Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/Yesne92GatgMFlQusLcPb9ot-nY.roa
File: Yesne92GatgMFlQusLcPb9ot-nY.roa (raw, json)
Hash identifier: rJ714yoTQo5OoJqnBEbnr9izmCy4Haa3zXLuPmVDY7A=
Subject key identifier: 61:EB:27:7B:DD:86:6A:D8:0C:16:54:2E:B0:B7:0F:6F:DA:2D:FA:76
Certificate issuer: /CN=703c48ed46cb79490e1662db01c31d02d02effe2
Certificate serial: 0261348A
Authority key identifier: 70:3C:48:ED:46:CB:79:49:0E:16:62:DB:01:C3:1D:02:D0:2E:FF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDxI7UbLeUkOFmLbAcMdAtAu_-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/Yesne92GatgMFlQusLcPb9ot-nY.roa
Signing time: Sat 01 Jan 2022 01:53:44 +0000
ROA not before: Sat 01 Jan 2022 01:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13030
IP address blocks: 193.110.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39924874 (0x261348a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=703c48ed46cb79490e1662db01c31d02d02effe2
Validity
Not Before: Jan 1 01:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61eb277bdd866ad80c16542eb0b70f6fda2dfa76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e4:b9:a9:fd:c2:ff:8e:0b:c8:d9:89:18:0e:
ad:4e:df:44:20:06:a6:80:96:82:ce:78:b1:89:be:
b7:ca:b3:75:5c:d5:37:2d:95:ca:2f:93:c0:6b:5b:
f3:7d:ac:e6:c4:c0:6e:47:8f:e6:c9:7f:c4:c0:ff:
05:29:08:a5:b6:fd:26:f0:56:2b:13:f9:ca:d9:31:
2b:cd:b2:c6:d7:83:a7:cb:fc:d5:28:62:63:f8:58:
b5:6f:c0:58:43:8e:9f:76:f0:0e:66:4c:76:62:67:
a5:59:fc:9c:9b:79:85:93:ca:75:35:c0:52:d9:75:
e3:3a:73:43:82:0b:46:43:76:eb:be:53:5f:6e:32:
b8:83:ac:0c:17:61:ec:68:96:3c:aa:f3:84:ae:27:
7f:5f:50:4a:60:28:c9:0f:4c:64:61:82:e6:1a:d2:
57:26:c8:10:26:21:a9:0f:ad:cf:cf:e0:25:7b:a7:
4d:d3:50:08:c1:7b:a8:87:d3:bd:01:40:fc:53:c6:
1c:83:a5:2b:44:f0:27:40:3f:6e:1d:72:d0:54:fa:
c2:51:86:6f:bc:1d:76:1b:80:4f:f7:3b:61:43:d8:
a0:82:2e:fe:c9:4a:b8:62:ae:5d:06:ae:75:cc:a4:
b8:e6:eb:73:91:e5:a7:f6:2b:30:c7:fd:0f:cd:15:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EB:27:7B:DD:86:6A:D8:0C:16:54:2E:B0:B7:0F:6F:DA:2D:FA:76
X509v3 Authority Key Identifier:
keyid:70:3C:48:ED:46:CB:79:49:0E:16:62:DB:01:C3:1D:02:D0:2E:FF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDxI7UbLeUkOFmLbAcMdAtAu_-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/Yesne92GatgMFlQusLcPb9ot-nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/cDxI7UbLeUkOFmLbAcMdAtAu_-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:c1:1d:a2:cc:b8:49:09:d5:ad:97:16:7e:80:4a:16:2f:79:
