Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/886163-65b3-4599-bf4b-f36cd8790b0a/1/yunSoM7RJp2IOlYVpUAxjhsJKFU.roa
File: yunSoM7RJp2IOlYVpUAxjhsJKFU.roa (raw, json)
Hash identifier: yRLErpJ0Lbr2cAWKbVfOLnRhsUNdT0RAKd06m/R1veg=
Subject key identifier: CA:E9:D2:A0:CE:D1:26:9D:88:3A:56:15:A5:40:31:8E:1B:09:28:55
Certificate issuer: /CN=1ea7a6afb21bb148742f6155d1a39afc8fc7e79c
Certificate serial: CFA050
Authority key identifier: 1E:A7:A6:AF:B2:1B:B1:48:74:2F:61:55:D1:A3:9A:FC:8F:C7:E7:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hqemr7IbsUh0L2FV0aOa_I_H55w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/886163-65b3-4599-bf4b-f36cd8790b0a/1/yunSoM7RJp2IOlYVpUAxjhsJKFU.roa
Signing time: Sat 01 Jan 2022 08:06:13 +0000
ROA not before: Sat 01 Jan 2022 08:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211501
IP address blocks: 194.26.238.0/24 maxlen: 24
2a11:75c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13606992 (0xcfa050)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea7a6afb21bb148742f6155d1a39afc8fc7e79c
Validity
Not Before: Jan 1 08:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cae9d2a0ced1269d883a5615a540318e1b092855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8c:37:7e:28:37:d2:78:3e:81:98:a3:61:07:
85:da:b6:35:36:8f:54:36:47:70:70:c0:17:8c:61:
fa:37:29:22:f8:05:de:8e:13:67:85:1f:01:94:d9:
51:6a:f4:40:1e:f8:74:55:e3:62:d6:83:87:52:fd:
d6:01:95:f8:94:9d:24:d4:1c:a8:3e:65:28:c5:d8:
98:ec:04:d4:c9:b1:39:3b:d5:db:a8:13:8d:bb:d8:
3c:52:14:82:48:eb:c7:b0:31:19:b5:89:82:0f:fe:
33:44:0f:c6:42:56:38:a0:aa:34:6c:c4:cf:c4:39:
bd:32:64:33:8e:26:b7:b4:6f:7b:65:3e:02:5d:46:
6e:c9:ce:c8:ea:81:25:52:fb:6f:28:ca:eb:8e:f7:
b9:44:b8:9d:78:a7:54:0f:05:77:3c:61:a4:51:32:
7b:39:ab:fe:19:2a:b4:71:0a:98:30:ed:55:1c:68:
af:eb:9e:ab:46:aa:f4:f9:3a:3a:19:25:4c:2f:65:
73:da:65:14:62:cb:df:2a:fc:7b:3d:45:3e:c8:97:
e1:1c:30:b9:36:88:9a:cc:43:6b:0b:44:96:ad:6d:
19:5c:52:17:5b:67:8e:b0:01:bc:f9:af:5f:30:31:
99:ea:dc:4a:c5:2e:de:3d:4b:d4:57:33:a9:7f:42:
fc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E9:D2:A0:CE:D1:26:9D:88:3A:56:15:A5:40:31:8E:1B:09:28:55
X509v3 Authority Key Identifier:
keyid:1E:A7:A6:AF:B2:1B:B1:48:74:2F:61:55:D1:A3:9A:FC:8F:C7:E7:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hqemr7IbsUh0L2FV0aOa_I_H55w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/886163-65b3-4599-bf4b-f36cd8790b0a/1/yunSoM7RJp2IOlYVpUAxjhsJKFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/886163-65b3-4599-bf4b-f36cd8790b0a/1/Hqemr7IbsUh0L2FV0aOa_I_H55w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.238.0/24
IPv6:
2a11:75c0::/29
Signature Algorithm: sha256WithRSAEncryption
11:73:fd:e2:07:63:05:40:33:6f:bb:60:28:42:b4:ef:db:1a:
0c:b9:4d:01:04:ab:f6:1c:f1:18:44:78:35:fc:36:cd:04:f0:
49:91:2f:a3:61:7f:ac:b6:51:92:95:05:82:1a:4a:63:de:76:
fe:29:64:13:45:57:b0:95:60:58:2f:a8:06:9e:e6:67:9f:32:
f0:c7:12:47:16:10:56:c2:cb:7d:e1:70:29:fb:a1:ea:35:82:
5e:28:4d:bd:92:6a:c9:76:d6:7b:15:a5:73:cc:59:29:40:dd:
0a:61:6f:80:ee:9a:7b:63:6d:70:98:e3:ac:01:91:a1:01:cb:
a4:e6:19:23:b4:ca:0e:11:d0:ae:6e:88:f2:c9:dc:e4:f2:77:
88:04:17:77:a0:90:07:8a:39:fb:92:fe:1f:80:3b:2b:dc:36:
1d:41:5f:f9:fd:a5:07:e7:f7:ab:fa:bf:c2:19:45:44:cd:d4:
c3:72:e1:e5:c4:ed:8a:62:4c:9f:11:84:d0:22:7d:aa:73:8f:
ba:28:24:02:8d:81:76:43:a8:43:81:c8:02:62:64:4e:3c:5f:
dc:ea:74:21:88:38:d2:2a:06:e5:50:01:9e:67:f0:21:4e:3d:
bc:38:bf:b6:87:58:f9:68:fe:d4:be:5a:ba:62:23:58:1f:db:
31:6e:7f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:29 2025 by rpki-client