Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/yZwElH0WhhJ0rTf8TWeQ5rmF6Gc.roa
File: yZwElH0WhhJ0rTf8TWeQ5rmF6Gc.roa (raw, json)
Hash identifier: zQPYFJdk9t1BJhZDax32S7rn/8cjmzMjnZwWEA3h00E=
Subject key identifier: C9:9C:04:94:7D:16:86:12:74:AD:37:FC:4D:67:90:E6:B9:85:E8:67
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 06E18F1F
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/yZwElH0WhhJ0rTf8TWeQ5rmF6Gc.roa
Signing time: Sat 01 Jan 2022 09:01:20 +0000
ROA not before: Sat 01 Jan 2022 09:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 194.59.139.0/24 maxlen: 24
2a07:cb81::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115445535 (0x6e18f1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Jan 1 09:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c99c04947d16861274ad37fc4d6790e6b985e867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2a:70:4b:19:fc:bb:c6:81:31:ba:2b:e6:09:
0e:dc:9e:1a:33:8a:92:9b:8f:b0:ee:7b:17:08:40:
d5:49:0f:f7:60:b9:8e:3c:be:0d:49:b6:5c:80:e1:
dc:33:7b:87:7a:7f:ec:4f:0a:34:b9:35:2d:e6:dc:
fd:34:4b:bb:2c:53:e4:31:5c:50:72:97:a0:1e:6b:
f7:a6:45:fd:7f:f6:9f:8e:f9:cc:f2:71:67:79:3d:
52:ad:12:7a:0f:34:b0:fa:9c:22:95:1b:49:fd:42:
f4:a9:cf:03:3e:5a:44:0c:75:fe:04:f1:85:82:91:
8d:a2:b4:e9:53:71:e8:e3:d4:64:9d:9b:b1:99:4d:
21:4d:86:64:9f:26:0a:d2:49:0c:50:c4:ae:5f:9d:
c1:e1:2c:9d:83:bc:69:ef:c6:d7:37:54:54:b6:4e:
46:3f:45:60:31:3b:5a:23:af:87:e8:02:81:43:be:
a9:4a:d3:a8:e8:fc:e0:fd:90:65:9f:1b:58:53:0e:
d6:25:56:61:38:49:d9:ee:10:2d:de:db:81:c4:04:
62:a2:25:12:79:bc:25:03:65:e1:3c:17:12:de:e7:
d8:f8:43:61:26:d3:1e:5c:75:4d:7c:c7:db:1d:64:
85:16:01:b9:4a:78:77:ff:1b:63:d5:0c:9d:bc:bc:
63:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9C:04:94:7D:16:86:12:74:AD:37:FC:4D:67:90:E6:B9:85:E8:67
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/yZwElH0WhhJ0rTf8TWeQ5rmF6Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.139.0/24
IPv6:
2a07:cb81::/32
Signature Algorithm: sha256WithRSAEncryption
3f:c2:98:a0:59:b8:e8:ba:92:3a:2e:e6:c2:84:57:a4:f6:83:
11:fe:1a:e2:41:d6:a9:72:e9:95:39:48:48:22:17:bb:69:1a:
1d:86:38:37:2c:cf:18:c7:6f:af:81:f9:38:91:22:08:52:bb:
b6:2a:e6:dc:aa:47:27:47:af:83:6a:d9:2f:ef:b8:d6:65:be:
f7:02:16:f8:5d:d5:b3:62:e6:19:8d:b0:1a:45:60:98:2c:dc:
b1:cd:14:4b:c4:64:54:8b:20:63:98:9e:74:a5:3b:4b:b8:7a:
d5:85:cc:4b:21:c1:0b:34:c1:7c:a5:25:a0:9b:11:6d:13:4f:
a3:ba:26:8c:92:7e:b5:32:dc:a4:57:12:be:f2:66:01:e5:3f:
e1:9d:99:4b:25:02:f3:56:04:40:69:58:1f:21:6f:72:43:80:
bd:58:41:dc:4d:81:93:d6:ed:4f:1f:ca:79:e4:90:2a:d2:e7:
44:b3:b8:d0:b7:4b:58:4c:0b:36:e5:44:f4:69:ee:d6:31:d6:
1f:ae:ae:68:f2:c7:db:ba:55:a3:5c:c8:d3:36:0b:4c:4e:50:
22:c0:86:9f:f7:63:2f:02:51:31:40:5a:c7:3d:41:a5:60:f3:
98:78:18:48:67:f9:62:82:3d:53:32:4d:be:dd:53:02:2d:86:
33:a5:c3:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:23 2024 by rpki-client on console-ams.rpki-client.org