Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/YvVmVrSJf7tMmFT5C5sfJbEkhic.roa
File: YvVmVrSJf7tMmFT5C5sfJbEkhic.roa (raw, json)
Hash identifier: NShs/kHizsGqDDXhJ3vxJ5RHhkQwKMf40u/yXq19HuM=
Subject key identifier: 62:F5:66:56:B4:89:7F:BB:4C:98:54:F9:0B:9B:1F:25:B1:24:86:27
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 018321697A63A65B4856842ED5ED4ADBB109
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/YvVmVrSJf7tMmFT5C5sfJbEkhic.roa
Signing time: Fri 09 Sep 2022 08:41:44 +0000
ROA not before: Fri 09 Sep 2022 08:41:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3313
IP address blocks: 194.20.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:69:7a:63:a6:5b:48:56:84:2e:d5:ed:4a:db:b1:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Sep 9 08:41:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62f56656b4897fbb4c9854f90b9b1f25b1248627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9e:9a:51:e1:33:da:c2:56:e3:38:a1:b0:10:
90:0f:f7:eb:eb:94:6e:02:c9:c5:8c:12:ee:46:af:
f0:26:20:0e:ff:c4:5f:65:4a:2a:c4:3d:f9:02:20:
bb:98:ff:4c:35:b2:38:92:06:aa:c9:86:fd:9b:05:
95:8e:4b:ad:a7:1e:a2:60:17:35:0c:8d:e5:a8:51:
5f:e3:23:11:00:3d:4a:15:f9:af:55:82:26:59:05:
2a:89:28:80:36:45:2d:d8:b4:d2:98:03:37:8b:af:
99:ba:4d:58:27:35:bc:26:24:ae:b2:93:9e:af:5f:
02:ae:9d:44:b6:b9:f5:ea:29:0a:ca:e4:c6:b7:d4:
8a:d2:39:4f:5d:cc:c6:2b:66:34:33:5b:27:60:3f:
a6:92:3b:93:13:cf:9b:8a:a4:fa:10:1f:0d:e7:20:
65:d7:49:47:95:4f:06:86:85:90:20:3d:56:2f:37:
86:75:b9:5c:1a:c4:13:84:50:96:dc:14:c4:36:c2:
49:d6:d7:dd:d8:a2:55:d2:a2:62:8b:21:dd:d2:85:
8f:96:33:97:fa:93:0d:96:e1:40:84:fa:f5:ad:14:
e8:ff:32:80:8c:61:a3:e5:b9:89:f9:03:c9:1d:41:
69:d4:28:be:1d:ed:d8:2e:84:ec:0d:54:03:95:2e:
c3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F5:66:56:B4:89:7F:BB:4C:98:54:F9:0B:9B:1F:25:B1:24:86:27
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/YvVmVrSJf7tMmFT5C5sfJbEkhic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.20.8.0/21
Signature Algorithm: sha256WithRSAEncryption
55:03:a0:b5:46:07:a3:90:7f:c1:2c:c2:3d:bd:cb:00:f6:97:
b2:7f:4f:f4:2c:4c:4f:56:18:c7:6d:fd:0c:b6:94:71:52:82:
c0:5f:a7:38:d6:b4:d1:94:e5:47:78:9d:b2:31:91:eb:49:40:
5b:cc:1e:e3:91:74:c5:b5:b6:fd:10:98:04:af:e5:49:06:19:
4d:de:c2:7c:d8:62:52:76:bb:78:2b:31:33:4f:0d:2b:6c:e7:
d7:f4:a8:a2:16:fc:75:49:a2:db:da:54:35:17:7c:78:4a:77:
f7:41:37:c1:a7:3d:ef:55:94:e7:b9:21:42:17:d8:9a:32:5f:
46:ee:65:e1:cf:7f:65:16:a0:78:45:6c:dc:b3:70:47:27:7d:
66:db:c4:6d:f8:c5:e4:c9:ad:a3:14:bc:03:0c:9d:12:e6:69:
8a:49:7a:ac:98:db:13:04:e9:4f:b6:dc:ec:f6:2a:37:76:0d:
50:28:af:14:9b:f7:21:4c:0c:0d:41:38:7f:d7:69:b6:0a:68:
b8:6a:0f:1c:a4:b1:b0:e3:98:69:b9:b9:cb:10:de:ff:f7:9d:
e9:e0:ea:8e:26:1c:f5:12:05:a5:da:92:d1:b0:42:a7:bd:5b:
ad:c9:16:6a:35:93:63:f1:63:59:ac:ae:af:0f:69:69:63:f3:
d0:59:71:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net