Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/YcOusV4vz3G3tA2rMAUFpKN8nAU.roa
File: YcOusV4vz3G3tA2rMAUFpKN8nAU.roa (raw, json)
Hash identifier: Glzm4XucOMy+S2yx5davHZHYFpJ8HlSctIkz2s1n08Q=
Subject key identifier: 61:C3:AE:B1:5E:2F:CF:71:B7:B4:0D:AB:30:05:05:A4:A3:7C:9C:05
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 0B8980AB
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/YcOusV4vz3G3tA2rMAUFpKN8nAU.roa
Signing time: Sat 01 Jan 2022 12:58:18 +0000
ROA not before: Sat 01 Jan 2022 12:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35223
IP address blocks: 193.168.168.0/22 maxlen: 22
82.117.0.0/19 maxlen: 19
2a03:5480::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193560747 (0xb8980ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Jan 1 12:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61c3aeb15e2fcf71b7b40dab300505a4a37c9c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:82:0d:6b:e3:01:29:92:9c:f8:bd:ca:91:07:
e4:4c:c1:5d:7b:de:4c:8b:98:68:75:19:2c:f4:f3:
85:f7:92:b4:98:6b:e3:58:84:cb:7d:f8:66:cd:fe:
b0:9f:22:1a:3d:cc:de:9f:fb:04:be:ae:9f:36:7d:
c0:cf:f6:27:32:d3:8b:8e:16:a2:03:99:3b:bb:85:
96:eb:4a:d2:31:ef:05:2a:c1:8e:bb:38:81:09:c6:
60:b9:f9:ef:13:f8:b1:18:1c:45:74:77:0b:08:66:
66:7e:dd:32:10:1e:0b:c4:3b:57:d6:b0:7d:f3:a0:
70:40:f0:3e:bd:92:21:12:24:03:00:9c:2d:27:ff:
6c:81:a7:b4:fa:72:00:79:b3:01:5a:69:0f:99:f9:
01:c6:ef:57:45:7c:c3:18:3f:e1:c6:20:90:c4:32:
f3:09:a5:fe:a0:3c:c7:45:22:fb:90:03:fd:e8:03:
32:96:4f:f5:f8:59:0c:a3:dd:ea:e3:fd:95:b6:8e:
66:26:31:4b:c6:07:0e:cc:a9:2d:b7:d1:ad:77:9d:
1e:25:5a:58:0c:6b:eb:39:d3:b5:79:42:ce:9a:b7:
d3:96:7d:7c:85:c0:c9:e6:0a:fa:61:57:0c:6d:24:
a7:74:a7:be:b0:0f:fd:d2:36:2d:a4:0f:dd:5d:ef:
0c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:C3:AE:B1:5E:2F:CF:71:B7:B4:0D:AB:30:05:05:A4:A3:7C:9C:05
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/YcOusV4vz3G3tA2rMAUFpKN8nAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.117.0.0/19
193.168.168.0/22
IPv6:
2a03:5480::/32
Signature Algorithm: sha256WithRSAEncryption
02:7e:f0:90:af:bb:8d:65:aa:ab:f0:0f:26:6d:1e:4b:61:62:
ef:54:5d:d2:09:8b:b5:e5:29:ae:88:8b:c9:f4:01:85:03:7a:
42:b6:93:2f:48:65:80:f3:bc:88:9a:af:61:95:cb:65:5c:6c:
ac:91:50:aa:b0:7b:2d:eb:78:35:21:77:36:00:58:2a:a9:db:
1a:03:70:49:fd:ca:69:ba:fb:c3:68:88:a8:2b:79:61:ab:aa:
b6:fd:d5:da:6c:40:f3:f6:6e:38:11:1f:67:e1:6e:96:59:f3:
6f:85:80:93:b5:72:59:d7:65:08:4f:e2:9f:74:2c:21:ba:ec:
41:e2:0f:40:66:e0:dd:2a:5e:a0:52:69:e0:6a:d8:4a:1b:fb:
f7:bb:69:8c:fa:38:b9:f4:44:98:39:49:48:f6:57:5a:95:86:
b8:d0:61:18:5e:82:dc:df:52:5c:0b:80:57:db:78:f3:ed:60:
42:ce:bd:28:a8:fd:95:35:2a:52:70:a5:3d:b6:99:f0:dd:a1:
c0:5f:2f:a1:16:9e:f5:0d:8d:16:08:92:75:33:41:4e:f1:42:
01:06:38:a8:c1:0d:4e:dc:10:99:95:0b:73:48:75:6a:32:90:
97:4f:6c:48:f9:31:6b:37:13:e9:4d:8e:36:19:a7:3c:c0:d9:
12:95:8a:20
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEC4mAqzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YTcwZmJiM2RiMjI4NDM3ZDYwNTc5OWFjNGY0NTk4ZDIyZTEzZTFiMB4XDTIyMDEw
MTEyNTgxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjFjM2FlYjE1ZTJm
Y2Y3MWI3YjQwZGFiMzAwNTA1YTRhMzdjOWMwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANiCDWvjASmSnPi9ypEH5EzBXXveTIuYaHUZLPTzhfeStJhr
41iEy334Zs3+sJ8iGj3M3p/7BL6unzZ9wM/2JzLTi44WogOZO7uFlutK0jHvBSrB
jrs4gQnGYLn57xP4sRgcRXR3CwhmZn7dMhAeC8Q7V9awffOgcEDwPr2SIRIkAwCc
LSf/bIGntPpyAHmzAVppD5n5AcbvV0V8wxg/4cYgkMQy8wml/qA8x0Ui+5AD/egD
MpZP9fhZDKPd6uP9lbaOZiYxS8YHDsypLbfRrXedHiVaWAxr6znTtXlCzpq305Z9
fIXAyeYK+mFXDG0kp3SnvrAP/dI2LaQP3V3vDI8CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBRhw66xXi/Pcbe0DaswBQWko3ycBTAfBgNVHSMEGDAWgBSqcPuz2yKEN9YF
eZrE9FmNIuE+GzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FuRDdzOXNpaERmV0JYbWF4UFJaalNMaFBocy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvZDhlMTg0LWU3OWItNDdmZS05NmRjLTViYTQyMzVjZTYxOS8x
L1ljT3VzVjR2ejNHM3RBMnJNQVVGcEtOOG5BVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
ZDhlMTg0LWU3OWItNDdmZS05NmRjLTViYTQyMzVjZTYxOS8xL3FuRDdzOXNpaERm
V0JYbWF4UFJaalNMaFBocy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBVJ1AAMEAsGoqDANBAIAAjAHAwUA
KgNUgDANBgkqhkiG9w0BAQsFAAOCAQEAAn7wkK+7jWWqq/APJm0eS2Fi71Rd0gmL
teUproiLyfQBhQN6QraTL0hlgPO8iJqvYZXLZVxsrJFQqrB7Let4NSF3NgBYKqnb
GgNwSf3Kabr7w2iIqCt5Yauqtv3V2mxA8/ZuOBEfZ+Fullnzb4WAk7VyWddlCE/i
n3QsIbrsQeIPQGbg3SpeoFJp4GrYShv797tpjPo4ufREmDlJSPZXWpWGuNBhGF6C
3N9SXAuAV9t48+1gQs69KKj9lTUqUnClPbaZ8N2hwF8voRae9Q2NFgiSdTNBTvFC
AQY4qMENTtwQmZULc0h1ajKQl09sSPkxazcT6U2ONhmnPMDZEpWKIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:14 2024 by rpki-client on console-ams.rpki-client.org