Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/YuqAh-N-E8OUg4rct8bMxqtsN0w.roa
File: YuqAh-N-E8OUg4rct8bMxqtsN0w.roa (raw, json)
Hash identifier: 3YFLdOyiO605Id9CyirgFNbMhq8VItxcXBiyDC5x1ok=
Subject key identifier: 62:EA:80:87:E3:7E:13:C3:94:83:8A:DC:B7:C6:CC:C6:AB:6C:37:4C
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 0189CC5D107AE01453CE9EBC8ED1A4EFBD1D
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/YuqAh-N-E8OUg4rct8bMxqtsN0w.roa
Signing time: Sun 06 Aug 2023 19:39:58 +0000
ROA not before: Sun 06 Aug 2023 19:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201327
IP address blocks: 95.140.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cc:5d:10:7a:e0:14:53:ce:9e:bc:8e:d1:a4:ef:bd:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Aug 6 19:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ea8087e37e13c394838adcb7c6ccc6ab6c374c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:be:03:d4:0e:3c:6c:f9:f2:c3:0f:ae:67:05:
cc:52:45:de:e1:7f:3f:5f:7a:97:2f:52:9d:48:82:
92:35:97:e3:02:3c:71:8d:d3:e3:47:2b:80:11:66:
8b:42:da:10:34:fb:a4:10:6f:a2:ac:7f:93:d0:ee:
b6:58:40:e3:0a:1d:ff:9f:8f:62:fc:3b:ed:5c:85:
66:b6:aa:b4:cd:11:8f:9f:c3:7c:1d:bf:42:8c:18:
2c:12:57:86:3a:1f:f1:23:a2:5d:04:8c:40:00:dc:
5d:87:8e:a9:03:0e:77:da:c7:10:fb:4a:e2:ca:1b:
a9:64:61:ef:46:76:52:9e:91:e9:89:f4:32:7f:c5:
47:aa:07:68:6e:ab:bc:94:04:8b:73:a4:e5:a8:ca:
3b:2d:9b:69:7f:ed:41:64:a2:59:85:f9:3f:3e:2e:
1b:26:25:ab:4f:9f:75:7d:89:a5:e3:51:51:5c:a1:
e2:b6:f6:73:a5:b3:b1:fd:59:f9:b2:21:5c:c4:01:
14:97:b9:1e:32:9d:8e:64:a3:9c:39:85:b1:eb:eb:
16:a7:c3:1f:81:46:57:33:16:36:0f:d5:50:85:e4:
29:1d:9c:01:a2:64:7d:99:d4:d7:99:1d:f5:89:e1:
47:90:dc:ff:a3:65:9d:dd:fc:2e:f2:dd:04:b0:0a:
50:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:EA:80:87:E3:7E:13:C3:94:83:8A:DC:B7:C6:CC:C6:AB:6C:37:4C
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/YuqAh-N-E8OUg4rct8bMxqtsN0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.82.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:91:60:a2:d4:d7:2d:09:02:b3:84:ff:d5:e1:a0:eb:30:d7:
a9:25:ad:3e:1f:56:66:4c:23:8f:6c:fd:5b:a6:08:93:dd:fa:
66:f4:84:6e:c5:18:4d:28:9c:70:4f:d3:1c:f6:a1:a5:3b:35:
a5:95:ab:7e:fc:86:71:cb:87:53:b4:1f:cf:f5:78:5d:9a:54:
48:0d:b6:85:b0:45:ea:d2:04:1e:4e:c7:93:5f:b3:ef:28:e9:
e7:48:c9:5e:17:60:43:57:36:6f:99:2b:84:6e:6c:61:ad:03:
d7:0a:dd:eb:ff:da:3c:1d:21:a6:e4:78:58:db:aa:63:ea:13:
2b:c6:5b:33:cb:77:e0:95:cf:f4:48:50:01:ff:28:f2:1c:d8:
64:79:5d:ee:6f:f2:52:58:02:6d:27:ec:9c:59:84:3c:75:0c:
9a:13:32:cb:d6:50:48:5d:cb:9b:1f:be:91:bc:14:db:dd:48:
98:95:4e:dc:50:27:91:5f:7d:46:c5:a4:d9:73:0f:fc:08:4f:
9e:c8:79:f2:a6:de:45:0e:03:35:b8:41:ce:b0:7b:8d:1c:d0:
b9:6b:3a:b6:c7:2e:01:b8:35:34:a7:0b:e4:3b:e1:91:19:6c:
f3:2c:f1:5b:1e:e7:84:36:05:3a:36:fc:e6:ed:ea:b6:4a:ac:
85:ac:6d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 08:32:14 2025 by rpki-client