Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Y9bL1z-cTgQB1SyivbP2j_fAewg.roa
File: Y9bL1z-cTgQB1SyivbP2j_fAewg.roa (raw, json)
Hash identifier: q4eUg0mtHIdE+lDyVDsMLd1mjBcYEARprMOfrE3jFwo=
Subject key identifier: 63:D6:CB:D7:3F:9C:4E:04:01:D5:2C:A2:BD:B3:F6:8F:F7:C0:7B:08
Certificate issuer: /CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Certificate serial: 01D16F
Authority key identifier: DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Y9bL1z-cTgQB1SyivbP2j_fAewg.roa
Signing time: Mon 07 Mar 2022 16:39:09 +0000
ROA not before: Mon 07 Mar 2022 16:39:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51248
IP address blocks: 138.124.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119151 (0x1d16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Validity
Not Before: Mar 7 16:39:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63d6cbd73f9c4e0401d52ca2bdb3f68ff7c07b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:84:2b:03:45:62:b7:97:9f:38:1f:95:05:2d:
5d:f5:1d:c7:37:bc:d5:e9:ef:e5:68:81:e4:27:48:
c5:df:05:07:17:81:b6:13:8d:09:9d:91:3f:e2:bd:
c3:95:f0:91:4e:80:ff:76:21:c6:13:46:f5:81:22:
15:f9:84:3f:5e:31:e2:0c:c3:55:2f:27:39:17:22:
51:bb:8d:65:2d:0b:33:ac:75:00:b6:8e:27:53:14:
bc:bb:89:29:01:e2:b8:05:a7:37:b9:18:55:fb:13:
2e:90:85:71:ab:56:94:fd:40:96:1e:95:ff:7a:6d:
95:ea:fe:d1:1f:8a:39:8c:ae:15:1a:4d:7b:d9:31:
68:0e:89:1a:5c:d8:7c:ff:cd:39:76:ab:9e:45:ee:
35:44:a4:62:22:ab:b0:1d:a1:3d:39:fb:7a:33:af:
3b:c9:ae:34:aa:06:a1:89:5f:98:5f:e1:f3:77:78:
28:bf:43:f6:11:42:e3:e8:1f:a1:53:9d:15:7a:06:
c9:e3:ad:28:46:95:26:d3:4d:c2:70:c2:33:f2:60:
f8:1b:9d:c4:0d:3d:f4:89:ab:78:a3:41:71:ac:22:
8e:64:54:34:3a:6a:58:8e:8c:46:78:0c:42:f8:63:
da:ae:c4:fe:25:46:b2:0b:94:e5:44:2c:bd:c8:6b:
ea:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D6:CB:D7:3F:9C:4E:04:01:D5:2C:A2:BD:B3:F6:8F:F7:C0:7B:08
X509v3 Authority Key Identifier:
keyid:DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Y9bL1z-cTgQB1SyivbP2j_fAewg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.124.182.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:2b:d8:a0:bc:d2:ac:63:95:08:1a:88:61:8e:db:f0:6a:9b:
ba:49:18:37:09:e4:ce:e3:17:e0:7d:6c:de:c2:d6:ca:c2:f3:
f8:17:f2:aa:74:fd:ae:42:8f:dc:bc:c6:5f:5c:e2:74:a9:72:
44:21:79:59:ef:65:9f:8b:06:3e:72:67:14:4b:65:91:4d:2d:
24:6a:08:b5:26:28:4a:b5:3d:fa:04:70:ee:27:61:ed:05:be:
d6:0a:39:df:b5:b7:62:47:eb:91:d9:b9:80:ec:fc:ef:1f:11:
42:14:7c:22:e9:33:d6:4a:6d:48:61:2e:d0:f0:40:10:be:c8:
fc:1d:8c:0d:36:65:9f:d7:eb:e6:0b:de:58:0b:9e:ea:b4:1c:
00:70:23:25:f2:8a:c7:70:a2:94:73:90:88:00:68:69:ae:22:
75:53:dd:a7:75:3d:8a:77:2d:58:71:cf:2a:d7:8d:b6:06:32:
5d:74:d9:30:98:35:6a:39:01:25:9b:e9:0c:57:20:52:ec:01:
aa:31:a8:98:30:7f:53:8a:d4:95:c0:90:04:ca:81:2c:87:2e:
29:89:79:38:89:a7:0e:4d:53:1d:b1:45:a4:e6:c5:e8:d7:d6:
d9:f8:b8:b9:66:69:af:f0:0c:94:58:71:8a:b5:34:42:95:6e:
bf:17:d3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:22 2023 by rpki-client on console-ams.rpki-client.org