Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/6c1e01-1595-47b0-9e03-cf7232ddebec/1/Y0GYjE1hvLFKnosZdyvpDyig0xI.roa
File: Y0GYjE1hvLFKnosZdyvpDyig0xI.roa (raw, json)
Hash identifier: 3IDjfrNIYzVRjV+MZpl8RKfehXEP9vPCRNCQWgkst4s=
Subject key identifier: 63:41:98:8C:4D:61:BC:B1:4A:9E:8B:19:77:2B:E9:0F:28:A0:D3:12
Certificate issuer: /CN=0c57cb3a1e53e7629ee3b9f2672d4571ef85d2c8
Certificate serial: 346D5841
Authority key identifier: 0C:57:CB:3A:1E:53:E7:62:9E:E3:B9:F2:67:2D:45:71:EF:85:D2:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFfLOh5T52Ke47nyZy1Fce-F0sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/6c1e01-1595-47b0-9e03-cf7232ddebec/1/Y0GYjE1hvLFKnosZdyvpDyig0xI.roa
Signing time: Sat 01 Jan 2022 08:06:07 +0000
ROA not before: Sat 01 Jan 2022 08:06:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48137
IP address blocks: 94.126.49.0/24 maxlen: 24
94.126.50.0/24 maxlen: 24
94.126.51.0/24 maxlen: 24
94.126.48.0/24 maxlen: 24
2a02:f00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 879581249 (0x346d5841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c57cb3a1e53e7629ee3b9f2672d4571ef85d2c8
Validity
Not Before: Jan 1 08:06:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6341988c4d61bcb14a9e8b19772be90f28a0d312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:63:cf:81:dc:69:a5:d9:be:4d:41:25:64:d5:
a0:3f:1b:3a:da:8c:0d:6f:08:6d:77:64:24:8b:7d:
d7:78:0f:75:56:81:43:a3:78:12:20:48:dc:85:98:
19:a2:d4:3e:32:fc:e0:b8:39:cc:5d:12:e2:02:c8:
73:fe:93:a1:c7:ff:87:c8:aa:35:83:ff:83:e3:78:
08:95:a0:26:13:be:55:7d:26:60:1e:09:93:26:a2:
7a:6a:40:ec:35:fb:d0:c0:90:07:6b:26:32:2b:fe:
65:4a:fd:86:55:98:de:41:70:54:02:71:05:75:80:
07:99:74:77:29:d4:2d:8a:12:ca:57:84:c6:1a:1d:
a5:0a:a6:5d:82:db:f7:ca:bb:ac:00:a9:f5:95:75:
61:3f:14:15:4f:c2:84:44:b7:be:9b:0d:f7:0b:45:
1a:c7:f3:3e:52:f3:44:e0:00:6e:45:23:88:7e:a0:
58:c7:38:e7:24:05:6f:5e:ae:32:51:d6:2d:ed:88:
4d:14:f0:09:ec:8d:e6:7f:47:7c:6a:43:8e:d2:1b:
40:c4:f7:a7:cf:26:ba:74:52:86:81:c7:86:23:06:
15:5a:01:3c:92:06:06:2b:2a:0d:dc:1a:c3:45:44:
d4:7e:0b:01:96:a6:d0:35:e9:f9:dc:6d:5a:8a:70:
f6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:41:98:8C:4D:61:BC:B1:4A:9E:8B:19:77:2B:E9:0F:28:A0:D3:12
X509v3 Authority Key Identifier:
keyid:0C:57:CB:3A:1E:53:E7:62:9E:E3:B9:F2:67:2D:45:71:EF:85:D2:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFfLOh5T52Ke47nyZy1Fce-F0sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6c1e01-1595-47b0-9e03-cf7232ddebec/1/Y0GYjE1hvLFKnosZdyvpDyig0xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/6c1e01-1595-47b0-9e03-cf7232ddebec/1/DFfLOh5T52Ke47nyZy1Fce-F0sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.48.0/22
