Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/YA5GGKvuZMnrXjhF0Eu4nvfQNPk.roa
File: YA5GGKvuZMnrXjhF0Eu4nvfQNPk.roa (raw, json)
Hash identifier: zl4Croqu0X8YjFzkngaKwnveXPTCQVmwq4EYE47txng=
Subject key identifier: 60:0E:46:18:AB:EE:64:C9:EB:5E:38:45:D0:4B:B8:9E:F7:D0:34:F9
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 0476908C
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/YA5GGKvuZMnrXjhF0Eu4nvfQNPk.roa
Signing time: Wed 02 Mar 2022 10:29:10 +0000
ROA not before: Wed 02 Mar 2022 10:29:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21324
IP address blocks: 195.187.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74879116 (0x476908c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:29:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=600e4618abee64c9eb5e3845d04bb89ef7d034f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f4:f1:46:36:df:f8:b3:87:93:bd:3c:4c:29:
9d:2c:b2:f4:6c:d0:a7:f9:b5:87:9e:af:0c:01:f8:
d1:36:e1:86:b2:24:6c:27:7e:54:7f:70:79:5d:d1:
3f:7c:3f:76:ba:e7:f2:8f:c5:2a:c0:f0:d0:6a:41:
26:97:da:41:07:76:d4:ba:7d:19:5c:59:6c:1b:0d:
27:87:b5:13:ab:67:b4:2d:ad:11:4f:c4:86:9c:bb:
03:ed:ff:ef:86:4e:0d:ec:73:7e:d5:42:3c:53:fc:
d1:a5:fb:db:4c:46:ce:3c:2d:34:da:80:ee:47:f5:
2f:9e:7f:44:6c:b4:c1:0b:5a:57:7c:1c:3a:f4:88:
24:1b:3c:4a:fb:18:4f:0c:09:b1:3d:c1:ab:8f:44:
2a:3b:a2:8b:5a:2d:1b:78:4a:9c:bb:6f:b8:7a:18:
50:cb:08:b8:d1:4c:c5:42:e9:5e:e3:10:19:c2:4e:
a8:0a:45:74:40:2d:23:32:83:d7:76:16:f6:ea:ab:
1e:24:28:8f:98:27:81:9e:ae:73:a3:0f:18:16:7a:
46:2e:27:cb:b5:03:35:db:7f:ac:9f:09:31:8f:8c:
3c:9f:b1:12:59:83:ae:2c:3f:7f:79:df:ff:8c:7b:
8c:2b:c3:40:2f:52:0e:a4:f7:f4:f7:3c:0b:4c:1a:
29:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0E:46:18:AB:EE:64:C9:EB:5E:38:45:D0:4B:B8:9E:F7:D0:34:F9
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/YA5GGKvuZMnrXjhF0Eu4nvfQNPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.133.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:5b:1b:60:c0:99:6b:4e:ec:1e:db:88:eb:c4:0f:43:5e:26:
86:ae:80:9d:a9:a0:b1:a0:4f:18:7f:5e:b2:5e:e9:c6:2d:39:
52:0e:79:d4:4d:c7:e2:aa:72:22:4f:77:53:a3:4c:ab:96:1d:
c2:b9:86:93:0b:4d:b2:f9:ed:b3:7e:09:4a:66:5f:2c:a2:1a:
be:14:7f:13:ad:75:80:7b:a9:85:04:11:52:72:7b:67:76:c9:
fb:c2:af:41:54:76:73:e4:35:95:8f:61:7d:c7:1e:a5:cd:ed:
65:7e:a5:fa:8d:d9:43:81:58:19:04:01:0d:81:80:5a:c7:62:
60:4a:b3:cc:6f:da:ff:40:42:7b:71:c0:1b:7b:ad:5f:92:24:
e6:69:44:0e:b1:3d:ea:0f:c2:8e:3e:cb:38:9e:2f:ed:38:de:
94:d4:5d:e1:02:f6:ba:ac:79:ad:52:e8:ec:ce:f0:48:da:28:
de:e7:02:4c:b3:f3:fc:ae:5c:bf:ec:ef:2b:8b:fb:43:e8:8c:
2d:3d:b2:a1:34:78:3e:2b:58:8c:ae:6d:0a:ad:d0:14:aa:48:
48:40:ce:ae:6b:64:8f:4a:99:9a:90:87:d5:19:0f:66:7b:6a:
df:b8:2f:68:b7:68:ef:35:28:32:7f:8a:42:91:81:4d:0a:3c:
eb:f3:69:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org