Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ya_LLSOpIAYGbucyOEKNndHHoDY.roa
File: ya_LLSOpIAYGbucyOEKNndHHoDY.roa (raw, json)
Hash identifier: nhgv0XBdvs741tyV48Ahe6q5ktveqCZU1WObLEUlVjY=
Subject key identifier: C9:AF:CB:2D:23:A9:20:06:06:6E:E7:32:38:42:8D:9D:D1:C7:A0:36
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17F4764B
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ya_LLSOpIAYGbucyOEKNndHHoDY.roa
Signing time: Sat 01 Jan 2022 04:00:03 +0000
ROA not before: Sat 01 Jan 2022 04:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44851
IP address blocks: 46.10.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401897035 (0x17f4764b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9afcb2d23a92006066ee73238428d9dd1c7a036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:61:6e:16:06:b0:33:bc:de:17:f6:54:05:
f3:15:7f:4a:4f:68:52:b2:64:0b:a8:60:06:e0:dd:
d2:66:f9:cb:e7:ee:fb:e5:27:59:f7:01:78:e9:9e:
7e:62:19:8d:84:fd:b2:6a:1f:08:5e:f1:c0:42:a1:
bf:aa:ab:9a:96:2b:12:0c:b0:b0:2b:47:63:e2:a6:
2f:a8:68:32:d2:e0:a7:45:0a:ce:9e:b1:d5:9d:ab:
51:81:1f:48:67:c3:1d:29:db:19:98:ff:b7:8d:0e:
dc:c2:d2:bd:a8:fb:f9:13:41:57:99:9b:ed:6d:db:
17:ad:0f:03:cf:ba:19:b0:fe:47:04:33:8e:a8:d1:
93:1c:4d:e0:04:97:c6:a2:ae:ee:89:2d:e4:9f:bb:
f0:76:31:3d:a5:3d:4c:19:d5:1d:63:34:eb:d6:56:
7b:e9:7b:70:5c:40:b5:f9:51:f9:dc:ef:9f:4f:5d:
f6:b1:72:c0:78:e0:c8:1b:ba:57:b7:77:15:d9:ae:
3a:39:46:d4:1c:7f:c6:2e:94:7a:48:87:9c:89:19:
cf:73:79:29:27:71:0e:d9:84:3e:6e:e0:9b:ac:39:
b3:f4:25:09:cb:81:17:49:83:fe:67:b5:d1:26:a5:
17:31:06:6e:f3:ad:21:3a:e4:cc:e0:59:b2:55:b9:
8c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AF:CB:2D:23:A9:20:06:06:6E:E7:32:38:42:8D:9D:D1:C7:A0:36
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ya_LLSOpIAYGbucyOEKNndHHoDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.197.0/24
Signature Algorithm: sha256WithRSAEncryption
76:cd:97:61:6d:79:51:8d:51:26:6d:1f:3e:42:e6:03:88:18:
e6:d0:f8:c7:b3:b4:69:b7:79:9e:ee:21:c3:2d:4f:2f:a9:34:
31:42:d4:2d:33:a8:21:c2:46:d4:e1:e9:15:78:07:61:c8:2e:
7a:5a:6f:81:6e:8a:6f:ea:49:ed:12:4f:32:4e:a5:a7:b6:38:
35:f2:11:49:7c:5a:2c:99:af:e7:db:2f:4b:c8:25:b1:2c:e1:
94:06:a9:0b:37:ac:dd:02:e6:90:9f:9f:86:60:05:1a:f9:8f:
b7:35:b3:53:b0:99:c1:ed:c7:3d:8b:b8:f3:9f:63:06:20:c1:
7c:9a:1a:71:4c:cd:fa:c9:85:fc:ac:35:ad:aa:fd:e3:6c:1a:
70:3c:79:3a:a0:54:5a:ff:34:43:10:9a:59:bc:b6:4f:f1:90:
59:8a:43:36:44:92:11:a0:30:97:9a:8d:d2:28:d6:b2:3e:0e:
1c:3f:48:3f:e8:ef:1b:6e:ec:73:07:33:9e:8f:8f:b6:42:93:
73:9e:0f:81:64:fb:48:fc:1d:74:f1:a6:9b:3a:c7:33:31:01:
64:ad:c6:e2:d5:1e:2b:07:b1:87:8d:24:f2:9d:f0:fa:2c:12:
2f:56:7b:b3:7a:69:0a:9d:96:ae:19:e5:58:df:2b:b2:4e:63:
aa:f5:22:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org