IPv6:
2a02:f00::/48
Signature Algorithm: sha256WithRSAEncryption
91:9e:0c:f4:28:3b:a6:89:fe:5f:48:f0:c5:1f:89:7c:0e:6a:
e1:2b:e3:79:e8:bd:d9:53:d5:88:12:41:da:f3:e2:72:b0:de:
c0:0e:b7:5c:65:73:d8:78:e8:cd:e2:be:54:4b:a2:28:1d:8f:
76:90:f0:e0:96:c0:3b:6e:90:84:8d:16:0c:49:81:cb:d7:82:
a2:4c:81:39:29:60:e4:74:0b:ff:68:65:c9:72:3d:a5:f8:f7:
42:f6:c7:f4:29:c6:7e:95:fe:fe:16:af:f6:4c:16:71:cd:17:
c2:97:0b:b6:08:85:8c:30:22:34:cd:da:87:3c:08:b8:6f:2a:
9c:ad:d5:85:bc:97:75:33:f0:37:31:fc:00:29:ce:5d:f8:94:
3c:13:6e:05:72:6b:88:ed:4d:dc:7a:85:cc:4f:30:66:9d:90:
97:f8:0c:d4:ef:f9:fd:b8:35:49:0f:c2:cc:cf:37:fa:ec:0f:
95:08:c5:e7:67:e2:d3:a7:e1:52:9f:ed:fc:8a:42:2b:15:f9:
1f:fc:d0:85:ac:8c:e9:f0:1e:37:09:a6:1b:9e:03:0c:08:01:
ba:45:ad:1f:b5:db:92:09:ea:70:cc:04:a4:a0:9f:b4:49:0d:
c1:77:e2:83:5b:dc:38:78:06:f8:ce:af:30:4a:4d:82:cb:d6:
c9:be:d5:e9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIENG1YQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YzU3Y2IzYTFlNTNlNzYyOWVlM2I5ZjI2NzJkNDU3MWVmODVkMmM4MB4XDTIyMDEw
MTA4MDYwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjM0MTk4OGM0ZDYx
YmNiMTRhOWU4YjE5NzcyYmU5MGYyOGEwZDMxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMJjz4HcaaXZvk1BJWTVoD8bOtqMDW8IbXdkJIt913gPdVaB
Q6N4EiBI3IWYGaLUPjL84Lg5zF0S4gLIc/6Tocf/h8iqNYP/g+N4CJWgJhO+VX0m
YB4JkyaiempA7DX70MCQB2smMiv+ZUr9hlWY3kFwVAJxBXWAB5l0dynULYoSyleE
xhodpQqmXYLb98q7rACp9ZV1YT8UFU/ChES3vpsN9wtFGsfzPlLzROAAbkUjiH6g
WMc45yQFb16uMlHWLe2ITRTwCeyN5n9HfGpDjtIbQMT3p88munRShoHHhiMGFVoB
PJIGBisqDdwaw0VE1H4LAZam0DXp+dxtWopw9jkCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRjQZiMTWG8sUqeixl3K+kPKKDTEjAfBgNVHSMEGDAWgBQMV8s6HlPnYp7j
ufJnLUVx74XSyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RGZkxPaDVUNTJLZTQ3bnlaeTFGY2UtRjBzZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvNmMxZTAxLTE1OTUtNDdiMC05ZTAzLWNmNzIzMmRkZWJlYy8x
L1kwR1lqRTFodkxGS25vc1pkeXZwRHlpZzB4SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
NmMxZTAxLTE1OTUtNDdiMC05ZTAzLWNmNzIzMmRkZWJlYy8xL0RGZkxPaDVUNTJL
ZTQ3bnlaeTFGY2UtRjBzZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAl5+MDAPBAIAAjAJAwcAKgIPAAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQCRngz0KDumif5fSPDFH4l8DmrhK+N56L3ZU9WI
EkHa8+JysN7ADrdcZXPYeOjN4r5US6IoHY92kPDglsA7bpCEjRYMSYHL14KiTIE5
KWDkdAv/aGXJcj2l+PdC9sf0KcZ+lf7+Fq/2TBZxzRfClwu2CIWMMCI0zdqHPAi4
byqcrdWFvJd1M/A3MfwAKc5d+JQ8E24FcmuI7U3ceoXMTzBmnZCX+AzU7/n9uDVJ
D8LMzzf67A+VCMXnZ+LTp+FSn+38ikIrFfkf/NCFrIzp8B43CaYbngMMCAG6Ra0f
tduSCepwzASkoJ+0SQ3Bd+KDW9w4eAb4zq8wSk2Cy9bJvtXp
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:59 2023 by rpki-client on console-fra.rpki-client.org