Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/YPndDVUqjUhsQlu7lIdx6W8Oo6c.roa
File: YPndDVUqjUhsQlu7lIdx6W8Oo6c.roa (raw, json)
Hash identifier: HJRTD1xEaBAXB5Ckk/TBbe8sx7mE/97s9f9USVNU/YU=
Subject key identifier: 60:F9:DD:0D:55:2A:8D:48:6C:42:5B:BB:94:87:71:E9:6F:0E:A3:A7
Certificate issuer: /CN=697ea60aca0ddae5eddfbc260cb7da261624e91d
Certificate serial: 1726ED82
Authority key identifier: 69:7E:A6:0A:CA:0D:DA:E5:ED:DF:BC:26:0C:B7:DA:26:16:24:E9:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aX6mCsoN2uXt37wmDLfaJhYk6R0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/YPndDVUqjUhsQlu7lIdx6W8Oo6c.roa
Signing time: Sat 01 Jan 2022 01:57:02 +0000
ROA not before: Sat 01 Jan 2022 01:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47426
IP address blocks: 195.43.157.0/24 maxlen: 24
2001:67c:348::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 388427138 (0x1726ed82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=697ea60aca0ddae5eddfbc260cb7da261624e91d
Validity
Not Before: Jan 1 01:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60f9dd0d552a8d486c425bbb948771e96f0ea3a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:de:58:6f:79:7a:57:39:8e:19:48:a3:a6:21:
11:5a:ee:0e:d1:dc:20:7d:22:6c:b4:2a:1e:47:b5:
aa:ed:5b:ae:1e:4c:25:71:3d:e1:19:42:16:ec:32:
f5:1f:ff:e7:3c:25:91:27:27:54:30:c2:2d:27:4e:
fd:b8:0e:1e:c7:44:93:69:b9:08:eb:17:d9:20:37:
77:76:9a:b3:92:61:0f:13:dc:29:62:34:b3:ba:14:
ac:ef:44:80:80:94:24:ad:0e:98:f1:89:de:0f:99:
d4:6e:a2:5c:6b:cb:2c:6f:a1:fb:77:22:0c:49:a4:
2a:42:eb:ec:d3:56:a2:4b:3e:1b:39:4d:dc:4f:75:
8a:0b:4c:8e:35:a6:5a:9a:1a:18:4c:dc:8d:a9:08:
84:a8:a2:b2:f5:10:aa:78:c5:1c:0c:d6:73:1e:95:
8d:71:ec:86:79:8f:3b:25:3f:78:9d:c7:b3:7e:f9:
e2:18:17:b2:44:a8:ff:b9:a2:13:c6:92:06:ef:22:
62:e5:39:1b:0a:b4:df:11:eb:32:89:ef:af:b3:06:
0d:d3:0e:0e:5a:7e:60:1f:f2:15:24:97:e8:92:b7:
0e:db:04:89:7f:0e:92:65:47:39:34:32:da:9f:e2:
cc:0a:a5:58:68:eb:fc:8a:24:6a:05:f5:9a:e5:d7:
19:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F9:DD:0D:55:2A:8D:48:6C:42:5B:BB:94:87:71:E9:6F:0E:A3:A7
X509v3 Authority Key Identifier:
keyid:69:7E:A6:0A:CA:0D:DA:E5:ED:DF:BC:26:0C:B7:DA:26:16:24:E9:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aX6mCsoN2uXt37wmDLfaJhYk6R0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/YPndDVUqjUhsQlu7lIdx6W8Oo6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fb4934-a937-4324-9f17-eead3b8bccb9/1/aX6mCsoN2uXt37wmDLfaJhYk6R0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.157.0/24
IPv6:
2001:67c:348::/48
