Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7b296a-fd03-4afa-bcd2-cbf60700eb92/1/yPB1NyMbd4XKPcoQIMYa9QFcy4E.roa
File: yPB1NyMbd4XKPcoQIMYa9QFcy4E.roa (raw, json)
Hash identifier: nc/EWCRSZXyzkvGdMT0mzrl+SUGpf/uAIPsxnKaxO9k=
Subject key identifier: C8:F0:75:37:23:1B:77:85:CA:3D:CA:10:20:C6:1A:F5:01:5C:CB:81
Certificate issuer: /CN=868256ae34e54526c5b25aac2b9d5f5fa87d061e
Certificate serial: 015105
Authority key identifier: 86:82:56:AE:34:E5:45:26:C5:B2:5A:AC:2B:9D:5F:5F:A8:7D:06:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoJWrjTlRSbFslqsK51fX6h9Bh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7b296a-fd03-4afa-bcd2-cbf60700eb92/1/yPB1NyMbd4XKPcoQIMYa9QFcy4E.roa
Signing time: Thu 12 May 2022 20:54:34 +0000
ROA not before: Thu 12 May 2022 20:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39809
IP address blocks: 195.170.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86277 (0x15105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868256ae34e54526c5b25aac2b9d5f5fa87d061e
Validity
Not Before: May 12 20:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8f07537231b7785ca3dca1020c61af5015ccb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:db:54:24:74:e4:25:10:5e:81:d6:41:8e:6b:
3d:cc:3c:36:32:91:22:f5:f0:09:28:a2:dd:ef:2f:
eb:97:fc:d7:a3:c0:13:87:e1:7b:c9:f9:18:72:93:
78:56:19:91:35:b2:7d:4a:a2:3d:68:07:a9:d4:f6:
ff:d8:25:af:36:57:c8:1f:b4:c7:ea:ef:7c:14:e1:
f3:b2:29:63:2a:8f:4a:b7:f9:89:b9:68:d8:1c:b4:
17:88:16:90:d0:78:22:34:30:13:46:91:d8:e5:b2:
c5:1c:a8:1e:0e:a2:2d:21:2f:13:2a:e7:77:dd:07:
ea:ca:49:d6:23:0e:0f:cc:bc:ee:46:88:83:1b:ae:
6f:98:51:41:c2:15:26:23:7a:b8:52:b1:d2:72:6a:
75:e5:56:d4:c8:85:3a:fe:76:c6:00:7e:7f:5e:75:
ed:92:65:40:c7:22:31:d6:31:d8:c0:69:c1:60:fb:
93:c6:06:6c:de:70:72:79:cb:33:20:6e:85:a3:0f:
ce:a7:2a:48:30:d3:80:67:d3:20:ad:1e:2e:a1:70:
18:89:70:9d:30:b7:8e:43:db:b8:f8:57:ee:70:c6:
db:ef:36:6d:c3:22:9d:2d:45:ad:4d:6c:85:5b:74:
79:a8:e1:8d:8d:66:b9:82:7e:a2:86:b0:51:6a:1f:
f4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F0:75:37:23:1B:77:85:CA:3D:CA:10:20:C6:1A:F5:01:5C:CB:81
X509v3 Authority Key Identifier:
keyid:86:82:56:AE:34:E5:45:26:C5:B2:5A:AC:2B:9D:5F:5F:A8:7D:06:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoJWrjTlRSbFslqsK51fX6h9Bh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7b296a-fd03-4afa-bcd2-cbf60700eb92/1/yPB1NyMbd4XKPcoQIMYa9QFcy4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7b296a-fd03-4afa-bcd2-cbf60700eb92/1/hoJWrjTlRSbFslqsK51fX6h9Bh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.161.0/24
Signature Algorithm: sha256WithRSAEncryption
63:a0:50:e9:af:2a:9c:e9:0a:c2:ad:8c:84:27:64:b0:8d:82:
77:d2:13:1a:89:b7:3d:8d:a9:ba:30:b5:81:f5:f6:ee:1d:df:
dc:99:91:e8:9d:47:00:a5:7e:6e:2e:45:1d:7b:58:a3:61:9f:
c3:b7:8f:34:0c:9e:7f:48:52:92:ba:86:41:a5:db:e6:a3:43:
5f:3a:ab:f0:d3:e4:36:60:e8:03:44:09:0b:1f:1c:68:63:13:
54:e3:5e:8a:70:a7:fc:9a:1d:2c:f5:b0:92:1e:61:af:b5:dd:
14:4f:99:c9:f0:f0:58:83:ad:3e:a3:91:82:38:e5:64:e9:6f:
c1:47:93:ef:37:5f:cb:fc:27:b5:ae:4b:97:28:50:9c:22:ee:
08:d4:b4:e8:61:80:96:4a:ee:95:ee:97:c9:af:f7:f5:76:4e:
d5:80:2b:3a:23:29:94:88:b8:52:89:0e:b8:96:68:41:89:ba:
d0:f0:04:0b:61:ed:98:1c:ae:7e:e3:82:5d:e3:5c:e9:0f:6f:
ad:07:24:b7:fd:c1:e3:9b:71:cd:20:58:6c:25:4c:a4:9f:e1:
53:b2:b0:3b:94:5e:9d:c9:12:98:40:cf:09:bc:b4:fb:9b:ab:
72:ee:ca:4f:6e:50:8b:bc:bc:d0:8d:4a:59:d2:63:0d:15:13:
62:30:eb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:17 2023 by rpki-client on console.sobornost.net