Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/YCki4fnzxCE6t9LI3jjbbMQjBX0.roa
File: YCki4fnzxCE6t9LI3jjbbMQjBX0.roa (raw, json)
Hash identifier: meN1qBsuKJqWi3+Brub5VMtkFcsP0MIdm8Vtdht5cuY=
Subject key identifier: 60:29:22:E1:F9:F3:C4:21:3A:B7:D2:C8:DE:38:DB:6C:C4:23:05:7D
Certificate issuer: /CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Certificate serial: 0359995F
Authority key identifier: D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/YCki4fnzxCE6t9LI3jjbbMQjBX0.roa
Signing time: Sat 01 Jan 2022 12:57:26 +0000
ROA not before: Sat 01 Jan 2022 12:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.36.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56203615 (0x359995f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Validity
Not Before: Jan 1 12:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=602922e1f9f3c4213ab7d2c8de38db6cc423057d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:dd:a2:a6:79:e1:33:8a:06:97:af:50:2c:
da:10:c3:82:39:b7:83:93:19:f0:d6:a6:42:05:64:
6c:9f:e2:2b:4c:f7:79:eb:4f:9e:19:e7:c0:91:3e:
a8:44:19:5f:9d:53:d2:72:83:9b:f8:c0:7d:89:ca:
71:89:15:7e:97:c7:8f:8c:1c:74:74:2d:00:1b:16:
f0:f0:de:61:cf:eb:05:14:8b:bb:4c:10:e7:97:15:
1d:a6:d0:f1:80:89:f4:e1:fc:a4:0a:5b:b1:cd:95:
70:8b:a7:11:44:80:f1:8c:5b:f2:eb:a6:b4:48:2c:
b8:9d:82:f7:8f:e8:bc:34:8f:2e:78:a7:6c:d1:2b:
bc:6c:02:91:de:ac:79:a5:08:50:5f:17:32:77:42:
ef:eb:b1:34:1b:b2:f6:76:b2:43:d2:1b:ef:76:b3:
c5:dd:e8:8c:61:4c:fc:96:ed:4b:dd:b8:aa:d7:e8:
c5:b1:32:cc:a5:75:6a:f7:65:59:8e:36:84:a1:86:
99:09:c6:3d:de:f0:9b:4d:a2:41:d2:57:2d:a1:e4:
81:8a:2c:22:7d:29:83:b7:db:53:7d:53:75:75:8a:
64:b7:a2:85:f2:79:89:3f:e3:82:ad:60:04:b8:31:
9a:a5:7f:8a:5c:38:56:e5:db:e3:7b:0b:58:19:71:
0c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:29:22:E1:F9:F3:C4:21:3A:B7:D2:C8:DE:38:DB:6C:C4:23:05:7D
X509v3 Authority Key Identifier:
keyid:D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/YCki4fnzxCE6t9LI3jjbbMQjBX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.242.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:86:f8:39:49:0d:35:66:46:f7:71:37:f1:e3:e3:a5:23:b7:
70:34:76:9d:58:58:4d:84:0c:f9:04:25:c3:4b:8b:86:03:c8:
e0:a3:d5:b4:ac:01:43:c0:07:f3:11:14:09:5b:4a:a5:11:a7:
8e:04:05:5e:3f:01:b5:fd:e3:f9:07:ab:61:3b:80:f4:d1:5f:
a7:f0:88:8b:a3:26:b3:c8:38:7c:14:db:fb:16:da:19:14:3b:
8d:c5:49:de:d9:b3:59:91:c7:f9:c0:a7:64:53:ca:14:26:00:
51:03:de:46:d2:2a:cd:7d:92:c0:4e:fb:a6:d0:70:cd:89:51:
13:62:0a:24:ae:67:43:fe:5d:97:35:79:3c:e1:a2:8f:5c:80:
35:c9:0c:71:36:da:4c:d6:ca:e8:fe:52:78:e3:a4:c7:4d:df:
4f:49:72:26:00:e8:be:b5:2f:7f:32:62:a2:58:52:41:f3:70:
66:0c:17:35:c7:7c:54:8b:fc:f0:0f:04:d0:cf:4e:61:ed:ab:
78:15:06:e6:b3:22:77:78:7f:14:21:79:a8:35:6e:9d:52:0a:
56:1c:a4:e1:7b:57:63:1b:79:2d:13:5a:31:72:85:9e:52:e5:
1d:72:4f:19:02:75:56:22:bf:1d:0f:b0:c4:98:0a:d2:30:82:
31:40:9e:b5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA1mZXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NjUwMDNlMjRjZWNmYmY4ZThjMTVmZjYzN2RkMTVkYjRkN2ZhZTkyMB4XDTIyMDEw
MTEyNTcyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjAyOTIyZTFmOWYz
YzQyMTNhYjdkMmM4ZGUzOGRiNmNjNDIzMDU3ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKFF3aKmeeEzigaXr1As2hDDgjm3g5MZ8NamQgVkbJ/iK0z3
eetPnhnnwJE+qEQZX51T0nKDm/jAfYnKcYkVfpfHj4wcdHQtABsW8PDeYc/rBRSL
u0wQ55cVHabQ8YCJ9OH8pApbsc2VcIunEUSA8Yxb8uumtEgsuJ2C94/ovDSPLnin
bNErvGwCkd6seaUIUF8XMndC7+uxNBuy9nayQ9Ib73azxd3ojGFM/JbtS924qtfo
xbEyzKV1avdlWY42hKGGmQnGPd7wm02iQdJXLaHkgYosIn0pg7fbU31TdXWKZLei
hfJ5iT/jgq1gBLgxmqV/ilw4VuXb43sLWBlxDD0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRgKSLh+fPEITq30sjeONtsxCMFfTAfBgNVHSMEGDAWgBTWUAPiTOz7+OjB
X/Y33RXbTX+ukjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFsQUQ0a3pzLV9qb3dWXzJOOTBWMjAxX3JwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvNTQ5MTBiLTlhMTMtNGFjZS1hYmYyLWEyMzUxZjRlODkxNS8x
L1lDa2k0Zm56eENFNnQ5TEkzampiYk1RakJYMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
NTQ5MTBiLTlhMTMtNGFjZS1hYmYyLWEyMzUxZjRlODkxNS8xLzFsQUQ0a3pzLV9q
b3dWXzJOOTBWMjAxX3JwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEk8jANBgkqhkiG9w0BAQsFAAOC
AQEAx4b4OUkNNWZG93E38ePjpSO3cDR2nVhYTYQM+QQlw0uLhgPI4KPVtKwBQ8AH
8xEUCVtKpRGnjgQFXj8Btf3j+QerYTuA9NFfp/CIi6Mms8g4fBTb+xbaGRQ7jcVJ
3tmzWZHH+cCnZFPKFCYAUQPeRtIqzX2SwE77ptBwzYlRE2IKJK5nQ/5dlzV5POGi
j1yANckMcTbaTNbK6P5SeOOkx03fT0lyJgDovrUvfzJiolhSQfNwZgwXNcd8VIv8
8A8E0M9OYe2reBUG5rMid3h/FCF5qDVunVIKVhyk4XtXYxt5LRNaMXKFnlLlHXJP
GQJ1ViK/HQ+wxJgK0jCCMUCetQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:24 2024 by rpki-client on console-ams.rpki-client.org