Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/YcxImJLu3D3Hftjgvm2PXWHAUtQ.roa
File: YcxImJLu3D3Hftjgvm2PXWHAUtQ.roa (raw, json)
Hash identifier: mX/kSH0b8QGk236JDGtBY3i9pD3+iXbV85V+We4IY80=
Subject key identifier: 61:CC:48:98:92:EE:DC:3D:C7:7E:D8:E0:BE:6D:8F:5D:61:C0:52:D4
Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Certificate serial: 3D132D
Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/YcxImJLu3D3Hftjgvm2PXWHAUtQ.roa
Signing time: Sat 01 Jan 2022 02:56:03 +0000
ROA not before: Sat 01 Jan 2022 02:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33965
IP address blocks: 193.73.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4002605 (0x3d132d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Validity
Not Before: Jan 1 02:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61cc489892eedc3dc77ed8e0be6d8f5d61c052d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ca:a9:65:d1:95:c1:c1:78:d2:ac:cf:ea:ff:
ca:98:f5:26:5e:3b:7a:da:74:e9:c2:50:c0:f0:aa:
11:94:be:e4:a6:53:a5:b9:65:17:7d:2a:f8:c8:27:
7a:17:f2:46:0e:97:d5:14:e8:98:96:e3:bf:6a:5f:
0f:45:e9:b5:0a:88:09:ba:7a:e6:68:eb:61:8c:68:
32:6f:de:5d:4b:3d:6e:10:66:af:95:1f:43:7d:e1:
01:b2:69:0a:22:21:cf:29:9c:46:b2:8b:94:59:8e:
57:91:98:19:6b:ef:d0:1b:74:bb:ed:76:c8:12:ad:
5f:da:4d:52:81:21:21:34:23:d0:5f:8e:a8:3f:d3:
70:7d:7d:77:e8:7f:bd:d2:d1:10:f7:e6:54:cf:68:
86:93:3f:fa:17:ab:76:43:a1:c1:79:43:04:bf:f4:
ad:c3:9e:0a:77:bc:84:57:38:5e:c6:96:d0:40:ff:
d8:ab:66:c4:e0:03:4e:73:7d:3d:02:6f:be:b0:4e:
42:a3:65:a7:07:71:a2:60:84:11:d2:a9:87:6f:76:
06:4f:d0:52:57:f7:9f:ac:3b:2d:d3:93:d7:f2:e5:
59:d2:42:b8:fc:9c:a9:4d:6c:83:2f:7a:3c:31:69:
65:bc:49:41:fb:d3:08:95:35:28:18:43:b1:a6:af:
d2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:CC:48:98:92:EE:DC:3D:C7:7E:D8:E0:BE:6D:8F:5D:61:C0:52:D4
X509v3 Authority Key Identifier:
keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/YcxImJLu3D3Hftjgvm2PXWHAUtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.73.114.0/24
Signature Algorithm: sha256WithRSAEncryption
e4:46:07:5c:27:b7:bf:c8:37:97:ee:22:e1:54:9e:f1:0d:a1:
59:95:8c:a4:92:8b:06:df:b6:0b:22:71:e8:a5:8d:5d:fe:ea:
fe:2c:52:be:61:2f:97:a7:59:af:6e:18:6e:80:57:47:ce:cc:
cf:83:41:81:9a:56:28:e9:af:00:38:cf:73:33:b7:b6:4c:8a:
cb:f2:0c:91:5f:8e:0e:bc:ce:2a:d7:9a:52:b2:28:fa:9b:75:
db:68:2e:ec:15:c2:f3:d2:18:56:7e:2e:24:3d:bf:61:59:ce:
e0:f7:89:48:8d:56:5b:0f:99:f1:c5:b8:d5:80:b2:f2:3e:4b:
02:ea:eb:53:d3:5c:f2:df:de:ae:1a:53:02:90:e2:66:d5:21:
f2:9d:ef:44:e2:d4:3f:4f:f8:db:33:ba:7c:ab:21:cd:2a:ed:
f1:ae:4d:b7:6a:e0:7f:f7:0c:18:0a:66:21:fe:e9:d8:df:67:
e0:bc:4e:8c:3a:91:47:c9:b1:aa:d8:b3:33:cb:19:d7:e4:76:
19:2e:cd:ad:7e:7a:c5:cd:9e:b9:d0:2c:d9:c0:a2:d2:f8:d4:
32:1d:3f:33:84:4f:00:75:31:a9:a1:cf:a1:8b:de:f7:3c:56:
f0:a1:d0:21:a6:01:15:d3:a8:25:ea:e0:7e:e3:08:c8:ea:42:
73:a2:25:61
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDPRMtMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGM2
ZDExYjY0ZmZlMThlZmE0MmY0M2E2Yzc2NTYzOWRlZTM4ZDAyN2UwHhcNMjIwMTAx
MDI1NjAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2MWNjNDg5ODkyZWVk
YzNkYzc3ZWQ4ZTBiZTZkOGY1ZDYxYzA1MmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvMqpZdGVwcF40qzP6v/KmPUmXjt62nTpwlDA8KoRlL7kplOl
uWUXfSr4yCd6F/JGDpfVFOiYluO/al8PRem1CogJunrmaOthjGgyb95dSz1uEGav
lR9DfeEBsmkKIiHPKZxGsouUWY5XkZgZa+/QG3S77XbIEq1f2k1SgSEhNCPQX46o
P9NwfX136H+90tEQ9+ZUz2iGkz/6F6t2Q6HBeUMEv/Stw54Kd7yEVzhexpbQQP/Y
q2bE4ANOc309Am++sE5Co2WnB3GiYIQR0qmHb3YGT9BSV/efrDst05PX8uVZ0kK4
/JypTWyDL3o8MWllvElB+9MIlTUoGEOxpq/SZQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGHMSJiS7tw9x37Y4L5tj11hwFLUMB8GA1UdIwQYMBaAFMbRG2T/4Y76QvQ6
bHZWOd7jjQJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
eHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4LzEv
WWN4SW1KTHUzRDNIZnRqZ3ZtMlBYV0hBVXRRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80
Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4LzEveHRFYlpQX2hqdnBD
OURwc2RsWTUzdU9OQW40LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwUlyMA0GCSqGSIb3DQEBCwUAA4IB
AQDkRgdcJ7e/yDeX7iLhVJ7xDaFZlYykkosG37YLInHopY1d/ur+LFK+YS+Xp1mv
bhhugFdHzszPg0GBmlYo6a8AOM9zM7e2TIrL8gyRX44OvM4q15pSsij6m3XbaC7s
FcLz0hhWfi4kPb9hWc7g94lIjVZbD5nxxbjVgLLyPksC6utT01zy396uGlMCkOJm
1SHyne9E4tQ/T/jbM7p8qyHNKu3xrk23auB/9wwYCmYh/unY32fgvE6MOpFHybGq
2LMzyxnX5HYZLs2tfnrFzZ650CzZwKLS+NQyHT8zhE8AdTGpoc+hi973PFbwodAh
pgEV06gl6uB+4wjI6kJzoiVh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:59 2024 by rpki-client on console-ams.rpki-client.org