Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/YkrAWuXzZPIur0t9JYC6QXBo7qM.roa
File: YkrAWuXzZPIur0t9JYC6QXBo7qM.roa (raw, json)
Hash identifier: faQNw2LlCYZoL4LXnwk0iP44673Z3z0kmzOC4FuZBJM=
Subject key identifier: 62:4A:C0:5A:E5:F3:64:F2:2E:AF:4B:7D:25:80:BA:41:70:68:EE:A3
Certificate issuer: /CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Certificate serial: 065988CB
Authority key identifier: 30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/YkrAWuXzZPIur0t9JYC6QXBo7qM.roa
Signing time: Sat 01 Jan 2022 05:52:15 +0000
ROA not before: Sat 01 Jan 2022 05:52:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50277
IP address blocks: 195.5.180.0/24 maxlen: 24
2001:67c:1580::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106531019 (0x65988cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Validity
Not Before: Jan 1 05:52:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=624ac05ae5f364f22eaf4b7d2580ba417068eea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e5:b1:83:07:3d:8b:1f:d9:2c:77:23:75:71:
9b:57:c9:c3:92:c4:42:00:78:4e:d3:a0:8b:2a:22:
63:40:09:82:bd:5e:89:66:57:2f:38:40:0b:2a:7a:
ee:e1:be:a3:0c:a4:5c:f0:3e:2a:99:43:2d:57:0b:
6c:31:4f:9d:02:9a:fe:fa:79:e0:ec:7f:89:b0:3c:
99:74:8a:e6:61:2c:8a:68:68:57:2b:a1:09:ff:91:
2c:32:92:87:0f:a0:d2:02:ea:b2:56:00:c3:95:fb:
bc:03:94:68:5a:9b:35:05:ca:e0:4f:41:5a:57:76:
b8:8e:c4:24:8c:ee:bd:66:4b:f9:a8:56:9d:38:03:
ed:80:f8:95:a7:8c:2b:a4:45:72:1a:ff:31:57:b7:
43:37:79:18:d3:23:cf:3e:aa:2e:dc:82:a2:1e:b9:
37:66:e8:85:b5:35:85:2f:3d:64:1e:8c:6e:81:20:
7d:63:5c:a8:c8:ac:33:d4:32:2d:e1:04:72:42:c4:
5d:61:6e:81:8b:d9:42:8e:fb:14:85:91:54:6e:eb:
73:3c:51:dd:1b:6b:1f:e5:02:10:2f:5a:1f:70:de:
02:fb:97:11:aa:3d:ba:0a:7e:a5:0b:3d:1a:a4:2d:
67:4d:e1:46:5b:5f:20:eb:cc:10:c4:0f:ba:31:30:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:4A:C0:5A:E5:F3:64:F2:2E:AF:4B:7D:25:80:BA:41:70:68:EE:A3
X509v3 Authority Key Identifier:
keyid:30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/YkrAWuXzZPIur0t9JYC6QXBo7qM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.180.0/24
IPv6:
2001:67c:1580::/48
Signature Algorithm: sha256WithRSAEncryption
63:4e:5b:1c:23:27:17:53:ee:63:de:bb:1e:d6:c1:10:4c:db:
e5:e5:a5:e8:39:da:55:f7:d0:3c:63:f5:84:f9:3f:21:a2:70:
df:32:b7:1d:b4:1a:2e:33:09:cd:22:2b:5a:c5:d3:ce:11:57:
0a:1f:37:10:e9:31:6d:79:cd:c4:9e:e0:dc:84:a9:7e:11:47:
45:f5:17:2e:28:42:c9:ee:36:f3:36:e5:41:a3:6a:4f:4c:78:
fb:6e:ca:54:f7:31:c5:5d:f1:5f:64:b8:21:27:63:af:c3:c3:
9c:cc:4a:5e:c3:22:c1:b3:07:20:b3:8b:42:00:57:c1:62:c6:
37:c3:11:40:4e:15:f5:a0:ef:08:45:9b:da:4a:3a:96:e1:99:
82:a9:6e:6f:44:9e:c7:77:d3:11:dd:0c:f7:40:c5:c6:20:e8:
c2:75:ee:85:5b:50:e3:ab:d4:cc:18:bd:e5:c0:64:87:9a:54:
2c:65:a7:83:92:4e:36:0f:8d:30:d5:e7:c9:1f:a8:1e:15:f0:
e5:d0:59:3e:8f:60:28:34:2f:b9:06:e4:ce:97:ce:5a:71:08:
e1:e2:cf:1a:de:6b:60:69:0d:10:a4:1a:72:47:ce:31:72:22:
00:9e:23:7f:e5:9f:13:a9:5c:41:5f:23:44:18:aa:9a:a9:fa:
b6:e6:57:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:58 2024 by rpki-client on console-ams.rpki-client.org