:be:
9c:4b:89:25:be:b9:82:d5:3c:51:09:c7:b4:37:cd:de:7b:37:
f1:61:1f:2e:ab:85:d6:bb:09:1d:59:4f:f9:4a:76:99:fb:d5:
c2:65:06:9b:99:dc:19:57:41:4c:71:2a:26:78:96:1a:7c:60:
58:08:8d:8e:77:c2:00:a5:00:9b:bb:f3:a1:6b:c4:1d:5b:34:
1d:cd:6c:3a:c2:62:59:a8:fd:8f:4e:81:bc:30:97:df:19:4f:
c0:cd:f4:25:e6:89:96:b3:0e:39:ee:cc:1a:7a:89:6b:07:f6:
84:d0:9d:9a:06:03:bf:c8:f9:b0:61:66:62:03:e8:60:9e:79:
74:61:9f:57:8b:c6:07:78:32:97:74:12:53:40:a0:fe:f8:d1:
cb:cd:d6:48:e9:17:13:03:59:6a:9b:94:5a:8c:75:53:ac:d6:
54:e9:b7:2c:ee:f5:61:7e:8b:30:42:48:48:36:88:c3:48:3b:
be:3b:6b:a1:83:fa:6a:bd:bd:50:f5:46:12:9b:1c:6a:49:ed:
6c:4d:88:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org