Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/aYmt09BreNZxOogMDasTpkwLkZw.roa
File: aYmt09BreNZxOogMDasTpkwLkZw.roa (raw, json)
Hash identifier: kFpKdsl9ckIAlD4n3Y6f3UiFI9QrNfTVgGBzO+nCeDA=
Subject key identifier: 69:89:AD:D3:D0:6B:78:D6:71:3A:88:0C:0D:AB:13:A6:4C:0B:91:9C
Certificate issuer: /CN=af935603e52e831537716d458b360192f99a3689
Certificate serial: B372
Authority key identifier: AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/aYmt09BreNZxOogMDasTpkwLkZw.roa
Signing time: Tue 25 Jan 2022 14:17:21 +0000
ROA not before: Tue 25 Jan 2022 14:17:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202152
IP address blocks: 185.49.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45938 (0xb372)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af935603e52e831537716d458b360192f99a3689
Validity
Not Before: Jan 25 14:17:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6989add3d06b78d6713a880c0dab13a64c0b919c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1c:1a:82:b7:84:1c:d1:9b:15:c0:71:1c:98:
4f:7a:6f:1f:6f:a3:d7:3c:6a:aa:44:a2:02:00:68:
46:d1:11:b4:a6:c0:1f:96:b5:20:28:0a:78:8f:1c:
5f:63:f4:67:76:0e:fb:26:b9:7d:b1:67:98:e7:46:
f7:a7:63:d8:66:08:ca:3b:b5:e1:47:fa:b7:b4:45:
66:c6:b3:40:89:47:fa:7d:ab:e7:f8:25:52:21:60:
01:09:0a:3e:f8:e6:29:7f:9e:55:fc:9a:4d:29:a2:
ce:44:d4:71:30:e3:72:50:2f:d5:f2:79:3c:98:75:
82:54:b3:54:67:94:e9:f8:40:4d:20:93:fc:10:4a:
9b:10:58:fa:34:75:1e:d7:42:d1:2d:39:5d:37:52:
40:f7:f5:ee:92:a2:20:d8:b1:56:05:1d:fb:af:e7:
98:b6:7c:6f:7c:b6:e0:7e:2b:32:9a:32:34:14:be:
48:a8:03:6b:3e:58:b2:b9:69:0d:3a:14:ad:05:5d:
7d:d0:95:66:97:ca:f6:fd:79:01:2c:e7:b5:8d:28:
fa:34:6b:6d:c0:10:85:e4:43:b3:78:53:9b:19:5c:
66:42:6f:fc:ff:64:9d:2a:a3:08:a0:b3:ea:b1:d1:
92:bb:9d:b3:87:36:be:73:da:63:78:67:3c:3b:47:
28:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:89:AD:D3:D0:6B:78:D6:71:3A:88:0C:0D:AB:13:A6:4C:0B:91:9C
X509v3 Authority Key Identifier:
keyid:AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/aYmt09BreNZxOogMDasTpkwLkZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/r5NWA-UugxU3cW1FizYBkvmaNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.132.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:d3:c0:51:9c:7b:c0:a8:73:72:f5:a5:27:01:0a:b3:d7:6e:
f6:12:09:b7:2f:a5:70:7b:fe:a4:fc:40:5f:ef:7b:be:a0:09:
c6:22:56:de:99:b0:44:2b:8c:11:ee:7d:3e:b6:e8:a1:b3:18:
0d:c6:c7:f6:2c:be:48:9b:ee:b9:e9:6f:cd:32:68:90:69:b4:
2b:7c:30:0b:07:de:c3:66:73:b2:1a:4a:e6:33:fb:e9:d0:3a:
bb:61:34:a4:94:15:a6:2f:21:4f:c8:37:c9:26:c9:21:60:4b:
0e:fe:47:6b:b0:a5:e6:5e:a2:e9:35:88:39:92:b7:09:05:0c:
1a:fb:ab:4d:76:36:ff:3a:ba:a9:a9:8d:2a:b9:40:d3:4d:91:
97:09:89:8c:e3:8c:fe:09:3f:97:2c:31:e5:61:f2:61:88:11:
42:00:79:60:69:31:59:ba:3d:d5:b4:8a:37:a9:42:cc:a1:f0:
4d:7c:e7:fe:7f:6c:1a:86:05:77:f9:64:32:4a:df:c9:28:70:
e3:9e:fd:1f:99:12:30:2b:c2:b4:52:83:40:76:c2:fd:6a:54:
d4:98:ee:a9:27:81:bf:ae:c3:b6:6d:9f:7d:9b:f9:07:df:cd:
25:bf:15:7c:07:3b:cd:7d:60:e6:0a:5a:9b:9e:11:10:ab:ec:
30:34:7f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:51 2023 by rpki-client on console-fra.rpki-client.org