Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/5ea425-af1a-4e30-8bb0-bfa636877e90/1/YmlomDMlMP6qajqR-uvj-rx3BR4.roa
File: YmlomDMlMP6qajqR-uvj-rx3BR4.roa (raw, json)
Hash identifier: yJbOe3yfS2fBkKKdPW1nNLHiaUX06m9cLAiXPzjl9vE=
Subject key identifier: 62:69:68:98:33:25:30:FE:AA:6A:3A:91:FA:EB:E3:FA:BC:77:05:1E
Certificate issuer: /CN=964768a6d8708b363143aa8811e5d9768264ef5f
Certificate serial: 0753B3A0
Authority key identifier: 96:47:68:A6:D8:70:8B:36:31:43:AA:88:11:E5:D9:76:82:64:EF:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkdopthwizYxQ6qIEeXZdoJk718.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/5ea425-af1a-4e30-8bb0-bfa636877e90/1/YmlomDMlMP6qajqR-uvj-rx3BR4.roa
Signing time: Sat 01 Jan 2022 01:01:11 +0000
ROA not before: Sat 01 Jan 2022 01:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15943
IP address blocks: 193.31.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122925984 (0x753b3a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964768a6d8708b363143aa8811e5d9768264ef5f
Validity
Not Before: Jan 1 01:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62696898332530feaa6a3a91faebe3fabc77051e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:70:5a:6e:f2:1e:2c:f7:9c:3c:da:65:83:1d:
39:a4:5c:05:9f:8a:bc:de:46:37:21:0a:64:52:08:
37:d4:df:f3:91:f2:b2:87:4c:d0:6f:ce:df:0b:4d:
9c:96:81:59:e0:48:b8:05:3f:a3:d1:db:21:d3:5b:
8d:8d:d9:78:a1:0c:44:6e:14:47:bb:78:a7:25:b6:
7d:b1:2f:49:10:ce:0b:4d:32:bf:17:44:21:1f:5e:
a3:10:db:19:bb:03:a6:67:8d:50:e9:e5:97:a2:da:
8a:60:ad:7e:95:30:93:2b:b9:bc:58:da:59:53:0e:
5a:f1:bd:5b:59:69:17:18:22:77:a2:b4:af:c9:3a:
c6:3a:09:31:89:24:20:67:ad:f3:5b:93:08:83:b1:
34:4e:4f:02:81:33:ce:0a:39:28:04:3d:60:c6:8f:
ca:cd:27:48:c4:d5:0a:2d:3e:5e:90:ea:2b:0c:b7:
6d:70:a9:bb:64:5c:e5:6c:4b:6b:d8:a3:49:4a:2b:
47:5b:13:eb:24:f8:fe:c4:ba:4e:2e:b1:04:38:f9:
d0:06:cf:ff:b3:7c:fc:0f:ff:74:85:ea:e2:bb:94:
0e:f0:2e:db:e3:37:65:f2:60:e1:1a:48:cb:ff:03:
47:03:76:21:2d:73:32:7b:61:d1:b8:6f:4c:4c:b3:
66:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:69:68:98:33:25:30:FE:AA:6A:3A:91:FA:EB:E3:FA:BC:77:05:1E
X509v3 Authority Key Identifier:
keyid:96:47:68:A6:D8:70:8B:36:31:43:AA:88:11:E5:D9:76:82:64:EF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkdopthwizYxQ6qIEeXZdoJk718.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5ea425-af1a-4e30-8bb0-bfa636877e90/1/YmlomDMlMP6qajqR-uvj-rx3BR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5ea425-af1a-4e30-8bb0-bfa636877e90/1/lkdopthwizYxQ6qIEeXZdoJk718.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.3.0/24
Signature Algorithm: sha256WithRSAEncryption
80:59:31:f1:ce:0b:10:3e:2e:62:94:84:d9:be:ea:a1:8f:ff:
32:9d:d1:a5:61:b9:dd:d7:eb:4d:46:64:2f:41:9c:72:90:86:
ae:bf:5d:70:48:c2:9c:f2:88:a0:94:72:75:48:9c:86:17:29:
6c:0e:94:03:81:a4:40:7e:a9:b5:4c:80:5c:ac:0d:0c:60:d9:
a1:2b:17:2b:43:f2:f8:12:2d:be:03:be:2e:bd:bd:41:89:46:
bc:c0:78:e7:89:41:ac:98:78:e9:e6:45:21:34:e6:c7:b9:eb:
77:70:da:23:9a:11:e5:19:71:08:95:09:50:99:8b:23:a9:32:
32:cf:f8:0d:56:fd:40:1d:3e:68:9b:ae:aa:59:a1:70:8f:d8:
ee:09:51:37:77:5f:ee:ff:78:f7:0f:ce:df:96:fd:d8:9e:81:
cc:16:2c:87:a9:fa:3b:77:30:36:8c:73:a6:ea:f4:b8:2d:9d:
dc:55:3c:32:19:b4:6f:f8:45:e8:63:41:b6:f3:52:be:4b:e4:
40:3f:28:9d:11:f6:b7:97:74:a7:8a:3a:01:dd:d9:14:2b:79:
19:d8:28:c0:1d:c2:c5:27:c0:b1:30:16:1a:d7:23:30:de:52:
c2:c5:32:e6:ba:98:8a:6b:4e:7b:8d:e1:1e:bf:93:f8:74:60:
d0:b7:1d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:54 2023 by rpki-client on console.sobornost.net