Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/Yf7WytGYw4OKTUkFhXO3NUrcAcE.roa
File: Yf7WytGYw4OKTUkFhXO3NUrcAcE.roa (raw, json)
Hash identifier: 5oW13XyfvFRq154MMbH2vgkbGcEVE3Wb/SGhF1/eMEk=
Subject key identifier: 61:FE:D6:CA:D1:98:C3:83:8A:4D:49:05:85:73:B7:35:4A:DC:01:C1
Certificate issuer: /CN=2ee74296fce8d20befa18799dae6ec7831d61c5a
Certificate serial: 024410C1
Authority key identifier: 2E:E7:42:96:FC:E8:D2:0B:EF:A1:87:99:DA:E6:EC:78:31:D6:1C:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LudClvzo0gvvoYeZ2ubseDHWHFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/Yf7WytGYw4OKTUkFhXO3NUrcAcE.roa
Signing time: Sat 01 Jan 2022 14:54:45 +0000
ROA not before: Sat 01 Jan 2022 14:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25164
IP address blocks: 195.177.234.0/23 maxlen: 23
194.146.212.0/22 maxlen: 22
2a01:200::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38015169 (0x24410c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee74296fce8d20befa18799dae6ec7831d61c5a
Validity
Not Before: Jan 1 14:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61fed6cad198c3838a4d49058573b7354adc01c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:99:cb:1d:98:dc:cc:bd:8c:c5:d3:8f:4b:4b:
ca:c3:fd:cb:69:fe:6f:d4:4d:1f:b3:ee:ff:3b:67:
f7:98:6d:3c:14:78:f7:9f:04:a9:6b:a3:82:ea:11:
89:f8:e5:cb:22:3f:ca:e7:b1:8b:d8:4e:88:c6:b5:
3b:c5:4c:b1:4d:86:14:f1:a8:45:5e:0e:56:a5:e1:
96:88:a5:c2:b5:1d:6a:50:3f:ed:37:cc:9d:35:7a:
05:c8:28:79:9c:77:93:ef:a0:94:12:7c:71:fc:e7:
09:6f:54:47:59:24:ca:1b:c6:3d:ea:2b:16:bc:b8:
fe:78:f1:f9:ac:38:3a:da:b6:68:df:72:04:da:7c:
42:cd:d1:db:26:c7:d3:cc:d9:c4:a0:96:06:22:28:
78:14:b2:02:9a:71:31:0b:fd:b7:aa:d0:cb:9d:60:
d6:bb:4f:b3:6c:83:24:03:b7:27:06:b5:78:10:8c:
76:5b:36:63:96:91:77:8b:21:8d:54:b2:80:c5:6d:
c6:78:05:fd:8b:aa:72:88:f0:66:32:e6:83:57:57:
a7:4e:a8:e0:9b:55:c1:02:d2:0c:fa:da:ae:f3:05:
25:74:c3:20:08:09:3a:9c:bc:66:4b:19:2a:91:ee:
5e:3c:22:fe:31:bb:e8:1a:8a:6a:d2:e6:a4:46:cd:
90:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:FE:D6:CA:D1:98:C3:83:8A:4D:49:05:85:73:B7:35:4A:DC:01:C1
X509v3 Authority Key Identifier:
keyid:2E:E7:42:96:FC:E8:D2:0B:EF:A1:87:99:DA:E6:EC:78:31:D6:1C:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LudClvzo0gvvoYeZ2ubseDHWHFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/Yf7WytGYw4OKTUkFhXO3NUrcAcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/LudClvzo0gvvoYeZ2ubseDHWHFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.212.0/22
195.177.234.0/23
IPv6:
2a01:200::/32
Signature Algorithm: sha256WithRSAEncryption
73:b9:f5:4d:25:4f:9c:76:69:bb:a3:5c:27:95:48:6a:5c:c8:
71:ea:72:8a:d0:20:48:b7:2e:44:59:7a:c4:b8:7c:b2:fd:83:
76:28:4a:e7:2a:c6:5e:e9:3c:85:ec:b7:0d:48:32:e8:50:f9:
3a:c3:0e:53:cd:b8:4f:32:3d:02:00:96:a6:d2:bd:31:ac:ef:
df:8c:50:7b:a2:46:2c:7e:3d:34:b3:38:89:3e:16:9a:ec:ce:
cf:89:f7:70:39:d4:bc:86:11:05:73:55:d1:51:40:d4:0c:b9:
d2:31:2e:89:24:cd:95:19:68:54:cf:35:88:e4:80:d9:7d:21:
2b:db:1b:4b:49:aa:8b:8c:d7:85:96:be:b0:c0:4a:9f:43:5c:
ab:d2:f3:f1:fe:da:ab:77:f7:fd:97:24:4e:83:09:43:30:c2:
d8:e8:03:18:af:b0:27:ec:77:ea:ee:d3:83:4f:2c:01:7b:2b:
5e:00:50:ea:34:89:c3:70:66:4c:a1:b7:74:e3:43:d6:57:0d:
7d:cd:45:ac:8e:16:09:b4:d4:db:d2:bb:a4:93:09:4b:f0:d7:
9e:85:0d:2e:84:d8:74:42:a5:92:57:89:c8:be:79:fd:20:3b:
d1:73:76:e0:0d:e7:c3:71:d5:0f:b0:07:2f:06:e5:79:ba:53:
ad:7a:dc:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:44 2024 by rpki-client on console-fra.rpki-client.org