Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/YHIc9K_xTkd7TmIorZJTXu9Pw64.roa
File: YHIc9K_xTkd7TmIorZJTXu9Pw64.roa (raw, json)
Hash identifier: AGCX3R3S4q8aWuV+buZkVa3KQX+Ywtuytha4F9Y/lwU=
Subject key identifier: 60:72:1C:F4:AF:F1:4E:47:7B:4E:62:28:AD:92:53:5E:EF:4F:C3:AE
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 154E1AEB
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/YHIc9K_xTkd7TmIorZJTXu9Pw64.roa
Signing time: Sat 01 Jan 2022 13:56:58 +0000
ROA not before: Sat 01 Jan 2022 13:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39715
IP address blocks: 83.145.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357440235 (0x154e1aeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 1 13:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60721cf4aff14e477b4e6228ad92535eef4fc3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e7:02:0a:e5:6f:c3:90:f1:85:0c:e5:67:4c:
40:1c:88:e6:99:c0:37:91:7d:11:25:36:ad:8e:93:
d2:b6:3e:eb:24:62:f6:e9:6a:a9:1b:15:a1:01:37:
e0:34:a8:fd:bc:e4:f1:18:0c:82:f8:0b:a1:01:fc:
5e:0c:63:b5:c7:6f:e4:6c:c2:74:9b:5e:50:87:8c:
23:5a:f7:39:7a:7e:28:50:f7:69:5d:99:1f:cf:2b:
cc:24:eb:0c:9a:96:e7:50:a9:aa:98:ca:49:67:5d:
c3:8b:ca:0f:33:fb:c9:a6:a4:92:2f:3e:af:f4:71:
87:01:86:ce:99:21:cd:16:89:6d:18:8f:b0:70:60:
73:1e:fc:63:15:be:7c:35:17:05:56:77:85:d0:c4:
7a:7e:35:77:a7:c9:ee:48:0b:5b:a9:a3:0b:81:1a:
d9:a1:00:fb:53:3b:3e:00:5b:c7:24:2f:35:6f:51:
69:6f:87:42:96:e2:d6:2d:88:91:2e:fe:bc:bd:da:
72:69:e9:3b:55:e6:8c:21:a4:6b:f6:21:c0:ea:94:
87:5f:3d:a6:08:e4:65:07:ac:21:0f:39:ee:da:49:
f9:9a:41:b2:b5:21:9e:e0:c3:35:c2:f6:e2:b6:91:
e3:28:af:7d:d3:a3:9a:c6:f1:49:1d:38:60:14:fe:
26:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:72:1C:F4:AF:F1:4E:47:7B:4E:62:28:AD:92:53:5E:EF:4F:C3:AE
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/YHIc9K_xTkd7TmIorZJTXu9Pw64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.145.95.0/24
Signature Algorithm: sha256WithRSAEncryption
21:4a:01:b2:53:75:61:90:f0:fe:7f:17:49:39:70:cf:7c:ec:
92:21:f4:ad:8a:fc:09:1f:30:96:0f:0e:66:87:ad:eb:70:d0:
6c:47:4f:84:ff:08:df:a9:96:0c:4a:1e:fd:18:8f:0e:01:17:
e8:d9:9e:47:b9:a4:3c:84:cc:72:61:db:5c:d4:f7:b3:98:d6:
cf:8b:14:72:d2:0a:f1:5c:bd:ad:3e:4b:d4:5c:00:cd:38:3c:
71:c4:95:a5:18:3b:aa:e5:cf:1c:81:da:b2:ee:10:34:c1:77:
b5:74:6a:19:f8:25:f0:86:5f:29:e5:b6:70:cc:c8:13:91:6f:
8e:21:ff:aa:b5:22:ee:e9:06:d7:21:7a:3e:ed:d4:3b:b4:cf:
c5:22:51:49:b4:2d:40:d9:82:a2:49:fe:81:67:d2:e1:53:08:
2d:5f:fc:b1:61:10:c2:08:01:b9:4f:8b:3c:a2:a5:40:04:3d:
6c:50:e2:52:52:fa:f5:74:fd:e7:43:58:d8:99:d0:14:35:0f:
d8:ed:b7:09:55:3f:e7:7f:bc:b9:57:1d:74:96:7e:67:bf:42:
0d:16:b0:20:f2:e1:88:2b:8a:45:fe:a2:86:14:3e:d1:e5:7f:
bc:70:07:ba:95:dc:b4:c2:04:98:6b:b6:92:ca:a0:84:72:de:
34:44:18:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:39 2023 by rpki-client on console-ams.rpki-client.org