Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/YnrV9E6GGW_RdN6icxYQl_nKPpg.roa
File: YnrV9E6GGW_RdN6icxYQl_nKPpg.roa (raw, json)
Hash identifier: E0+GA1K2WDdMGrMgTs8KUAmcOyJK8YVufCUG0nEMn2c=
Subject key identifier: 62:7A:D5:F4:4E:86:19:6F:D1:74:DE:A2:73:16:10:97:F9:CA:3E:98
Certificate issuer: /CN=f1f930e23b08a15ccd4dc9ab1829c607fedde8a5
Certificate serial: 44D898
Authority key identifier: F1:F9:30:E2:3B:08:A1:5C:CD:4D:C9:AB:18:29:C6:07:FE:DD:E8:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fkw4jsIoVzNTcmrGCnGB_7d6KU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/YnrV9E6GGW_RdN6icxYQl_nKPpg.roa
Signing time: Sat 01 Jan 2022 02:58:36 +0000
ROA not before: Sat 01 Jan 2022 02:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 185.22.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4511896 (0x44d898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f930e23b08a15ccd4dc9ab1829c607fedde8a5
Validity
Not Before: Jan 1 02:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=627ad5f44e86196fd174dea273161097f9ca3e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:99:b7:93:4c:1a:d5:9d:99:8e:df:c5:ef:a0:
86:8e:4a:7a:22:16:c9:58:90:54:71:ce:3f:28:47:
a8:82:fa:c2:4a:9f:b8:21:e3:c1:46:d2:6e:53:a7:
fd:1f:6a:4f:6c:e7:78:72:35:6c:30:26:22:a9:86:
d5:23:b1:45:fe:d2:18:0f:97:b1:ef:4a:69:ac:c6:
72:e3:2a:36:4d:fe:b3:e4:9c:84:41:7d:36:0e:93:
d3:b0:03:11:08:7c:f0:ef:cb:53:2a:8b:cc:e1:a5:
36:3b:63:db:6f:a0:10:d7:28:45:e8:a0:11:27:5c:
c5:42:d1:17:af:0d:0b:4f:d0:e6:e7:bb:20:e6:cd:
df:cb:19:50:2f:e2:1b:25:09:d6:45:3a:e4:7d:35:
ef:4e:33:3a:cd:40:39:17:31:84:7f:b4:f4:0c:f2:
63:b6:a5:be:5d:48:33:4e:bb:3e:22:b4:e3:bd:ec:
dd:64:1f:7f:45:2a:9a:ea:ed:48:bf:f9:aa:ea:57:
7e:dd:41:ed:cc:97:a0:c2:e3:28:f8:61:12:00:80:
e5:cc:3b:33:93:14:31:2e:0f:0b:ff:f2:97:69:ab:
7b:b7:2b:57:24:de:7e:85:39:44:56:2b:55:ef:64:
30:02:2c:d6:1e:0f:1a:35:d7:d9:58:70:7c:1e:1c:
8d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:7A:D5:F4:4E:86:19:6F:D1:74:DE:A2:73:16:10:97:F9:CA:3E:98
X509v3 Authority Key Identifier:
keyid:F1:F9:30:E2:3B:08:A1:5C:CD:4D:C9:AB:18:29:C6:07:FE:DD:E8:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fkw4jsIoVzNTcmrGCnGB_7d6KU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/YnrV9E6GGW_RdN6icxYQl_nKPpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/8fkw4jsIoVzNTcmrGCnGB_7d6KU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.230.0/24
Signature Algorithm: sha256WithRSAEncryption
77:43:0a:eb:b1:3e:73:be:72:40:a9:49:9f:1a:14:ff:69:fb:
f4:bb:2a:80:19:0b:8d:7d:4e:a8:b1:3e:1b:c5:a0:7a:46:24:
19:32:ab:fa:dc:cc:43:93:e6:fc:9f:10:f1:aa:74:95:31:17:
d5:64:b8:b6:bd:8d:de:4c:9a:35:f2:1b:60:1d:77:cd:43:e3:
be:dc:50:f5:c9:65:f8:c0:e3:53:c3:b8:1f:a7:d3:35:56:3c:
ba:b9:05:03:a0:c1:2a:34:2c:ed:3a:66:81:c4:36:63:5d:4f:
0c:20:33:7a:6c:36:d2:e3:2b:1f:47:fd:5c:1d:69:e6:41:34:
77:0c:41:51:c6:14:eb:5d:66:b8:50:72:94:10:58:14:cd:d7:
db:04:49:80:93:a9:14:00:8e:ee:c8:0a:8c:a8:6e:04:03:6e:
d9:99:00:0b:4f:a3:07:4b:55:d2:c1:7e:f9:ad:30:be:f2:a4:
f7:49:d5:f1:2e:37:b7:ff:b6:86:64:90:f0:31:d2:b8:f3:14:
77:a8:c4:15:ce:86:97:e1:09:45:f6:3f:87:fa:a5:4b:cc:e1:
f2:e9:c7:94:b2:58:4a:70:3e:8f:be:e1:c1:8b:3f:9d:c8:93:
77:09:39:0f:51:1c:db:e7:ab:03:e9:17:7b:fc:dd:1a:9e:6d:
71:03:01:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-fra.rpki-client.org