Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/yPi_hl3WNCg6ACJ4s_LjpE1nhjE.roa
File: yPi_hl3WNCg6ACJ4s_LjpE1nhjE.roa (raw, json)
Hash identifier: KFNVkN9PpYO/NEp3flPcnFiNy9NDK9Ln7nlfzhfvZAY=
Subject key identifier: C8:F8:BF:86:5D:D6:34:28:3A:00:22:78:B3:F2:E3:A4:4D:67:86:31
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 071F49C4
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/yPi_hl3WNCg6ACJ4s_LjpE1nhjE.roa
Signing time: Sat 01 Jan 2022 12:55:56 +0000
ROA not before: Sat 01 Jan 2022 12:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 91.244.224.0/24 maxlen: 24
95.178.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119491012 (0x71f49c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jan 1 12:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8f8bf865dd634283a002278b3f2e3a44d678631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2a:37:ce:6e:a6:dd:43:87:16:e5:f8:a2:d5:
82:26:8b:2a:f2:08:ea:0c:53:e4:28:1a:d5:e9:a9:
fd:52:38:a5:7a:b4:6d:0c:71:55:da:55:9b:2b:63:
57:ee:07:04:b3:bc:bf:0a:f8:55:ce:22:9f:d3:ce:
7a:98:16:1d:b3:f1:cd:c8:a1:62:e5:df:71:2a:9d:
7a:78:c4:2f:d3:87:7a:1c:4a:29:ff:87:b2:f2:1b:
e1:82:c5:c8:99:49:c0:72:52:ab:59:fd:48:c0:c6:
53:e2:59:95:2c:8c:80:23:5c:70:94:7e:ac:f8:af:
5e:92:4b:c1:0a:37:0d:09:46:66:4d:72:6d:34:24:
46:2b:8c:49:f9:50:72:63:50:d9:25:2b:5b:47:e9:
3a:9c:68:58:28:52:11:b2:1c:fd:7d:78:ef:6d:d5:
76:31:1e:e9:73:21:c0:1c:20:7a:92:57:93:1f:78:
0e:81:c6:2d:6c:6a:08:35:92:50:41:3b:6b:03:61:
83:a1:a5:5f:80:d1:e7:b1:ce:d2:84:d8:31:b4:f3:
90:d3:5c:dd:80:ad:b4:3d:84:a7:4c:a0:b2:a4:40:
c6:55:c2:d1:75:b0:31:d8:00:53:4f:94:a1:ef:39:
b6:43:b6:86:d4:2a:42:60:e4:ff:d2:4d:00:40:22:
55:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F8:BF:86:5D:D6:34:28:3A:00:22:78:B3:F2:E3:A4:4D:67:86:31
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/yPi_hl3WNCg6ACJ4s_LjpE1nhjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.224.0/24
95.178.106.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:2a:d6:ba:f7:fd:ee:42:85:51:ce:9e:ef:21:27:8f:81:7a:
8b:9a:54:e2:25:96:1a:e6:cc:2a:62:fa:30:c9:85:16:56:9f:
65:03:fa:87:03:3c:17:54:ab:ed:f2:28:f7:a6:47:b4:e2:09:
f4:22:71:43:9c:a5:f6:9e:40:cf:dd:7d:61:42:27:77:3a:9f:
c4:85:94:d8:8f:f1:13:b6:36:ca:6d:fe:18:c8:94:a4:ff:21:
f1:48:95:07:52:dd:bf:0c:97:76:f6:3a:b1:da:2d:ca:39:43:
4e:ce:a1:da:bb:61:43:70:e4:6a:9b:d5:c5:a3:9b:ea:c2:e9:
d6:06:15:e3:06:a1:c2:ab:9e:44:69:b8:c1:eb:d0:87:3d:ee:
3f:56:c7:78:06:74:af:80:cf:a9:f3:d6:c8:99:69:a4:82:e4:
28:c8:cd:a1:4b:cf:b9:9b:d1:08:df:c4:ae:a3:1d:8d:8f:d2:
ff:1e:fa:ad:1e:7e:0e:a1:61:17:d9:13:ca:54:15:65:1a:79:
f8:f5:40:f3:62:53:67:13:eb:2c:7c:d0:6e:67:aa:5a:31:3b:
02:29:33:99:cc:b9:13:d9:02:d3:fe:40:1c:b7:de:e7:65:10:
53:17:8d:48:3c:be:80:b5:26:be:f2:63:9c:83:d9:f5:40:04:
dd:f0:f3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org