Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/Ya9JRmZMyEwe2picdYFPyZzukxA.roa
File: Ya9JRmZMyEwe2picdYFPyZzukxA.roa (raw, json)
Hash identifier: oEsMaKID1ukeEnrJSvHFfDADMFEjsChSjMR2liy3hMc=
Subject key identifier: 61:AF:49:46:66:4C:C8:4C:1E:DA:98:9C:75:81:4F:C9:9C:EE:93:10
Certificate issuer: /CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Certificate serial: 0892402A
Authority key identifier: 97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/Ya9JRmZMyEwe2picdYFPyZzukxA.roa
Signing time: Sat 01 Jan 2022 10:03:42 +0000
ROA not before: Sat 01 Jan 2022 10:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204431
IP address blocks: 185.249.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143802410 (0x892402a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Validity
Not Before: Jan 1 10:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61af4946664cc84c1eda989c75814fc99cee9310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2a:46:c2:05:d1:c1:5c:26:fa:23:ac:4d:2a:
0d:c7:d8:dc:3d:d6:01:0c:bd:7e:71:c0:64:01:4d:
c2:2c:58:ab:e8:da:6d:46:d7:09:76:3b:9e:b8:29:
a7:0a:35:7a:2b:96:67:8c:88:4b:08:bf:ff:f4:61:
71:ad:fc:97:90:8c:1e:45:9f:88:6a:e9:e8:07:c8:
e8:9e:2e:9b:4f:0b:70:89:a1:72:96:4d:d2:b2:c2:
f6:00:fe:85:31:54:7e:fa:7a:05:f6:2e:86:68:21:
fd:ee:7e:28:0d:f8:d0:27:b3:14:d4:88:4a:a1:21:
13:97:55:99:40:69:4f:9d:a7:f4:ca:7a:36:38:c3:
23:06:cc:4c:af:3a:ec:56:fc:21:22:8a:57:af:5c:
39:2f:50:47:dc:ad:ac:a9:7c:7a:c3:1c:6a:68:5a:
71:5c:b1:31:55:33:25:0c:33:5d:2a:ba:3c:0f:2e:
93:75:44:4f:8b:7c:93:a4:a5:3b:aa:5a:ea:f4:f0:
b0:0f:79:99:9d:da:8d:93:2e:aa:17:9a:04:d8:e2:
6d:9b:b6:db:36:c3:6c:9d:f6:7f:3f:fb:5f:29:27:
99:94:9c:ed:6f:51:e8:ad:65:69:cf:fb:06:28:b3:
cb:f8:9b:21:04:17:6d:2a:ae:3d:12:5d:6d:ca:51:
c3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AF:49:46:66:4C:C8:4C:1E:DA:98:9C:75:81:4F:C9:9C:EE:93:10
X509v3 Authority Key Identifier:
keyid:97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/Ya9JRmZMyEwe2picdYFPyZzukxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/l6qlVaMp7dhmBswOPilr1Hisc94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.16.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:2c:c6:0b:9e:f1:f0:9a:84:50:91:07:cb:95:a6:13:69:66:
20:03:7e:ba:58:24:ac:96:b4:83:3a:00:91:26:0a:34:5c:eb:
64:6a:2f:8c:77:33:61:34:a9:a2:fe:12:d1:06:18:8b:9f:81:
92:65:91:82:cd:f9:da:17:82:a1:21:29:3b:cf:c6:90:1a:00:
bf:95:4b:bd:e8:54:5f:e2:dc:0e:6e:bf:3b:b4:95:4c:44:b9:
f9:20:0a:a6:bf:8d:2d:46:1c:08:cc:e8:74:54:9a:05:01:ff:
c1:53:a4:36:df:25:db:ee:94:f1:40:09:a1:10:65:14:26:7f:
7f:d3:b3:6a:e6:82:ea:f2:d2:63:5a:61:c9:af:87:b2:9c:48:
9a:40:56:ee:a0:ce:65:0e:97:f7:60:99:f1:46:d0:88:1a:1c:
12:e3:0e:18:0a:4d:2d:04:59:32:3a:a9:ff:db:12:0d:51:bc:
35:2d:1e:12:b2:9d:92:e2:26:70:01:8c:30:03:1e:a0:c3:1e:
72:c2:b4:e2:4b:76:72:4e:e8:e5:71:9a:b0:44:44:8f:84:27:
e1:77:6d:d5:e9:ec:99:b1:cf:da:c5:4f:d1:2b:ee:f8:a1:da:
1b:94:09:55:cb:92:64:0e:a7:39:ea:27:5f:0a:cc:d8:30:e7:
df:e1:9f:70
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECJJAKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
N2FhYTU1NWEzMjllZGQ4NjYwNmNjMGUzZTI5NmJkNDc4YWM3M2RlMB4XDTIyMDEw
MTEwMDM0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjFhZjQ5NDY2NjRj
Yzg0YzFlZGE5ODljNzU4MTRmYzk5Y2VlOTMxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKUqRsIF0cFcJvojrE0qDcfY3D3WAQy9fnHAZAFNwixYq+ja
bUbXCXY7nrgppwo1eiuWZ4yISwi///Rhca38l5CMHkWfiGrp6AfI6J4um08LcImh
cpZN0rLC9gD+hTFUfvp6BfYuhmgh/e5+KA340CezFNSISqEhE5dVmUBpT52n9Mp6
NjjDIwbMTK867Fb8ISKKV69cOS9QR9ytrKl8esMcamhacVyxMVUzJQwzXSq6PA8u
k3VET4t8k6SlO6pa6vTwsA95mZ3ajZMuqheaBNjibZu22zbDbJ32fz/7XyknmZSc
7W9R6K1lac/7Biizy/ibIQQXbSquPRJdbcpRw3kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRhr0lGZkzITB7amJx1gU/JnO6TEDAfBgNVHSMEGDAWgBSXqqVVoynt2GYG
zA4+KWvUeKxz3jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2w2cWxWYU1wN2RobUJzd09QaWxyMUhpc2M5NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvMTE5NWFiLWVkNDEtNDUyZi1iYzIyLTdmZDBkZWFlMzJjNS8x
L1lhOUpSbVpNeUV3ZTJwaWNkWUZQeVp6dWt4QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
MTE5NWFiLWVkNDEtNDUyZi1iYzIyLTdmZDBkZWFlMzJjNS8xL2w2cWxWYU1wN2Ro
bUJzd09QaWxyMUhpc2M5NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArn5EDANBgkqhkiG9w0BAQsFAAOC
AQEAfizGC57x8JqEUJEHy5WmE2lmIAN+ulgkrJa0gzoAkSYKNFzrZGovjHczYTSp
ov4S0QYYi5+BkmWRgs352heCoSEpO8/GkBoAv5VLvehUX+LcDm6/O7SVTES5+SAK
pr+NLUYcCMzodFSaBQH/wVOkNt8l2+6U8UAJoRBlFCZ/f9OzauaC6vLSY1phya+H
spxImkBW7qDOZQ6X92CZ8UbQiBocEuMOGApNLQRZMjqp/9sSDVG8NS0eErKdkuIm
cAGMMAMeoMMecsK04kt2ck7o5XGasEREj4Qn4Xdt1ensmbHP2sVP0Svu+KHaG5QJ
VcuSZA6nOeonXwrM2DDn3+GfcA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org