Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/9ec680-ae36-494b-a2f1-54c58b476e9a/1/yfQ9AgLyrGdDrINm7KbWmsdSpoM.roa
File: yfQ9AgLyrGdDrINm7KbWmsdSpoM.roa (raw, json)
Hash identifier: uzujFXfujJo+5d826x+dV3f9NiBJ74fDzKWJXvLzBy0=
Subject key identifier: C9:F4:3D:02:02:F2:AC:67:43:AC:83:66:EC:A6:D6:9A:C7:52:A6:83
Certificate issuer: /CN=b20b511af9f278a0ad788e9374154bf6ad5ea3ab
Certificate serial: 09F4DA53
Authority key identifier: B2:0B:51:1A:F9:F2:78:A0:AD:78:8E:93:74:15:4B:F6:AD:5E:A3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgtRGvnyeKCteI6TdBVL9q1eo6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/9ec680-ae36-494b-a2f1-54c58b476e9a/1/yfQ9AgLyrGdDrINm7KbWmsdSpoM.roa
Signing time: Sat 01 Jan 2022 04:57:46 +0000
ROA not before: Sat 01 Jan 2022 04:57:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197205
IP address blocks: 195.66.82.0/24 maxlen: 24
83.150.244.0/22 maxlen: 22
2a09:1f00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167041619 (0x9f4da53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20b511af9f278a0ad788e9374154bf6ad5ea3ab
Validity
Not Before: Jan 1 04:57:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9f43d0202f2ac6743ac8366eca6d69ac752a683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5d:87:68:62:dd:ed:fd:2b:75:f5:01:e8:86:
17:01:87:08:56:fa:5a:e5:3e:22:ea:f4:16:f3:a4:
2b:cb:b3:51:ad:fd:c1:94:74:65:e5:8a:99:53:33:
61:1c:50:58:ce:97:25:e9:86:3b:ea:f7:ca:4c:c8:
9d:06:e7:01:34:72:38:fe:70:2a:3a:11:ac:94:9c:
a0:15:d8:b2:28:d4:6f:46:95:9e:70:ad:f2:ad:a3:
ef:df:7c:95:8e:82:e3:f8:49:5f:15:40:ca:00:17:
93:ba:30:cb:2d:39:e5:ef:6b:01:59:05:69:3b:9e:
90:32:49:92:ac:5b:2d:8a:ab:23:fb:75:6e:11:ab:
56:f5:26:45:e7:30:ee:cd:f9:a2:b1:73:94:12:80:
c0:de:0b:d5:82:84:7c:58:c1:0f:d6:01:99:4b:89:
51:6f:e1:83:5f:99:1c:7c:ce:62:34:d6:9a:4d:5e:
0c:5b:fe:33:3d:4a:a8:ba:cf:ba:aa:63:1c:6d:e4:
e9:fc:ba:4e:b5:07:ba:8f:25:45:6f:04:0a:d7:87:
f6:ee:31:e8:7d:0f:a9:5d:b7:c0:c9:03:e4:dc:96:
c7:ab:bd:10:a5:24:ad:f4:4c:e0:4c:a4:83:14:bc:
32:bd:87:ee:39:de:08:6f:71:2f:15:f7:88:32:b7:
a9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F4:3D:02:02:F2:AC:67:43:AC:83:66:EC:A6:D6:9A:C7:52:A6:83
X509v3 Authority Key Identifier:
keyid:B2:0B:51:1A:F9:F2:78:A0:AD:78:8E:93:74:15:4B:F6:AD:5E:A3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgtRGvnyeKCteI6TdBVL9q1eo6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/9ec680-ae36-494b-a2f1-54c58b476e9a/1/yfQ9AgLyrGdDrINm7KbWmsdSpoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/9ec680-ae36-494b-a2f1-54c58b476e9a/1/sgtRGvnyeKCteI6TdBVL9q1eo6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.244.0/22
