Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/YuTJZYnp4-0VMg0kSvGNN0LWoQw.roa
File: YuTJZYnp4-0VMg0kSvGNN0LWoQw.roa (raw, json)
Hash identifier: MeNn7JWb3y8PRQDuDW3YPADFryMOnPoLiji+bdqa4b0=
Subject key identifier: 62:E4:C9:65:89:E9:E3:ED:15:32:0D:24:4A:F1:8D:37:42:D6:A1:0C
Certificate issuer: /CN=d7bb552365499c07aed34b6884f5b2e9380ebee1
Certificate serial: 7F7D
Authority key identifier: D7:BB:55:23:65:49:9C:07:AE:D3:4B:68:84:F5:B2:E9:38:0E:BE:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/17tVI2VJnAeu00tohPWy6TgOvuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/YuTJZYnp4-0VMg0kSvGNN0LWoQw.roa
Signing time: Tue 26 Apr 2022 15:13:55 +0000
ROA not before: Tue 26 Apr 2022 15:13:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.124.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32637 (0x7f7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7bb552365499c07aed34b6884f5b2e9380ebee1
Validity
Not Before: Apr 26 15:13:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62e4c96589e9e3ed15320d244af18d3742d6a10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a7:f9:72:16:f3:5f:b4:33:8f:67:74:8a:d9:
dc:2b:16:a0:a4:6f:69:3a:8b:a5:b6:68:00:9a:43:
09:a9:d9:e3:d7:dd:c7:7f:11:a6:81:06:84:52:33:
d8:be:fc:21:af:2c:b1:80:59:87:e6:75:57:e5:30:
e9:d2:92:79:28:98:b1:04:89:72:38:68:ec:13:57:
7b:d6:dd:78:cc:fb:6d:f5:e5:b1:04:1c:63:7f:54:
de:42:6c:90:bc:ca:15:38:e8:12:50:35:85:c0:c1:
92:cd:46:37:a1:40:a8:0d:37:a8:35:b4:a8:6d:20:
8e:c3:70:b7:05:be:92:5d:eb:5f:14:38:a7:74:09:
75:4c:89:5d:ed:3c:eb:44:28:18:87:31:34:7f:fe:
c8:79:ed:51:3f:8f:ba:0b:0b:8e:59:da:21:30:72:
45:8c:2e:30:d8:37:a6:a8:47:50:51:f1:c0:3f:52:
86:32:ff:56:71:90:7f:62:e7:98:3c:08:27:40:61:
7b:92:f8:dd:2c:e6:92:07:c6:c9:69:57:f5:05:57:
a8:3a:76:fc:ae:cb:c0:7e:03:fe:4e:7d:d4:3d:b8:
bf:1b:17:32:8a:4e:24:96:75:ff:27:ca:7e:98:d5:
4e:5b:e8:ac:df:d3:bf:c7:b0:3d:2c:d1:93:45:63:
16:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E4:C9:65:89:E9:E3:ED:15:32:0D:24:4A:F1:8D:37:42:D6:A1:0C
X509v3 Authority Key Identifier:
keyid:D7:BB:55:23:65:49:9C:07:AE:D3:4B:68:84:F5:B2:E9:38:0E:BE:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/17tVI2VJnAeu00tohPWy6TgOvuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/YuTJZYnp4-0VMg0kSvGNN0LWoQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/17tVI2VJnAeu00tohPWy6TgOvuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.142.0/23
Signature Algorithm: sha256WithRSAEncryption
03:0b:4c:40:d7:04:47:d9:0c:56:c6:48:b0:a5:a5:7b:f4:e7:
fd:8e:e1:09:6b:e6:26:5b:6f:4e:07:ae:8e:58:b2:fa:e6:eb:
8e:e0:fa:79:ae:82:0d:9b:89:d8:01:ea:48:fa:27:5f:8c:72:
e6:73:ab:eb:d3:e7:5b:bd:e9:c0:e1:e0:92:bf:26:64:97:33:
04:bb:75:07:92:45:81:bc:b5:54:f0:de:c2:75:3e:35:b7:22:
4d:38:cf:fa:71:e2:36:eb:dd:72:69:54:5f:61:81:71:30:69:
47:11:63:0c:49:39:d6:9d:2a:e9:6a:f0:db:2f:95:2a:0d:85:
c9:f3:97:94:dc:82:b9:a1:cd:73:2d:fc:e7:9e:b5:28:bb:62:
56:ab:96:ef:61:19:1b:56:15:dd:21:9c:db:a7:85:ce:31:36:
4c:7e:bd:f0:1a:95:82:bd:9c:b2:b6:5e:3f:b5:e7:62:58:84:
9d:2a:44:48:e5:00:00:f2:21:d6:f0:a0:38:8b:97:02:d7:a7:
bc:fb:09:f8:54:bd:d4:a0:46:f0:19:3b:dc:1f:dd:b1:25:83:
63:4b:d9:65:24:f7:bd:93:dd:36:ff:c3:d8:c9:4a:fd:05:d9:
a1:7d:1f:fb:09:c3:36:32:6f:77:70:ca:1c:d3:07:e5:42:b6:
82:6f:9d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:52:34 2025 by rpki-client