Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/ykGrna824W8WHx2sK7Mo-kp9uVU.roa
File: ykGrna824W8WHx2sK7Mo-kp9uVU.roa (raw, json)
Hash identifier: DIEeQx3NmbmxUbXvR8Aq9/zQ+/mFC7i7W5Ky9qGYoPk=
Subject key identifier: CA:41:AB:9D:AF:36:E1:6F:16:1F:1D:AC:2B:B3:28:FA:4A:7D:B9:55
Certificate issuer: /CN=4aab65873cb2782f13c378f5543c691443d16f79
Certificate serial: 2EDB74
Authority key identifier: 4A:AB:65:87:3C:B2:78:2F:13:C3:78:F5:54:3C:69:14:43:D1:6F:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqtlhzyyeC8Tw3j1VDxpFEPRb3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/ykGrna824W8WHx2sK7Mo-kp9uVU.roa
Signing time: Sat 01 Jan 2022 00:56:33 +0000
ROA not before: Sat 01 Jan 2022 00:56:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211261
IP address blocks: 185.201.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3070836 (0x2edb74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aab65873cb2782f13c378f5543c691443d16f79
Validity
Not Before: Jan 1 00:56:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca41ab9daf36e16f161f1dac2bb328fa4a7db955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0c:ba:6a:ea:e9:80:28:b5:9d:83:0f:9e:6f:
34:7c:bc:ba:de:57:dd:76:ac:92:6b:24:a1:ac:8a:
ea:00:3d:a8:1b:73:43:91:26:dc:83:09:83:8b:84:
f0:fa:94:3f:e8:b7:db:2d:a8:54:7c:34:91:78:35:
ee:e9:3d:1d:79:28:80:18:0d:46:c0:eb:9f:3a:38:
1e:78:a2:b0:56:ab:87:bc:0a:56:c4:ae:b6:57:01:
43:aa:fe:2c:df:9e:8f:1a:60:8f:ad:43:9f:61:07:
d7:be:ce:eb:9a:7a:03:fa:7f:1b:09:24:2c:b0:74:
5b:20:6e:fb:80:bf:52:a1:66:e5:11:57:59:d0:da:
3d:82:ec:9a:ae:48:e7:b9:a8:32:dc:30:cb:16:3d:
80:07:2c:bd:2b:dc:b3:e6:ca:e2:9c:a2:ef:7c:93:
0d:f4:bf:60:dd:16:09:ee:b3:18:d3:c4:69:41:47:
a4:5d:49:5b:d8:88:a7:b5:c9:c9:4a:4f:ae:20:d8:
cc:c4:a8:e7:ee:b6:4b:f1:3c:34:b1:a4:69:cb:d8:
3d:a8:67:9c:25:2e:a1:01:65:51:f3:df:94:3a:3a:
c2:4b:85:05:78:39:8d:6d:af:59:7e:df:1b:4e:25:
de:ee:19:ae:93:d2:ed:d8:69:c8:b7:2f:2a:b0:74:
cb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:41:AB:9D:AF:36:E1:6F:16:1F:1D:AC:2B:B3:28:FA:4A:7D:B9:55
X509v3 Authority Key Identifier:
keyid:4A:AB:65:87:3C:B2:78:2F:13:C3:78:F5:54:3C:69:14:43:D1:6F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqtlhzyyeC8Tw3j1VDxpFEPRb3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/ykGrna824W8WHx2sK7Mo-kp9uVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/aa1797-4373-4a2f-a074-c73cbe70abb9/1/SqtlhzyyeC8Tw3j1VDxpFEPRb3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.6.0/24
Signature Algorithm: sha256WithRSAEncryption
75:ec:85:21:af:70:0f:e9:b2:3e:fb:96:c6:ba:bc:99:49:78:
da:7b:ba:4d:4b:f6:90:50:b9:c8:1d:f0:7c:1d:dd:e1:b5:e2:
07:39:91:4c:e2:54:d8:d7:16:74:e5:07:3a:24:77:57:c8:f9:
47:ab:ea:8d:c8:e3:12:ab:bc:6c:13:af:05:ab:47:49:7c:e6:
87:c9:3b:0b:da:dc:3c:46:d8:61:ae:d3:8e:e0:a1:07:04:75:
bb:5b:e9:e2:a0:ee:90:cf:a8:cc:05:55:2a:47:f5:e8:39:d3:
4a:9a:b9:aa:b6:47:fd:2e:c1:44:cc:8d:71:98:9c:14:6a:a5:
94:e9:0c:05:c8:57:ef:76:0b:17:d8:02:84:d4:85:cd:7a:28:
33:c4:1e:c2:5e:b3:9f:cd:cf:61:8f:67:20:cd:10:71:aa:d6:
b3:54:d6:fa:a1:2f:fb:e6:19:0e:fc:9d:bf:8f:53:ea:5b:6e:
d2:a4:d3:af:61:b7:a7:5a:27:0f:cd:ee:b0:fc:0b:60:a8:71:
60:1a:d8:7b:c4:d2:b9:87:a7:de:68:86:5a:72:22:d8:d9:a6:
04:68:46:bc:c0:17:c4:14:e8:ea:fc:11:33:7f:4c:02:a8:76:
bf:3c:0a:81:4d:1f:06:4e:72:f6:a7:77:5c:8b:90:8a:6c:bb:
67:9f:00:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org