195.66.82.0/24
IPv6:
2a09:1f00::/29
Signature Algorithm: sha256WithRSAEncryption
84:1e:af:0d:8a:d5:08:38:2b:03:78:ff:94:0b:67:6c:73:2f:
4a:af:37:b9:10:19:5a:58:7b:09:be:60:45:20:91:19:ed:f4:
f2:13:c3:cd:8e:ae:26:9a:05:5d:e2:f0:59:30:f7:92:e7:fd:
53:b8:d3:04:ca:3b:31:5b:ed:4e:97:e1:e8:f0:68:7b:07:31:
b0:dc:f1:41:64:4a:83:1f:2d:b6:0e:ff:4f:5d:e0:89:6d:11:
63:3d:8f:2b:ce:78:29:18:9e:99:5f:62:21:81:30:0a:c8:a4:
b9:5a:b7:da:68:4a:8d:53:1d:61:07:32:b8:f2:f9:62:5d:dd:
37:0c:8b:8f:9b:51:96:9e:3e:7a:1c:df:35:97:98:98:22:89:
a7:a6:3f:5f:f3:ee:1e:06:a4:3b:0a:96:ed:f6:e4:75:d3:76:
31:41:d9:cd:f6:6e:04:5d:85:c9:10:9e:db:01:12:c2:3f:f9:
67:78:6f:5a:18:e1:32:26:b6:ef:95:92:88:01:d3:98:03:28:
45:df:a8:f3:9c:96:5e:30:79:20:3d:84:68:ab:1b:b8:19:ff:
ae:c1:ea:39:c9:dd:26:04:1f:e0:2e:da:76:7d:3e:a6:96:f6:
65:8c:97:f3:38:de:31:01:5c:cc:f4:94:09:45:2f:02:65:0f:
cd:e2:e2:63
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIECfTaUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MjBiNTExYWY5ZjI3OGEwYWQ3ODhlOTM3NDE1NGJmNmFkNWVhM2FiMB4XDTIyMDEw
MTA0NTc0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzlmNDNkMDIwMmYy
YWM2NzQzYWM4MzY2ZWNhNmQ2OWFjNzUyYTY4MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALldh2hi3e39K3X1AeiGFwGHCFb6WuU+Iur0FvOkK8uzUa39
wZR0ZeWKmVMzYRxQWM6XJemGO+r3ykzInQbnATRyOP5wKjoRrJScoBXYsijUb0aV
nnCt8q2j7998lY6C4/hJXxVAygAXk7owyy055e9rAVkFaTuekDJJkqxbLYqrI/t1
bhGrVvUmRecw7s35orFzlBKAwN4L1YKEfFjBD9YBmUuJUW/hg1+ZHHzOYjTWmk1e
DFv+Mz1KqLrPuqpjHG3k6fy6TrUHuo8lRW8ECteH9u4x6H0PqV23wMkD5NyWx6u9
EKUkrfRM4EykgxS8Mr2H7jneCG9xLxX3iDK3qRMCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTJ9D0CAvKsZ0Osg2bsptaax1KmgzAfBgNVHSMEGDAWgBSyC1Ea+fJ4oK14
jpN0FUv2rV6jqzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NndFJHdm55ZUtDdGVJNlRkQlZMOXExZW82cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGYvOWVjNjgwLWFlMzYtNDk0Yi1hMmYxLTU0YzU4YjQ3NmU5YS8x
L3lmUTlBZ0x5ckdkRHJJTm03S2JXbXNkU3BvTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYv
OWVjNjgwLWFlMzYtNDk0Yi1hMmYxLTU0YzU4YjQ3NmU5YS8xL3NndFJHdm55ZUtD
dGVJNlRkQlZMOXExZW82cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAlOW9AMEAMNCUjANBAIAAjAHAwUD
KgkfADANBgkqhkiG9w0BAQsFAAOCAQEAhB6vDYrVCDgrA3j/lAtnbHMvSq83uRAZ
Wlh7Cb5gRSCRGe308hPDzY6uJpoFXeLwWTD3kuf9U7jTBMo7MVvtTpfh6PBoewcx
sNzxQWRKgx8ttg7/T13giW0RYz2PK854KRiemV9iIYEwCsikuVq32mhKjVMdYQcy
uPL5Yl3dNwyLj5tRlp4+ehzfNZeYmCKJp6Y/X/PuHgakOwqW7fbkddN2MUHZzfZu
BF2FyRCe2wESwj/5Z3hvWhjhMia275WSiAHTmAMoRd+o85yWXjB5ID2EaKsbuBn/
rsHqOcndJgQf4C7adn0+ppb2ZYyX8zjeMQFczPSUCUUvAmUPzeLiYw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:19 2024 by rpki-client on console-ams.rpki-client.org