Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f88857-cc05-4bdb-91e6-ed4f0643bf25/1/Ykl5Ek3H47MuXx8gIBlgDR7r0rM.roa
File: Ykl5Ek3H47MuXx8gIBlgDR7r0rM.roa (raw, json)
Hash identifier: zelza2JMJMYtCzlC1nWqFbVybqdkPD6GIKXahlR/c3c=
Subject key identifier: 62:49:79:12:4D:C7:E3:B3:2E:5F:1F:20:20:19:60:0D:1E:EB:D2:B3
Certificate issuer: /CN=ced2d800dc6c33b69fa47291e2f15b335ea3600f
Certificate serial: 086E050D
Authority key identifier: CE:D2:D8:00:DC:6C:33:B6:9F:A4:72:91:E2:F1:5B:33:5E:A3:60:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztLYANxsM7afpHKR4vFbM16jYA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f88857-cc05-4bdb-91e6-ed4f0643bf25/1/Ykl5Ek3H47MuXx8gIBlgDR7r0rM.roa
Signing time: Sat 01 Jan 2022 14:04:05 +0000
ROA not before: Sat 01 Jan 2022 14:04:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 51.149.8.0/24 maxlen: 24
51.149.14.0/24 maxlen: 24
51.149.250.0/24 maxlen: 24
51.149.252.0/24 maxlen: 24
51.149.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141427981 (0x86e050d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ced2d800dc6c33b69fa47291e2f15b335ea3600f
Validity
Not Before: Jan 1 14:04:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=624979124dc7e3b32e5f1f202019600d1eebd2b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:30:de:d4:df:cb:ea:57:15:c3:33:d9:09:
a6:31:68:65:75:45:7b:ec:a5:69:23:85:a1:34:21:
82:9b:f4:50:af:5c:38:ac:6e:47:cd:9e:c2:34:78:
22:15:bf:0a:cf:a5:76:1c:f5:9a:8d:3a:37:98:f6:
19:85:3a:ca:f7:0a:33:fe:8a:1d:a5:52:fc:96:14:
93:1e:78:9d:db:ab:9b:c6:a5:bb:a0:db:e9:af:b5:
ee:e3:53:97:a5:36:a4:53:bb:ba:8b:a5:57:ec:15:
7d:89:b2:60:e5:e1:a3:50:93:69:4b:42:ae:b6:6b:
19:42:f2:be:aa:25:16:19:13:40:69:75:db:b3:c0:
6e:a1:c6:0a:45:17:2c:27:8e:e1:57:26:d8:67:bb:
7d:a8:3e:9c:ef:32:47:2a:74:cc:03:3d:56:e3:08:
f1:21:b0:22:3b:94:ce:fe:1c:7b:89:33:d6:37:13:
a5:59:98:10:a9:3f:4d:c3:4e:51:04:50:52:b1:ea:
dc:c9:6f:d1:8f:af:12:12:2a:21:54:b3:55:7a:3e:
f8:11:76:de:ff:34:ce:06:d2:a2:8f:9b:f4:f4:fd:
0e:1d:06:27:70:8e:b0:80:72:31:aa:1c:98:85:ff:
d8:e3:9e:0a:0f:b9:71:4c:53:6f:8c:d5:af:1d:39:
b6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:49:79:12:4D:C7:E3:B3:2E:5F:1F:20:20:19:60:0D:1E:EB:D2:B3
X509v3 Authority Key Identifier:
keyid:CE:D2:D8:00:DC:6C:33:B6:9F:A4:72:91:E2:F1:5B:33:5E:A3:60:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztLYANxsM7afpHKR4vFbM16jYA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f88857-cc05-4bdb-91e6-ed4f0643bf25/1/Ykl5Ek3H47MuXx8gIBlgDR7r0rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f88857-cc05-4bdb-91e6-ed4f0643bf25/1/ztLYANxsM7afpHKR4vFbM16jYA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.149.8.0/24
51.149.14.0/24
51.149.250.0-51.149.252.255
Signature Algorithm: sha256WithRSAEncryption
06:bc:91:0f:f4:d7:1d:a0:62:52:16:3c:d4:65:3d:6b:7d:67:
4b:cd:01:66:ac:a1:fd:4b:c5:61:25:c8:02:6f:c9:2a:98:25:
bf:cc:62:61:66:a8:6b:f3:db:5e:85:6c:8d:15:1a:40:a2:6c:
40:4b:91:ea:46:37:11:14:d8:07:92:5f:c9:3f:43:aa:a2:28:
b0:cc:6f:66:46:3f:b8:2d:fb:c1:40:33:9c:f5:ce:10:95:7f:
80:97:7c:1b:52:bc:52:15:cf:d7:25:11:e8:b6:a1:70:96:f7:
77:bb:1d:bf:81:38:62:4b:63:49:73:1d:da:9b:78:de:a9:21:
22:1d:e0:1f:be:c9:c5:88:cd:1d:06:1a:6f:f5:75:d0:9d:82:
ac:c4:b8:cc:f3:54:81:9e:24:81:0c:8a:d6:52:c3:b6:fb:9b:
9f:6a:03:d2:d1:69:34:45:31:3a:3b:a5:2b:1c:de:d2:a1:c4:
ab:8b:04:79:87:00:ca:6b:cd:8a:c8:41:53:2f:54:2d:27:ca:
9d:8d:1f:bb:b8:72:09:54:a0:98:69:8a:f2:e1:6a:94:65:df:
24:ab:75:5c:ad:91:b1:2b:0f:c1:34:18:69:ad:a1:83:3e:9e:
ae:f1:ff:3d:b5:ad:40:3f:15:c9:21:f4:99:78:9d:97:51:03:
b1:a5:7a:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:05 2024 by rpki-client on console-ams.rpki-client.org