Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/YkpE0UmPGcnwhfO6xE-jb7DtEEo.roa
File: YkpE0UmPGcnwhfO6xE-jb7DtEEo.roa (raw, json)
Hash identifier: poQ45/liLlVuVsBkewBWPT7mb8KhPY/mPYC8PAlAIRQ=
Subject key identifier: 62:4A:44:D1:49:8F:19:C9:F0:85:F3:BA:C4:4F:A3:6F:B0:ED:10:4A
Certificate issuer: /CN=86df1259b3aa1de34d13d1d863178864d9d185cb
Certificate serial: 04E2230D
Authority key identifier: 86:DF:12:59:B3:AA:1D:E3:4D:13:D1:D8:63:17:88:64:D9:D1:85:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ht8SWbOqHeNNE9HYYxeIZNnRhcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/YkpE0UmPGcnwhfO6xE-jb7DtEEo.roa
Signing time: Sat 01 Jan 2022 04:02:21 +0000
ROA not before: Sat 01 Jan 2022 04:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 109.235.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81928973 (0x4e2230d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86df1259b3aa1de34d13d1d863178864d9d185cb
Validity
Not Before: Jan 1 04:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=624a44d1498f19c9f085f3bac44fa36fb0ed104a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:5a:e6:cf:c3:a2:9e:79:7c:b1:1e:6c:cb:
39:4a:e5:44:c5:e2:d6:8c:e2:f7:f8:80:f7:24:b3:
90:e7:f9:d9:c7:ba:cc:ef:4c:d9:21:90:12:5a:7a:
eb:77:66:96:b2:8a:fa:e7:c3:70:dd:5e:b3:e2:69:
e3:89:95:b3:08:84:99:66:d5:84:83:5a:02:d2:58:
97:01:cd:ad:55:e9:5e:ae:93:2e:0e:6f:7f:f4:ec:
5e:f2:1c:07:c4:7c:82:2e:19:fa:f9:56:06:d9:42:
ba:a3:59:5a:b3:38:85:11:d8:54:95:60:53:a3:0e:
ff:72:44:51:5c:da:07:78:30:09:58:1f:47:d9:82:
a6:1c:5f:5a:52:69:6c:a8:66:78:78:df:60:99:23:
36:05:f6:ad:06:03:ba:a2:12:d3:e5:6f:aa:ec:7f:
74:e5:d4:22:e3:ea:8c:95:a6:a6:82:bd:f6:4d:d4:
a9:4d:89:52:6c:9b:c7:e6:dc:84:45:24:c2:c0:b4:
cb:d7:55:4f:9e:e3:52:76:1d:a2:2a:20:4b:41:7f:
34:88:55:57:36:e9:ef:af:51:6a:3c:54:59:07:77:
0e:70:93:92:34:79:83:35:30:b4:9b:e9:13:3f:db:
66:17:ac:be:8e:80:56:b5:12:90:b8:f8:0c:de:1b:
7e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:4A:44:D1:49:8F:19:C9:F0:85:F3:BA:C4:4F:A3:6F:B0:ED:10:4A
X509v3 Authority Key Identifier:
keyid:86:DF:12:59:B3:AA:1D:E3:4D:13:D1:D8:63:17:88:64:D9:D1:85:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ht8SWbOqHeNNE9HYYxeIZNnRhcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/YkpE0UmPGcnwhfO6xE-jb7DtEEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d01a91-a3ab-4e08-9564-a51aa23a8fdd/1/ht8SWbOqHeNNE9HYYxeIZNnRhcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.99.0/24
Signature Algorithm: sha256WithRSAEncryption
f4:8c:4e:d6:e0:30:39:a1:c3:95:d5:34:da:7c:e7:de:f9:90:
a3:e4:27:9f:74:0c:4c:3d:7b:13:c8:bc:93:fe:e1:28:e2:f1:
a9:73:2b:00:69:70:a5:86:a0:46:ed:31:73:88:b4:6c:40:e0:
9e:c7:7a:2a:79:32:83:5d:04:ab:e4:c7:e1:70:49:25:31:92:
98:eb:2a:83:bd:e0:e6:ab:d1:af:e2:bb:38:89:0c:a5:02:4a:
21:f3:d6:67:b1:de:2e:92:09:bd:ad:63:03:08:3e:a6:37:94:
2e:76:78:fe:b4:c7:0b:22:27:ef:2f:c1:d9:65:06:03:b5:26:
38:76:3a:8a:de:cb:41:d5:98:39:1f:8a:d7:65:72:e2:e5:33:
b4:f0:7c:03:8d:86:a4:eb:ae:9d:0d:a0:83:a3:cc:83:46:69:
93:a2:0b:44:55:a0:4c:3e:46:85:63:41:1b:7f:8c:21:aa:bc:
67:36:f2:bc:83:e8:56:d3:9c:d9:6d:22:c6:76:07:5f:f2:45:
d5:47:db:49:48:1e:ab:44:6c:4c:49:be:90:a4:a3:0f:0b:fc:
cf:98:71:e5:e9:63:54:d5:88:9c:10:02:89:47:24:0c:56:05:
18:4c:cf:f0:a5:38:b3:81:71:0d:85:46:f7:64:ab:d3:01:54:
be:85:4f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-fra.rpki-client.org