Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/yf_TxSWBIiER1S2G05AveE-A0Ks.roa
File: yf_TxSWBIiER1S2G05AveE-A0Ks.roa (raw, json)
Hash identifier: nLGDGEnbvYExmXcl+47T7eZw6KAgnkiCs3v2AlLQxl0=
Subject key identifier: C9:FF:D3:C5:25:81:22:21:11:D5:2D:86:D3:90:2F:78:4F:80:D0:AB
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 04584714
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/yf_TxSWBIiER1S2G05AveE-A0Ks.roa
Signing time: Mon 07 Mar 2022 21:29:21 +0000
ROA not before: Mon 07 Mar 2022 21:29:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201490
IP address blocks: 213.208.171.0/24 maxlen: 24
84.47.146.0/24 maxlen: 24
85.91.124.0/23 maxlen: 23
85.91.126.0/24 maxlen: 24
85.91.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72894228 (0x4584714)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Mar 7 21:29:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9ffd3c52581222111d52d86d3902f784f80d0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:95:2e:39:69:8d:90:2f:06:5c:5d:64:55:13:
5d:90:b9:3e:5c:eb:8d:fd:fc:ae:24:f4:40:29:96:
04:0d:a4:60:74:01:9d:58:e2:bd:7e:81:a3:a0:5b:
f2:3c:9c:96:ea:4b:92:af:33:51:a6:71:44:4d:83:
b3:ea:b9:9f:78:a0:13:7e:61:db:dd:9e:85:ea:59:
be:4d:1c:e7:67:8b:a7:83:02:75:3b:1c:06:f3:e7:
95:ee:c1:c1:11:75:79:c8:fd:ee:32:1f:92:1c:22:
4d:50:8a:4d:1b:5d:e6:76:b4:68:3e:22:d4:c4:dc:
c0:6f:48:58:df:82:27:f3:cb:e9:a4:5c:0c:f2:b0:
6c:7d:35:55:e1:d3:09:d5:69:d5:ae:fa:74:10:b3:
9a:3e:73:25:6f:77:15:95:69:a4:37:33:27:bf:95:
24:3d:ae:70:a8:5d:5a:90:0f:0f:c1:05:13:93:9d:
3b:8c:a2:46:da:b4:f5:6c:e2:6f:d6:a3:5b:8d:43:
3e:c9:a6:d6:04:40:4f:f4:af:3e:b9:43:bc:76:22:
af:af:9e:86:67:fa:d6:0f:1f:12:fd:8d:a3:36:78:
6b:78:81:fd:9b:7b:b3:9a:51:a6:20:87:84:fb:0c:
0f:9d:cf:05:b6:6c:1d:45:b0:48:a6:89:a3:3f:90:
8e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FF:D3:C5:25:81:22:21:11:D5:2D:86:D3:90:2F:78:4F:80:D0:AB
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/yf_TxSWBIiER1S2G05AveE-A0Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.146.0/24
85.91.124.0/22
213.208.171.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:98:b9:03:e9:79:60:3d:11:3e:f0:41:9a:55:0c:13:0f:bc:
b2:21:f8:02:9a:57:99:9d:40:42:2b:1e:77:2c:05:30:fe:b9:
2e:c9:0f:39:fd:9c:c1:ae:eb:28:7d:03:29:91:a7:97:16:16:
d0:52:34:b5:c1:48:ba:d8:af:e8:28:c6:03:19:67:e3:fa:a7:
98:3a:ab:70:fd:ee:01:2c:76:7d:e8:83:a9:71:47:4a:a1:27:
94:1e:03:6c:f0:3f:02:17:47:b0:cb:47:3d:1a:b1:9f:ac:f0:
0a:21:07:df:5e:3b:63:82:36:46:e9:bf:0e:bb:6c:51:5d:60:
74:4f:08:04:77:13:39:13:69:43:63:9e:61:65:b0:d4:63:f2:
ce:59:ef:c9:d9:44:87:04:a8:15:6c:cc:33:dd:03:44:15:f3:
c5:53:a7:3a:58:20:f4:83:09:5f:13:20:48:47:65:2c:24:ae:
44:2e:ed:5e:8e:bc:a6:68:cb:ee:4f:a7:53:3d:4a:fe:23:8d:
04:02:33:5f:33:29:f2:9d:fe:40:c8:26:8e:0a:44:cf:03:06:
32:70:63:1f:6e:8b:a6:76:fc:d6:1d:fb:74:49:30:2f:84:98:
40:bb:e4:bb:a7:cb:e9:af:4f:64:ba:30:65:7f:b6:2b:36:56:
cc:47:80:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-ams.rpki-client.org