Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/YbP00LnzjVTtqx0QR6jRuPeAIe8.roa
File: YbP00LnzjVTtqx0QR6jRuPeAIe8.roa (raw, json)
Hash identifier: mUcJfDPb0vPjVhBUrvdEwx0Do7oyzCPg5JeCiVKvB4Y=
Subject key identifier: 61:B3:F4:D0:B9:F3:8D:54:ED:AB:1D:10:47:A8:D1:B8:F7:80:21:EF
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38C0083D
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/YbP00LnzjVTtqx0QR6jRuPeAIe8.roa
Signing time: Tue 17 May 2022 05:30:30 +0000
ROA not before: Tue 17 May 2022 05:30:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202209
IP address blocks: 212.91.177.0/24 maxlen: 24
217.79.33.0/24 maxlen: 24
85.118.85.0/24 maxlen: 24
85.118.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952109117 (0x38c0083d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:30:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61b3f4d0b9f38d54edab1d1047a8d1b8f78021ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:bf:44:30:63:97:38:6d:8f:2b:8d:ad:0d:36:
7e:97:3f:0d:5f:ac:41:85:ad:e6:24:68:74:8f:76:
c3:fb:61:07:24:48:b5:18:cd:f8:85:86:fb:83:41:
52:db:a6:7e:20:73:19:18:ec:4c:63:4f:01:f0:cd:
02:f5:4c:1a:2d:d7:63:e6:60:08:e6:e8:26:99:b2:
7e:e9:31:8f:68:27:bd:0b:ec:71:9b:24:b8:ef:49:
f4:96:b3:ad:bd:89:d4:ee:76:2d:6f:32:2d:54:12:
89:1b:fa:99:3d:9e:f4:a7:c6:1e:c3:e8:c9:04:6e:
f1:a1:c2:fc:c3:f6:f7:8a:46:fa:66:72:5b:2a:6d:
6a:9f:ac:69:73:c1:28:7d:14:45:71:b6:ca:a3:47:
19:3d:0c:b1:03:23:53:48:35:46:72:d4:15:77:81:
c6:d0:70:67:6e:03:a8:df:6f:7a:71:61:13:fa:ce:
dd:38:c9:1d:77:74:68:e3:10:d9:00:57:42:16:8b:
5b:42:e7:95:85:08:24:6a:61:02:d0:02:a2:a1:0b:
35:a3:53:32:d1:2c:65:ed:20:d2:0c:f9:a3:a1:6d:
9a:d9:eb:b8:e7:44:69:80:a1:9b:df:9d:c0:e3:de:
b6:0d:9e:6e:59:4b:a4:bb:73:35:c8:8b:d2:7d:d5:
e8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B3:F4:D0:B9:F3:8D:54:ED:AB:1D:10:47:A8:D1:B8:F7:80:21:EF
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/YbP00LnzjVTtqx0QR6jRuPeAIe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.85.0-85.118.86.255
212.91.177.0/24
217.79.33.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:7f:39:05:dd:9a:e3:66:54:30:8f:c2:4a:cd:e8:af:e5:cb:
b1:44:d2:fc:6e:f9:d2:ee:22:56:80:32:07:a2:df:e7:f5:f9:
b6:c3:44:53:5f:ac:81:ec:8e:19:07:b3:87:65:5a:dd:47:df:
e4:b5:ac:91:74:f6:35:aa:71:eb:dd:19:68:ef:0c:54:69:b0:
e5:a9:5c:37:a5:20:a0:a9:88:72:b5:a2:1d:d3:0a:27:f3:fc:
e0:15:7e:6f:43:c7:5b:ff:32:db:79:65:98:41:7f:20:4b:14:
71:11:fb:25:fa:d3:fd:a7:56:97:eb:56:80:22:75:99:ea:a8:
f6:2a:8f:e9:9d:fe:30:e2:3b:59:17:e5:b8:0e:22:71:96:ff:
b4:2f:62:d9:01:d8:66:df:52:7e:c3:6f:74:bd:26:1d:bd:ce:
5e:1e:57:17:8c:14:f0:19:b5:e9:4f:8b:ad:05:81:f0:27:0f:
db:50:44:69:af:44:ab:53:ca:fc:27:b2:38:f7:3d:60:96:ac:
2d:02:50:2f:e0:be:83:37:e0:8a:b8:c7:70:09:90:7a:1b:9b:
2e:d4:e4:0d:e3:a0:10:88:5d:57:af:27:8c:03:13:e4:c2:65:
19:ab:00:e0:76:30:3f:6b:af:db:7b:b6:31:32:86:8f:bb:f4:
ee:26:51:5e
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEOMAIPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDUx
NzA1MzAzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjFiM2Y0ZDBiOWYz
OGQ1NGVkYWIxZDEwNDdhOGQxYjhmNzgwMjFlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPi/RDBjlzhtjyuNrQ02fpc/DV+sQYWt5iRodI92w/thByRI
tRjN+IWG+4NBUtumfiBzGRjsTGNPAfDNAvVMGi3XY+ZgCOboJpmyfukxj2gnvQvs
cZskuO9J9Jazrb2J1O52LW8yLVQSiRv6mT2e9KfGHsPoyQRu8aHC/MP294pG+mZy
Wyptap+saXPBKH0URXG2yqNHGT0MsQMjU0g1RnLUFXeBxtBwZ24DqN9venFhE/rO
3TjJHXd0aOMQ2QBXQhaLW0LnlYUIJGphAtACoqELNaNTMtEsZe0g0gz5o6Ftmtnr
uOdEaYChm9+dwOPetg2ebllLpLtzNciL0n3V6G0CAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBRhs/TQufONVO2rHRBHqNG494Ah7zAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
L1liUDAwTG56alZUdHF4MFFSNmpSdVBlQUllOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGjAMAwQAVXZVAwQAVXZWAwQA1FuxAwQA
2U8hMA0GCSqGSIb3DQEBCwUAA4IBAQBufzkF3ZrjZlQwj8JKzeiv5cuxRNL8bvnS
7iJWgDIHot/n9fm2w0RTX6yB7I4ZB7OHZVrdR9/ktayRdPY1qnHr3Rlo7wxUabDl
qVw3pSCgqYhytaId0won8/zgFX5vQ8db/zLbeWWYQX8gSxRxEfsl+tP9p1aX61aA
InWZ6qj2Ko/pnf4w4jtZF+W4DiJxlv+0L2LZAdhm31J+w290vSYdvc5eHlcXjBTw
GbXpT4utBYHwJw/bUERpr0SrU8r8J7I49z1glqwtAlAv4L6DN+CKuMdwCZB6G5su
1OQN46AQiF1XryeMAxPkwmUZqwDgdjA/a6/be7YxMoaPu/TuJlFe
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-ams.rpki-client.org