Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/ydlBo8anyaSkvyg_QRHIWQHMeRQ.roa
File: ydlBo8anyaSkvyg_QRHIWQHMeRQ.roa (raw, json)
Hash identifier: UEIvDN+32Hu0tjtFSQk/NToOJncil3mV85h6ugkO/NM=
Subject key identifier: C9:D9:41:A3:C6:A7:C9:A4:A4:BF:28:3F:41:11:C8:59:01:CC:79:14
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 345B068F
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/ydlBo8anyaSkvyg_QRHIWQHMeRQ.roa
Signing time: Thu 17 Feb 2022 07:15:10 +0000
ROA not before: Thu 17 Feb 2022 07:15:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44639
IP address blocks: 193.255.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 878380687 (0x345b068f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Feb 17 07:15:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9d941a3c6a7c9a4a4bf283f4111c85901cc7914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f4:47:b3:58:60:70:67:80:bd:c0:b4:30:7f:
16:3b:71:da:a8:29:6a:d1:94:d7:bb:0a:2b:4b:00:
9b:a3:31:1c:4b:e0:cd:e5:fe:cc:de:50:76:33:a2:
9c:33:13:ff:6f:27:ad:c3:1e:19:78:0f:c6:be:d6:
b4:fb:44:8c:4d:ee:3e:2a:ea:13:ce:5e:24:e2:ac:
bb:17:95:a6:6a:d1:d8:53:54:e8:d0:d9:0e:35:1b:
09:77:80:a5:98:49:ee:11:b4:c6:15:c2:ad:f0:06:
96:cd:b8:b2:08:65:69:52:fb:22:cd:ba:ff:3b:68:
c5:a3:4b:42:6d:c9:7d:e0:3f:d1:35:d6:c4:64:93:
11:9c:94:66:dd:6a:9f:f6:60:49:b5:4e:e4:78:fb:
ec:9f:29:af:1a:3b:5b:e4:0e:1f:90:ea:dd:a6:e7:
fb:a6:e7:45:5d:ed:1a:7a:05:5d:e7:b0:c8:d3:ea:
92:48:ff:79:99:f7:40:69:90:af:7a:3c:d6:9a:90:
ce:59:b7:49:52:9a:09:df:f2:ba:e3:d2:07:b6:46:
36:85:50:21:70:34:aa:f0:f0:27:bb:f4:c6:9f:33:
71:e9:a6:8b:e5:bf:01:6f:4d:eb:b8:e2:87:3d:0b:
92:ba:f3:13:38:96:33:3b:c5:ee:8e:7d:4e:a3:63:
bb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D9:41:A3:C6:A7:C9:A4:A4:BF:28:3F:41:11:C8:59:01:CC:79:14
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/ydlBo8anyaSkvyg_QRHIWQHMeRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.255.120.0/22
Signature Algorithm: sha256WithRSAEncryption
63:83:1b:b5:5c:43:d9:29:df:78:04:07:12:b9:2d:b9:9a:10:
f0:eb:8b:96:2b:22:29:7d:58:6c:5b:36:7a:46:84:b4:42:4e:
d2:2c:5b:8f:c6:22:0f:45:9e:33:22:3d:4a:2d:94:33:fa:0e:
f1:ed:29:4a:4e:a8:c0:d5:8a:1e:e3:83:a7:ee:fc:6e:35:57:
4e:5e:0f:b5:ce:67:24:93:c7:6b:4d:64:ae:d1:7b:63:4d:dc:
0c:22:89:23:02:7e:a5:22:b8:1b:56:42:1c:10:f7:b7:af:2e:
c9:d5:b4:cb:6d:bd:6e:a9:be:37:75:8f:ee:95:6f:39:80:6a:
42:56:44:5c:97:84:42:7c:05:1b:d9:5f:c6:56:1e:ca:1f:d6:
2f:ce:ea:bf:9f:cd:f2:b7:0b:80:78:54:cf:40:95:19:50:ce:
c8:63:f0:2e:ab:b5:b4:81:78:cd:dc:90:55:24:73:78:c3:a0:
38:48:3d:10:bd:35:de:0f:0a:24:2a:e5:b6:fb:84:39:f1:55:
8b:56:62:59:9b:04:1b:19:a9:ad:0b:4d:4a:82:f7:bf:ce:25:
e6:e2:9d:3c:23:56:77:19:0c:eb:a1:d5:18:84:ee:2d:29:85:
d2:ff:fe:47:bd:ec:aa:3e:31:59:f6:39:92:fd:4b:d6:50:5b:
1d:d9:8a:72
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENFsGjzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzUxOGQxODA5MjNhN2YzYzAwNjUzZWMxMmJjNzAyYjk1YWFiOTA3MB4XDTIyMDIx
NzA3MTUxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzlkOTQxYTNjNmE3
YzlhNGE0YmYyODNmNDExMWM4NTkwMWNjNzkxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALH0R7NYYHBngL3AtDB/Fjtx2qgpatGU17sKK0sAm6MxHEvg
zeX+zN5QdjOinDMT/28nrcMeGXgPxr7WtPtEjE3uPirqE85eJOKsuxeVpmrR2FNU
6NDZDjUbCXeApZhJ7hG0xhXCrfAGls24sghlaVL7Is26/ztoxaNLQm3JfeA/0TXW
xGSTEZyUZt1qn/ZgSbVO5Hj77J8prxo7W+QOH5Dq3abn+6bnRV3tGnoFXeewyNPq
kkj/eZn3QGmQr3o81pqQzlm3SVKaCd/yuuPSB7ZGNoVQIXA0qvDwJ7v0xp8zcemm
i+W/AW9N67jihz0LkrrzEziWMzvF7o59TqNju+8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTJ2UGjxqfJpKS/KD9BEchZAcx5FDAfBgNVHSMEGDAWgBQ3UY0YCSOn88AG
U+wSvHArlaq5BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L04xR05HQWtqcF9QQUJsUHNFcnh3SzVXcXVRYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvZjgwZWYzLTlmMGItNGJkMS04MDE4LTU5NjcxOTIwZmI2MC8x
L3lkbEJvOGFueWFTa3Z5Z19RUkhJV1FITWVSUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
ZjgwZWYzLTlmMGItNGJkMS04MDE4LTU5NjcxOTIwZmI2MC8xL04xR05HQWtqcF9Q
QUJsUHNFcnh3SzVXcXVRYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsH/eDANBgkqhkiG9w0BAQsFAAOC
AQEAY4MbtVxD2SnfeAQHErktuZoQ8OuLlisiKX1YbFs2ekaEtEJO0ixbj8YiD0We
MyI9Si2UM/oO8e0pSk6owNWKHuODp+78bjVXTl4Ptc5nJJPHa01krtF7Y03cDCKJ
IwJ+pSK4G1ZCHBD3t68uydW0y229bqm+N3WP7pVvOYBqQlZEXJeEQnwFG9lfxlYe
yh/WL87qv5/N8rcLgHhUz0CVGVDOyGPwLqu1tIF4zdyQVSRzeMOgOEg9EL013g8K
JCrltvuEOfFVi1ZiWZsEGxmprQtNSoL3v84l5uKdPCNWdxkM66HVGITuLSmF0v/+
R73sqj4xWfY5kv1L1lBbHdmKcg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org