46:d7:b9:7c:a3:79:e2:2a:cf:05:30:37:78:be:9e:09:90:b8:
f4:d2:b8:83:93:df:18:93:91:6b:66:ee:71:12:e2:20:13:02:
ec:b6:6b:4d:78:49:cc:52:84:b9:72:cd:51:b1:ae:08:b8:94:
93:68:88:52:b1:e9:be:d5:16:62:a0:a4:7d:13:e3:52:1a:b5:
47:77:27:a6:5b:2b:9d:8e:86:78:89:8f:f1:d6:39:9b:70:c5:
d4:45:de:77:cf:bd:15:4b:aa:97:57:a1:61:ba:82:7e:de:53:
ea:af:84:3e:3d:a3:0c:a7:67:bf:bb:f7:7c:f1:ac:5d:51:75:
de:5d:71:77:af:3c:3e:4b:8a:0e:8f:85:b5:c8:a1:3f:1e:94:
a1:62:bb:ea:ba:83:1c:4b:9c:02:18:ad:b7:97:f7:90:cb:ad:
e2:b0:b2:0a:09:92:49:88:6a:8d:20:2a:c9:e8:04:f5:35:b9:
0d:48:c6:fe:ee:dd:dc:27:5e:0e:a8:8c:cf:f6:35:8d:88:35:
4b:a8:e9:27:27:4f:6a:59:65:20:d0:be:57:fb:4c:46:fd:01:
32:d1:29:bb:ef:c8:55:f7:6f:5c:22:41:96:4e:66:d4:6e:26:
ce:8b:08:cd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAmE0ijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDNjNDhlZDQ2Y2I3OTQ5MGUxNjYyZGIwMWMzMWQwMmQwMmVmZmUyMB4XDTIyMDEw
MTAxNTM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjFlYjI3N2JkZDg2
NmFkODBjMTY1NDJlYjBiNzBmNmZkYTJkZmE3NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM/kuan9wv+OC8jZiRgOrU7fRCAGpoCWgs54sYm+t8qzdVzV
Ny2Vyi+TwGtb832s5sTAbkeP5sl/xMD/BSkIpbb9JvBWKxP5ytkxK82yxteDp8v8
1ShiY/hYtW/AWEOOn3bwDmZMdmJnpVn8nJt5hZPKdTXAUtl14zpzQ4ILRkN2675T
X24yuIOsDBdh7GiWPKrzhK4nf19QSmAoyQ9MZGGC5hrSVybIECYhqQ+tz8/gJXun
TdNQCMF7qIfTvQFA/FPGHIOlK0TwJ0A/bh1y0FT6wlGGb7wddhuAT/c7YUPYoIIu
/slKuGKuXQaudcykuObrc5Hlp/YrMMf9D80VNgECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRh6yd73YZq2AwWVC6wtw9v2i36djAfBgNVHSMEGDAWgBRwPEjtRst5SQ4W
YtsBwx0C0C7/4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NEeEk3VWJMZVVrT0ZtTGJBY01kQXRBdV8tSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvZGExYzQzLTE5MTYtNDZhZS04NDkxLTM1ODgzYWY5YTMyMy8x
L1llc25lOTJHYXRnTUZsUXVzTGNQYjlvdC1uWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
ZGExYzQzLTE5MTYtNDZhZS04NDkxLTM1ODgzYWY5YTMyMy8xL2NEeEk3VWJMZVVr
T0ZtTGJBY01kQXRBdV8tSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFuXzANBgkqhkiG9w0BAQsFAAOC
AQEAqMEdosy4SQnVrZcWfoBKFi95Rte5fKN54irPBTA3eL6eCZC49NK4g5PfGJOR
a2bucRLiIBMC7LZrTXhJzFKEuXLNUbGuCLiUk2iIUrHpvtUWYqCkfRPjUhq1R3cn
plsrnY6GeImP8dY5m3DF1EXed8+9FUuql1ehYbqCft5T6q+EPj2jDKdnv7v3fPGs
XVF13l1xd688PkuKDo+FtcihPx6UoWK76rqDHEucAhitt5f3kMut4rCyCgmSSYhq
jSAqyegE9TW5DUjG/u7d3CdeDqiMz/Y1jYg1S6jpJydPalllINC+V/tMRv0BMtEp
u+/IVfdvXCJBlk5m1G4mzosIzQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:11 2025 by rpki-client