Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/WYe4ciMCPtVkWPf5VPsdnQzVYFA.roa
File: WYe4ciMCPtVkWPf5VPsdnQzVYFA.roa (raw, json)
Hash identifier: tJUT9uyyboeKt7Q+TIC/FcwpdniP9oDYOyWbtoeoUys=
Subject key identifier: 59:87:B8:72:23:02:3E:D5:64:58:F7:F9:54:FB:1D:9D:0C:D5:60:50
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 05A68B10
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/WYe4ciMCPtVkWPf5VPsdnQzVYFA.roa
Signing time: Sat 01 Jan 2022 07:57:48 +0000
ROA not before: Sat 01 Jan 2022 07:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60632
IP address blocks: 185.27.248.0/24 maxlen: 24
185.27.251.0/24 maxlen: 24
185.27.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94800656 (0x5a68b10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Jan 1 07:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5987b87223023ed56458f7f954fb1d9d0cd56050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:22:af:78:ea:e1:b4:b5:f5:a7:f4:b3:0b:fe:
ee:d9:18:f9:87:5d:b4:cd:3d:dd:d2:38:83:11:d8:
05:28:03:b0:ff:10:95:24:c1:1c:7f:42:33:97:06:
52:b1:4b:fa:d5:04:8a:7f:05:b7:c3:10:5e:58:6e:
5b:35:08:50:0c:4b:45:cc:d9:14:6f:04:1d:b3:74:
01:2a:20:3d:8a:c3:f2:fd:20:0d:53:3c:b6:95:60:
9f:75:e8:07:94:ac:bb:bb:69:5b:92:eb:98:bf:df:
2c:1e:b7:6f:95:24:82:c0:89:85:1d:6c:b2:05:2a:
ea:0e:95:55:48:fa:c2:e7:2e:f3:b2:38:1c:61:37:
60:f0:f6:0c:fd:80:a5:ba:00:6d:18:ce:d3:8a:f0:
13:06:4c:e2:97:46:82:84:15:8f:69:34:88:ca:fe:
30:7e:db:6b:c2:69:bd:4c:95:10:0a:7c:e7:92:eb:
e4:dc:3b:76:0f:3f:c2:a5:fd:6e:58:17:98:21:f8:
dd:ec:e1:4c:00:89:4c:7e:e7:fa:69:7b:fd:4e:2c:
65:c7:76:ec:ba:91:fb:b4:34:0e:9d:ca:d0:53:ac:
26:2d:b9:c3:29:d2:f1:88:bf:a3:0b:fe:86:5e:92:
6c:b4:63:b8:f4:db:23:6b:70:42:dd:4d:50:b8:e2:
37:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:87:B8:72:23:02:3E:D5:64:58:F7:F9:54:FB:1D:9D:0C:D5:60:50
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/WYe4ciMCPtVkWPf5VPsdnQzVYFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.248.0/24
185.27.250.0/23
Signature Algorithm: sha256WithRSAEncryption
60:53:b2:6a:8f:c5:fd:70:73:77:ed:24:c5:c2:e5:30:f1:ae:
6c:aa:84:77:92:24:25:01:dc:e7:1c:26:88:6e:ce:de:a5:86:
e1:1c:74:c7:ee:92:50:cd:40:6a:33:0d:9f:0d:f3:41:c7:ed:
be:d3:e0:59:35:a3:ae:b0:78:8a:da:9b:47:6c:03:a3:16:69:
50:43:8a:e2:a7:dc:e9:6c:df:6d:08:c1:91:bc:d5:62:89:2b:
33:1b:a1:3c:64:33:7a:ff:1f:b0:80:05:d8:11:1b:aa:14:04:
28:89:84:47:2a:c2:ff:e8:ba:2d:bf:75:6b:10:85:6b:9c:39:
dc:e8:3d:58:cd:1f:27:41:9f:a3:74:51:cc:19:e6:af:78:1a:
83:b2:58:11:58:39:13:2f:b8:3e:1e:47:94:3b:5e:80:a1:a4:
58:43:0d:d8:98:56:3d:2a:1f:50:09:ee:33:df:4a:98:8e:72:
db:f1:b4:58:7c:c0:5f:13:b2:a9:5c:8d:d1:72:1a:2a:6e:c7:
29:af:3a:6c:c1:28:49:ab:22:39:0e:be:c6:ff:1f:62:33:d7:
da:79:7e:21:52:60:20:03:a8:aa:81:bb:57:62:2c:b3:3b:e9:
6d:63:19:32:0d:dd:41:76:ed:ab:44:8d:10:3d:e6:0d:19:87:
c4:ec:af:7a
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBaaLEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MWE1ZDIxNzc1OWU4NjE2OTZmYzc3ZWQ5YWE2M2I5NGVkYjNiZTdkMB4XDTIyMDEw
MTA3NTc0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTk4N2I4NzIyMzAy
M2VkNTY0NThmN2Y5NTRmYjFkOWQwY2Q1NjA1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJsir3jq4bS19af0swv+7tkY+YddtM093dI4gxHYBSgDsP8Q
lSTBHH9CM5cGUrFL+tUEin8Ft8MQXlhuWzUIUAxLRczZFG8EHbN0ASogPYrD8v0g
DVM8tpVgn3XoB5Ssu7tpW5LrmL/fLB63b5UkgsCJhR1ssgUq6g6VVUj6wucu87I4
HGE3YPD2DP2ApboAbRjO04rwEwZM4pdGgoQVj2k0iMr+MH7ba8JpvUyVEAp855Lr
5Nw7dg8/wqX9blgXmCH43ezhTACJTH7n+ml7/U4sZcd27LqR+7Q0Dp3K0FOsJi25
wynS8Yi/owv+hl6SbLRjuPTbI2twQt1NULjiN8sCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRZh7hyIwI+1WRY9/lU+x2dDNVgUDAfBgNVHSMEGDAWgBRhpdIXdZ6GFpb8
d+2apjuU7bO+fTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lhWFNGM1dlaGhhV19IZnRtcVk3bE8yenZuMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvNzJmNmNmLTliZDQtNDY3YS1hOTJhLTVhNjRhNWZjOGE2NC8x
L1dZZTRjaU1DUHRWa1dQZjVWUHNkblF6VllGQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
NzJmNmNmLTliZDQtNDY3YS1hOTJhLTVhNjRhNWZjOGE2NC8xL1lhWFNGM1dlaGhh
V19IZnRtcVk3bE8yenZuMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALkb+AMEAbkb+jANBgkqhkiG9w0B
AQsFAAOCAQEAYFOyao/F/XBzd+0kxcLlMPGubKqEd5IkJQHc5xwmiG7O3qWG4Rx0
x+6SUM1AajMNnw3zQcftvtPgWTWjrrB4itqbR2wDoxZpUEOK4qfc6WzfbQjBkbzV
YokrMxuhPGQzev8fsIAF2BEbqhQEKImERyrC/+i6Lb91axCFa5w53Og9WM0fJ0Gf
o3RRzBnmr3gag7JYEVg5Ey+4Ph5HlDtegKGkWEMN2JhWPSofUAnuM99KmI5y2/G0
WHzAXxOyqVyN0XIaKm7HKa86bMEoSasiOQ6+xv8fYjPX2nl+IVJgIAOoqoG7V2Is
szvpbWMZMg3dQXbtq0SNED3mDRmHxOyveg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:46 2024 by rpki-client on console-fra.rpki-client.org