Signature Algorithm: sha256WithRSAEncryption
a8:e4:c3:b0:9c:bf:d7:b1:b2:03:4b:ea:ec:da:46:ef:a9:f5:
13:ee:d9:c7:7d:e6:13:50:f9:89:e7:63:12:21:3b:b7:5a:79:
4e:f8:da:b4:ee:b5:30:82:4c:75:56:84:f0:ea:ea:b2:5f:8a:
7f:85:48:79:d6:8b:50:8b:b7:9e:ce:b2:57:23:0e:9b:99:85:
14:82:fe:da:92:14:95:6e:93:b5:a4:48:1d:f2:76:56:f4:8a:
fb:3a:f1:d2:15:3d:0e:f3:fb:e6:28:0a:c6:a5:32:22:ff:6e:
69:24:d5:15:87:0b:36:66:40:74:9e:ca:78:a2:a8:5d:b2:42:
46:ff:fc:d2:66:90:96:63:b5:f1:c6:0c:a8:2a:fe:47:1a:f6:
84:d1:8f:8f:af:a0:40:a1:ca:b9:68:fd:84:b0:fc:04:2f:26:
50:26:9b:14:ec:e7:53:d4:1e:b3:79:9b:04:67:93:90:ee:27:
54:2f:9e:b6:9d:e3:c1:ca:a1:81:0a:50:85:ae:20:f3:16:4a:
0b:eb:72:2a:b5:79:f9:95:f2:f7:59:68:14:d5:af:78:51:75:
b1:ba:49:d2:ef:5d:43:4c:f3:13:75:ad:43:54:6b:2d:2d:03:
9a:dc:06:a6:f7:f3:bd:d4:13:41:9b:d9:01:c8:ab:5c:3f:0f:
2e:26:4c:a4
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEFybtgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
OTdlYTYwYWNhMGRkYWU1ZWRkZmJjMjYwY2I3ZGEyNjE2MjRlOTFkMB4XDTIyMDEw
MTAxNTcwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjBmOWRkMGQ1NTJh
OGQ0ODZjNDI1YmJiOTQ4NzcxZTk2ZjBlYTNhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJzeWG95elc5jhlIo6YhEVruDtHcIH0ibLQqHke1qu1brh5M
JXE94RlCFuwy9R//5zwlkScnVDDCLSdO/bgOHsdEk2m5COsX2SA3d3aas5JhDxPc
KWI0s7oUrO9EgICUJK0OmPGJ3g+Z1G6iXGvLLG+h+3ciDEmkKkLr7NNWoks+GzlN
3E91igtMjjWmWpoaGEzcjakIhKiisvUQqnjFHAzWcx6VjXHshnmPOyU/eJ3Hs375
4hgXskSo/7miE8aSBu8iYuU5Gwq03xHrMonvr7MGDdMODlp+YB/yFSSX6JK3DtsE
iX8OkmVHOTQy2p/izAqlWGjr/IokagX1muXXGQ8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRg+d0NVSqNSGxCW7uUh3Hpbw6jpzAfBgNVHSMEGDAWgBRpfqYKyg3a5e3f
vCYMt9omFiTpHTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FYNm1Dc29OMnVYdDM3d21ETGZhSmhZazZSMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmYvZmI0OTM0LWE5MzctNDMyNC05ZjE3LWVlYWQzYjhiY2NiOS8x
L1lQbmREVlVxalVoc1FsdTdsSWR4Nlc4T282Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmYv
ZmI0OTM0LWE5MzctNDMyNC05ZjE3LWVlYWQzYjhiY2NiOS8xL2FYNm1Dc29OMnVY
dDM3d21ETGZhSmhZazZSMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMMrnTAPBAIAAjAJAwcAIAEGfANI
MA0GCSqGSIb3DQEBCwUAA4IBAQCo5MOwnL/XsbIDS+rs2kbvqfUT7tnHfeYTUPmJ
52MSITu3WnlO+Nq07rUwgkx1VoTw6uqyX4p/hUh51otQi7eezrJXIw6bmYUUgv7a
khSVbpO1pEgd8nZW9Ir7OvHSFT0O8/vmKArGpTIi/25pJNUVhws2ZkB0nsp4oqhd
skJG//zSZpCWY7XxxgyoKv5HGvaE0Y+Pr6BAocq5aP2EsPwELyZQJpsU7OdT1B6z
eZsEZ5OQ7idUL562nePByqGBClCFriDzFkoL63IqtXn5lfL3WWgU1a94UXWxuknS
711DTPMTda1DVGstLQOa3Aam9/O91BNBm9kByKtcPw8uJkyk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-fra.rpki-client.org