Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/69a09f-5809-4656-b355-146f254ac131/1/Y--KKZ6Pn1uPpX6UtlIDhqTXa3Y.roa
File: Y--KKZ6Pn1uPpX6UtlIDhqTXa3Y.roa (raw, json)
Hash identifier: GHxSjLmZ2SsNxCPtSsl5i1abXUU4doOF+IP5fMKVB8Y=
Subject key identifier: 63:EF:8A:29:9E:8F:9F:5B:8F:A5:7E:94:B6:52:03:86:A4:D7:6B:76
Certificate issuer: /CN=7f439d942426fc673b279cc98ab35fdbd7ea97f5
Certificate serial: 035BD38E
Authority key identifier: 7F:43:9D:94:24:26:FC:67:3B:27:9C:C9:8A:B3:5F:DB:D7:EA:97:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f0OdlCQm_Gc7J5zJirNf29fql_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/69a09f-5809-4656-b355-146f254ac131/1/Y--KKZ6Pn1uPpX6UtlIDhqTXa3Y.roa
Signing time: Wed 30 Mar 2022 10:03:31 +0000
ROA not before: Wed 30 Mar 2022 10:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48483
IP address blocks: 94.247.112.0/21 maxlen: 24
2a01:7a40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56349582 (0x35bd38e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f439d942426fc673b279cc98ab35fdbd7ea97f5
Validity
Not Before: Mar 30 10:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63ef8a299e8f9f5b8fa57e94b6520386a4d76b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:de:2c:0b:fe:d8:f5:6e:91:c8:dd:f9:bd:2c:
fa:ea:90:ca:26:ae:22:eb:66:c4:b5:8d:11:6e:10:
85:58:58:07:cb:73:63:a0:d1:e7:68:18:7d:06:bc:
ae:e1:65:a0:91:a6:2e:7e:1b:18:79:43:db:7c:0e:
de:20:eb:32:65:68:4a:20:ea:50:90:57:dc:3b:7d:
b6:50:5a:1d:5e:a0:f0:93:02:49:fe:89:db:55:df:
5a:d1:ce:31:a2:20:80:f2:65:42:1b:79:f8:d0:c2:
80:e7:e0:47:27:55:b4:6f:51:17:32:87:55:9c:33:
6d:4a:03:ba:9f:d1:10:1d:7e:b0:00:85:cc:51:ea:
b7:72:04:84:20:84:bc:ad:c8:30:18:90:fd:8a:4c:
1c:98:f5:d5:1b:aa:c9:d6:db:ac:d8:2c:59:88:69:
de:a4:62:5c:b1:e6:d7:76:1e:0c:ef:03:4c:a0:77:
ec:23:aa:28:5c:02:c5:a0:e5:e7:76:3e:7f:5c:f0:
82:ef:f2:90:41:2b:23:a8:55:d8:1e:44:8f:11:8a:
67:04:97:fc:e3:79:8f:94:40:6e:c3:01:79:2c:1b:
cd:e6:6d:47:b4:9c:92:72:de:45:08:03:03:55:dd:
c6:1c:d8:1e:14:02:c5:68:83:cb:bf:bd:99:aa:88:
cf:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EF:8A:29:9E:8F:9F:5B:8F:A5:7E:94:B6:52:03:86:A4:D7:6B:76
X509v3 Authority Key Identifier:
keyid:7F:43:9D:94:24:26:FC:67:3B:27:9C:C9:8A:B3:5F:DB:D7:EA:97:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0OdlCQm_Gc7J5zJirNf29fql_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/69a09f-5809-4656-b355-146f254ac131/1/Y--KKZ6Pn1uPpX6UtlIDhqTXa3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/69a09f-5809-4656-b355-146f254ac131/1/f0OdlCQm_Gc7J5zJirNf29fql_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.112.0/21
IPv6:
2a01:7a40::/32
Signature Algorithm: sha256WithRSAEncryption
51:cb:a7:62:e1:b9:c7:0c:40:f3:7b:c3:f6:65:0d:85:81:a2:
61:e6:65:7d:e9:58:16:86:f5:5b:34:93:24:c3:32:23:4c:c1:
c1:49:66:22:7e:83:84:6f:75:81:f3:24:63:0b:dc:eb:93:cd:
a3:95:d1:4c:eb:1a:6c:8e:d3:bd:37:43:b0:5a:f9:a0:7f:b2:
44:f5:9d:2f:12:a2:49:06:e1:81:a3:80:a6:54:70:00:c0:10:
45:b6:6e:fb:67:a4:3b:31:34:06:e8:1a:71:4d:0e:2b:7a:73:
5c:dc:38:63:41:6a:eb:0b:c5:16:83:4e:9c:7c:14:d1:c6:29:
71:ad:c9:51:b6:28:02:25:5a:66:4c:3f:57:b5:a7:c3:f5:ef:
71:9a:85:8b:ba:18:61:b0:a7:1e:5f:19:8c:71:49:a2:5d:04:
c4:57:5a:a9:c7:58:b1:ca:03:93:2b:95:c3:d3:11:c7:eb:f2:
80:49:7d:76:db:37:a6:78:1b:0d:bd:fb:7b:c5:5d:24:be:f8:
e1:7f:18:ab:92:dd:2d:46:75:ac:1a:61:c0:56:b6:1e:23:dd:
8f:f8:92:ed:1e:9e:5d:fb:cb:94:1d:a2:70:87:2b:71:98:d4:
e3:7a:88:5d:d9:6a:6f:1b:b8:b5:88:0c:65:95:27:f3:8b:a0:
6c:e1:d4:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:13 2024 by rpki-client on console-ams.rpki-client.org