Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e0ef59-08b8-4d6d-8738-5cec36ff8e73/1/YC2-jyztMLS3mP05Fjen5Zfr-ns.roa
File: YC2-jyztMLS3mP05Fjen5Zfr-ns.roa (raw, json)
Hash identifier: JMPJkLKsB7gWSK5Itqs9RAXjXzIRWMLskHiqgJ4zb90=
Subject key identifier: 60:2D:BE:8F:2C:ED:30:B4:B7:98:FD:39:16:37:A7:E5:97:EB:FA:7B
Certificate issuer: /CN=b919e96122f283815c1a56fecc349447a2889cd9
Certificate serial: 01EAE120
Authority key identifier: B9:19:E9:61:22:F2:83:81:5C:1A:56:FE:CC:34:94:47:A2:88:9C:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRnpYSLyg4FcGlb-zDSUR6KInNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e0ef59-08b8-4d6d-8738-5cec36ff8e73/1/YC2-jyztMLS3mP05Fjen5Zfr-ns.roa
Signing time: Sat 01 Jan 2022 15:02:03 +0000
ROA not before: Sat 01 Jan 2022 15:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30948
IP address blocks: 91.229.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32170272 (0x1eae120)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b919e96122f283815c1a56fecc349447a2889cd9
Validity
Not Before: Jan 1 15:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=602dbe8f2ced30b4b798fd391637a7e597ebfa7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d1:3c:2d:f5:60:a5:60:fe:34:e7:16:9b:1f:
ed:bb:8a:53:37:32:2a:77:46:f4:b7:d1:ef:cf:dc:
83:ac:44:ee:e8:7a:84:0a:85:20:ee:0c:81:b6:4b:
02:39:33:62:91:fa:4b:85:ca:0e:00:b7:ed:96:3f:
44:21:12:9a:09:f0:65:67:7e:96:93:d9:43:7f:83:
ec:ec:8e:0f:5c:20:96:8f:e5:0a:99:48:41:ab:87:
c4:9a:d2:c8:12:68:66:ef:a4:10:f7:08:5d:63:84:
22:d3:71:cf:46:12:f4:66:44:46:3c:ab:91:2e:da:
ba:d5:ae:e1:e9:ad:e4:19:6c:df:6b:89:15:89:2d:
3e:36:a3:ec:12:d2:42:0a:e8:00:76:6d:1d:b7:02:
27:14:79:c1:03:13:ff:a4:01:f5:6f:a5:30:ba:3b:
a2:dc:11:f9:0e:22:80:16:80:f9:82:1c:5a:89:ca:
49:03:4b:fd:44:69:81:7a:ac:91:c1:4e:31:d8:cc:
1a:d1:3f:09:68:40:ff:06:79:de:34:d4:59:f8:2e:
83:8b:8b:c1:52:bf:c8:07:c7:d6:80:09:32:19:c7:
6a:c6:27:4f:9b:9f:e2:fc:9e:63:84:17:f2:70:53:
68:6b:40:62:52:33:81:03:f4:67:18:9b:ce:0b:da:
a5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2D:BE:8F:2C:ED:30:B4:B7:98:FD:39:16:37:A7:E5:97:EB:FA:7B
X509v3 Authority Key Identifier:
keyid:B9:19:E9:61:22:F2:83:81:5C:1A:56:FE:CC:34:94:47:A2:88:9C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRnpYSLyg4FcGlb-zDSUR6KInNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e0ef59-08b8-4d6d-8738-5cec36ff8e73/1/YC2-jyztMLS3mP05Fjen5Zfr-ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e0ef59-08b8-4d6d-8738-5cec36ff8e73/1/uRnpYSLyg4FcGlb-zDSUR6KInNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.7.0/24
Signature Algorithm: sha256WithRSAEncryption
42:84:90:6d:e3:5c:ab:64:5f:86:f4:ff:e8:9f:a5:4a:d1:7f:
37:bf:c5:5e:f8:22:89:4a:f9:ae:5d:66:05:9e:10:3c:79:15:
db:19:f9:58:28:07:a1:30:e1:5f:fb:3f:f9:14:83:40:08:a7:
61:e3:ad:80:f9:50:9f:43:c3:1a:f8:be:be:e1:16:3c:10:3d:
30:8c:d5:c7:22:9d:1e:e6:14:43:85:3c:49:6e:24:b5:10:35:
45:77:75:22:41:f3:e6:32:fa:4f:39:fa:28:e2:4e:93:49:17:
70:5f:e0:02:f2:15:25:37:78:c6:2b:61:30:12:01:dd:1c:42:
4b:49:4e:e6:c9:b0:25:77:44:51:13:e9:eb:02:24:1c:d2:f9:
18:17:96:b1:5f:7f:27:d1:29:54:49:9d:21:a5:ad:9f:c8:ce:
46:34:1a:8e:c1:64:ef:9d:c3:10:8c:d4:2f:c0:c8:ae:e7:ac:
f9:c1:80:59:ef:7d:b6:59:99:88:0c:c6:71:2f:61:99:c5:48:
de:31:d6:6b:88:49:cc:34:40:20:25:4a:09:84:7c:12:1a:7a:
1d:e3:8f:e2:c4:11:e0:3b:36:1e:f4:29:05:69:42:8f:51:bf:
0b:14:e3:c8:b3:e0:f3:df:b5:10:a5:c4:0f:1c:3d:9d:c4:15:
61:24:36:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:02 2024 by rpki-client on console-fra.rpki-client.org