Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/ynPSkVwjXx2s22J3h_jTERqgu_k.roa
File: ynPSkVwjXx2s22J3h_jTERqgu_k.roa (raw, json)
Hash identifier: lm+4TtXO6lT4Vp6UfBTdrBQVSYueUaOil6bbQIyKdr0=
Subject key identifier: CA:73:D2:91:5C:23:5F:1D:AC:DB:62:77:87:F8:D3:11:1A:A0:BB:F9
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 01847C70022E1F93D1F98D55AE381CB41E4D
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/ynPSkVwjXx2s22J3h_jTERqgu_k.roa
Signing time: Tue 15 Nov 2022 17:57:06 +0000
ROA not before: Tue 15 Nov 2022 17:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201490
IP address blocks: 84.47.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7c:70:02:2e:1f:93:d1:f9:8d:55:ae:38:1c:b4:1e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Nov 15 17:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca73d2915c235f1dacdb627787f8d3111aa0bbf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7b:b5:d6:bc:24:52:83:85:5d:49:03:35:b2:
f0:eb:e8:9c:62:ca:d1:51:20:99:96:10:3d:b3:43:
c1:31:a9:62:73:9c:af:13:49:ec:ce:1b:ea:d4:08:
3d:1b:7b:4a:5c:fa:81:f2:9c:cf:2c:ef:22:40:6b:
83:e3:98:5b:c8:28:24:9d:b3:e5:b3:f7:24:07:91:
d4:f1:81:3c:8f:ca:e7:bb:af:0b:e9:70:d0:40:d6:
77:e2:98:9d:fe:1f:25:8e:90:3a:67:be:ee:b0:bf:
b1:1b:dd:d0:ee:18:99:22:6b:d5:a1:c5:2f:16:9d:
22:23:72:ee:f2:5e:a4:4d:07:3d:48:b1:e4:b1:6c:
04:6e:87:ce:12:e7:bf:2c:d2:6b:a6:11:52:38:70:
9f:fc:05:fd:22:33:4e:18:c0:44:00:6e:1c:66:8c:
3e:52:54:2b:13:ee:56:e2:91:ec:8d:b2:6c:5b:63:
8f:ec:0c:7b:71:9c:65:09:a2:09:b9:4a:eb:03:18:
0e:26:f6:99:9d:2a:bd:5a:20:52:18:b3:99:ac:c8:
8f:3f:a3:e1:70:63:c6:f7:c4:7c:c6:c7:a1:1c:ae:
a8:b8:8b:a3:f2:a1:16:b0:8a:c8:56:ed:e9:79:6c:
a2:a3:15:71:d2:64:fc:92:4d:8d:38:30:6f:1f:cd:
e4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:73:D2:91:5C:23:5F:1D:AC:DB:62:77:87:F8:D3:11:1A:A0:BB:F9
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/ynPSkVwjXx2s22J3h_jTERqgu_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.146.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:f6:8e:33:8c:b2:e6:6b:6d:80:4f:f5:95:f2:49:c7:d5:00:
eb:08:2f:8d:26:ca:1a:0c:b2:f4:d8:e0:18:06:47:bd:4f:88:
5d:39:2c:a0:a2:51:4f:38:32:70:3f:b4:76:09:76:b9:23:8c:
db:d6:85:03:87:51:ea:85:cb:67:93:d0:4f:7b:19:95:be:d1:
6b:21:0e:07:ec:e0:b4:d2:d1:10:4c:2d:e4:6a:ea:51:f6:38:
43:c8:e7:59:14:e8:11:5c:99:d9:af:ce:90:ed:cb:24:7b:3d:
fd:78:04:c8:98:5c:32:a9:83:af:c8:02:8e:88:ad:bd:55:4d:
c5:8a:41:00:27:79:25:a4:b0:b7:43:5a:36:7f:e8:32:cd:d6:
0b:c7:d1:72:e8:e0:af:5e:9e:9b:c3:eb:09:e7:bd:2d:cc:38:
11:81:d2:c1:e5:0a:a0:be:85:eb:fc:be:0f:ca:45:1c:fb:b1:
6c:f2:6d:1a:99:3e:07:a0:ed:3a:30:36:ed:b4:26:c6:21:80:
27:b4:41:03:6f:30:3b:49:e3:89:eb:c3:1d:47:f9:ca:f4:1e:
99:3d:d7:4a:9b:97:dc:d4:3c:3c:25:62:d5:4d:6e:df:0f:25:
f9:ba:54:fa:2d:1e:1d:59:44:1f:a8:5b:7b:29:0f:5c:41:09:
7b:55:57:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR8cAIuH5PR+Y1VrjgctB5NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5ZGQ1NDI3ODE4NTFjMGJjZTVhM2VhNWNjMzg3NjUwZmZj
ODI3N2UwHhcNMjIxMTE1MTc1NzA2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTczZDI5MTVjMjM1ZjFkYWNkYjYyNzc4N2Y4ZDMxMTFhYTBiYmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHu11rwkUoOFXUkDNbLw6+icYsrR
USCZlhA9s0PBMalic5yvE0nszhvq1Ag9G3tKXPqB8pzPLO8iQGuD45hbyCgknbPl
s/ckB5HU8YE8j8rnu68L6XDQQNZ34pid/h8ljpA6Z77usL+xG93Q7hiZImvVocUv
Fp0iI3Lu8l6kTQc9SLHksWwEbofOEue/LNJrphFSOHCf/AX9IjNOGMBEAG4cZow+
UlQrE+5W4pHsjbJsW2OP7Ax7cZxlCaIJuUrrAxgOJvaZnSq9WiBSGLOZrMiPP6Ph
cGPG98R8xsehHK6ouIuj8qEWsIrIVu3peWyioxVx0mT8kk2NODBvH83kPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMpz0pFcI18drNtid4f40xEaoLv5MB8GA1UdIwQY
MBaAFFndVCeBhRwLzlo+pcw4dlD/yCd+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYt
NDdlMDkzNzk4OWE4LzEveW5QU2tWd2pYeDJzMjJKM2hfalRFUnFndV9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYtNDdlMDkzNzk4OWE4
LzEvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVC+SMA0G
CSqGSIb3DQEBCwUAA4IBAQCp9o4zjLLma22AT/WV8knH1QDrCC+NJsoaDLL02OAY
Bke9T4hdOSygolFPODJwP7R2CXa5I4zb1oUDh1Hqhctnk9BPexmVvtFrIQ4H7OC0
0tEQTC3kaupR9jhDyOdZFOgRXJnZr86Q7cskez39eATImFwyqYOvyAKOiK29VU3F
ikEAJ3klpLC3Q1o2f+gyzdYLx9Fy6OCvXp6bw+sJ570tzDgRgdLB5QqgvoXr/L4P
ykUc+7Fs8m0amT4HoO06MDbttCbGIYAntEEDbzA7SeOJ68MdR/nK9B6ZPddKm5fc
1Dw8JWLVTW7fDyX5ulT6LR4dWUQfqFt7KQ9cQQl7VVcG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org