Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/YxQ17vlKVEL38Ynq6OJ53Mh41EY.roa
File: YxQ17vlKVEL38Ynq6OJ53Mh41EY.roa (raw, json)
Hash identifier: rqQWygMiQZ+xYaAsHkVUUYCK1wWFtmR1rt3+LSpdyWo=
Subject key identifier: 63:14:35:EE:F9:4A:54:42:F7:F1:89:EA:E8:E2:79:DC:C8:78:D4:46
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1A1775C9
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/YxQ17vlKVEL38Ynq6OJ53Mh41EY.roa
Signing time: Tue 01 Mar 2022 14:09:44 +0000
ROA not before: Tue 01 Mar 2022 14:09:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 217.156.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437745097 (0x1a1775c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Mar 1 14:09:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=631435eef94a5442f7f189eae8e279dcc878d446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:82:92:a9:12:0b:b3:da:3b:85:93:1d:09:80:
8a:56:29:55:a7:c7:d1:fd:1d:19:dd:49:af:87:12:
45:75:48:1b:f6:59:05:bd:4f:55:cb:a1:b1:fb:ab:
bf:fc:db:33:a1:59:79:a9:a2:02:72:3b:19:2e:53:
58:5d:80:4e:97:5e:f7:63:5e:2c:98:db:2e:2a:b9:
84:eb:42:0a:5d:37:a2:f1:81:a2:bc:2e:cc:ac:a9:
b7:bc:a2:7d:8a:e6:28:04:78:f5:59:5f:73:0a:3b:
90:52:fb:7a:75:8c:10:6e:12:bd:49:cf:7a:15:d2:
4b:a5:5d:35:ba:db:0c:3a:5f:53:05:06:87:33:97:
f1:d8:ad:66:bb:e3:72:5c:8f:0c:74:f5:29:db:bc:
28:ab:6f:07:d6:25:a8:2b:7b:07:b5:28:c5:27:b9:
79:1e:4e:62:f6:88:de:95:50:24:ea:42:a1:5a:d8:
44:5f:6d:67:c7:c5:7c:3a:14:cc:da:a7:32:15:90:
91:5d:6d:83:01:bf:29:6c:ea:69:7a:81:b5:19:05:
f2:57:87:0c:bf:fd:bf:f7:b4:18:7c:9f:66:e5:67:
a3:b0:0e:20:76:7f:86:6e:92:37:4d:b1:ff:f2:4f:
a3:e0:29:35:53:15:b7:62:f7:c2:7c:9d:c3:d6:04:
71:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:14:35:EE:F9:4A:54:42:F7:F1:89:EA:E8:E2:79:DC:C8:78:D4:46
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/YxQ17vlKVEL38Ynq6OJ53Mh41EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:b5:10:74:64:3e:00:b7:a1:45:be:8f:11:f7:39:45:88:5c:
83:1c:0f:aa:cc:69:2c:08:74:f8:e2:83:53:85:09:93:53:e5:
b4:bf:35:fb:2d:6e:ec:1f:58:3c:f9:8e:98:1e:b4:ac:16:44:
43:73:59:11:66:e6:97:e5:b3:a5:2a:76:80:ed:df:11:72:5c:
5e:be:cd:cb:ec:d3:c4:00:67:e3:08:24:ce:b8:1c:f0:f8:45:
fc:7c:05:ec:78:b3:aa:2e:2a:82:b6:e3:bf:27:b7:2e:20:57:
5f:d4:63:94:ed:95:82:23:68:dd:29:1d:b4:7e:df:e5:f5:61:
f4:4e:08:83:70:83:6a:12:d2:12:07:34:fc:d5:a5:87:e6:34:
2b:1e:17:52:e1:69:e0:0b:bd:75:be:38:85:af:65:6b:9b:8f:
83:e3:7e:2f:4f:9a:69:e2:48:ce:a3:8c:9c:38:88:5b:70:3d:
57:78:2b:1a:1b:1b:99:80:50:81:b2:5b:e9:9f:de:a9:6e:15:
f6:61:91:ad:18:2e:27:13:df:d6:0d:88:2b:c1:7e:03:43:71:
ba:fb:40:e5:d7:e1:d8:d3:09:dc:39:73:f0:31:d4:f9:f3:3f:
0c:a5:0e:fa:5f:f1:d0:02:ce:e4:1b:34:f9:b1:ea:be:0b:37:
25:2d:a5:20
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGhd1yTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MTgzNzg1OTE2Y2Q5OGQ3Yzc3MGQ2ODUxNDU0OTlhOGEwYTE1NzIyMB4XDTIyMDMw
MTE0MDk0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjMxNDM1ZWVmOTRh
NTQ0MmY3ZjE4OWVhZThlMjc5ZGNjODc4ZDQ0NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALuCkqkSC7PaO4WTHQmAilYpVafH0f0dGd1Jr4cSRXVIG/ZZ
Bb1PVcuhsfurv/zbM6FZeamiAnI7GS5TWF2ATpde92NeLJjbLiq5hOtCCl03ovGB
orwuzKypt7yifYrmKAR49Vlfcwo7kFL7enWMEG4SvUnPehXSS6VdNbrbDDpfUwUG
hzOX8ditZrvjclyPDHT1Kdu8KKtvB9YlqCt7B7UoxSe5eR5OYvaI3pVQJOpCoVrY
RF9tZ8fFfDoUzNqnMhWQkV1tgwG/KWzqaXqBtRkF8leHDL/9v/e0GHyfZuVno7AO
IHZ/hm6SN02x//JPo+ApNVMVt2L3wnydw9YEcXECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjFDXu+UpUQvfxiero4nncyHjURjAfBgNVHSMEGDAWgBQxg3hZFs2Y18dw
1oUUVJmooKFXIjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01ZTjRXUmJObU5mSGNOYUZGRlNacUtDaFZ5SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvNzE5M2RiLTdmODUtNDJiYi1iMDlhLWY1MmM0N2MyMjVkYi8x
L1l4UTE3dmxLVkVMMzhZbnE2T0o1M01oNDFFWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
NzE5M2RiLTdmODUtNDJiYi1iMDlhLWY1MmM0N2MyMjVkYi8xL01ZTjRXUmJObU5m
SGNOYUZGRlNacUtDaFZ5SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANmcYDANBgkqhkiG9w0BAQsFAAOC
AQEAbrUQdGQ+ALehRb6PEfc5RYhcgxwPqsxpLAh0+OKDU4UJk1PltL81+y1u7B9Y
PPmOmB60rBZEQ3NZEWbml+WzpSp2gO3fEXJcXr7Ny+zTxABn4wgkzrgc8PhF/HwF
7Hizqi4qgrbjvye3LiBXX9RjlO2VgiNo3SkdtH7f5fVh9E4Ig3CDahLSEgc0/NWl
h+Y0Kx4XUuFp4Au9db44ha9la5uPg+N+L0+aaeJIzqOMnDiIW3A9V3grGhsbmYBQ
gbJb6Z/eqW4V9mGRrRguJxPf1g2IK8F+A0NxuvtA5dfh2NMJ3Dlz8DHU+fM/DKUO
+l/x0ALO5Bs0+bHqvgs3JS2lIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org