Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YZJ54O4ZI6znajcYkd6iZs6-NBo.roa
File: YZJ54O4ZI6znajcYkd6iZs6-NBo.roa (raw, json)
Hash identifier: XWjw69uM1Jxs5jRseaCg3Wl6LKCjPKlyIg1MZflyeaU=
Subject key identifier: 61:92:79:E0:EE:19:23:AC:E7:6A:37:18:91:DE:A2:66:CE:BE:34:1A
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0183E2B85D0714E7D70C9811369B03077004
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YZJ54O4ZI6znajcYkd6iZs6-NBo.roa
Signing time: Sun 16 Oct 2022 21:34:36 +0000
ROA not before: Sun 16 Oct 2022 21:34:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 109.121.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e2:b8:5d:07:14:e7:d7:0c:98:11:36:9b:03:07:70:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Oct 16 21:34:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=619279e0ee1923ace76a371891dea266cebe341a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d5:67:6f:ab:92:d3:2c:f4:c1:62:fa:a3:e1:
1b:01:3a:98:fe:b7:63:3e:da:13:59:e1:38:d3:7f:
c6:3f:a1:9e:71:4d:11:08:5e:ca:70:68:df:ca:92:
4d:8b:89:77:1f:32:cc:fa:88:48:42:ba:2d:69:8e:
f1:29:e8:4c:c1:96:d7:33:21:ad:66:8d:42:5c:8f:
df:01:2a:3c:04:18:d2:33:6b:57:46:fb:8f:3e:dc:
9d:61:fd:22:2f:af:b4:27:64:6b:cd:6d:aa:89:30:
dc:a2:e1:2b:c5:8c:f7:d2:c2:ea:85:38:49:99:ed:
f1:c6:d8:81:e7:40:22:68:55:aa:27:61:5c:63:17:
54:d8:aa:c4:31:d9:f6:34:6f:66:89:6a:da:6b:88:
52:90:3f:84:8f:4a:f8:74:69:52:26:04:7d:a2:f6:
b5:ba:09:31:f6:bc:71:c5:ca:4c:18:6c:d9:00:df:
f2:f1:e1:9c:5e:b8:0e:30:d4:30:4b:a6:6a:2d:2a:
fb:9a:7b:47:b7:de:62:90:ab:47:dd:8c:0b:a1:4b:
5d:3d:41:68:67:10:aa:33:b6:51:80:91:c3:e0:1c:
c7:2f:05:c4:ef:a5:8a:dd:30:81:c9:55:9f:37:56:
54:74:c2:f4:3d:8d:74:fb:60:c2:c3:6b:f2:19:30:
2e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:92:79:E0:EE:19:23:AC:E7:6A:37:18:91:DE:A2:66:CE:BE:34:1A
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YZJ54O4ZI6znajcYkd6iZs6-NBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.44.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:fd:54:4c:77:a3:e0:d1:e9:54:5f:e4:be:3c:bc:8b:6b:f1:
da:10:27:c6:18:47:56:68:1a:9c:5e:ce:dc:fe:8b:ff:42:ec:
92:23:ee:72:0f:b0:d4:df:c0:e2:b6:77:0c:36:29:91:53:85:
b7:aa:11:4d:87:18:79:a4:9c:25:c9:20:b7:d7:13:23:8c:ac:
60:1c:0d:33:c8:0e:61:e4:e5:01:85:75:f2:79:da:19:63:a8:
29:18:ec:1b:d6:b8:8e:60:1d:ae:12:55:46:74:8a:a0:d8:bc:
29:21:41:00:07:47:59:d9:9b:4c:6e:1b:f9:22:32:8c:c9:ac:
02:97:06:13:00:b9:eb:41:aa:1a:e0:5c:a1:0f:95:c3:a7:16:
a7:1a:fb:8c:27:c7:4c:bc:41:9b:31:3f:2a:68:76:71:9d:07:
16:41:89:56:d9:74:74:50:a9:5d:98:cd:6c:05:3a:b7:bd:29:
2f:28:d8:a2:a5:c9:e5:40:fd:a0:ff:6c:0a:8a:af:fe:66:bd:
24:b5:8a:34:ad:9f:ea:77:87:04:1b:70:04:fc:e2:12:00:c4:
9f:ab:43:95:04:7d:a1:16:18:6b:95:de:01:7f:82:6a:a2:2c:
6c:b6:ec:ae:5e:6e:28:fc:cf:89:20:3a:c6:51:e4:20:b9:5e:
41:ea:87:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPiuF0HFOfXDJgRNpsDB3AEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjIxMDE2MjEzNDM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTkyNzllMGVlMTkyM2FjZTc2YTM3MTg5MWRlYTI2NmNlYmUzNDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9Vnb6uS0yz0wWL6o+EbATqY/rdj
PtoTWeE403/GP6GecU0RCF7KcGjfypJNi4l3HzLM+ohIQrotaY7xKehMwZbXMyGt
Zo1CXI/fASo8BBjSM2tXRvuPPtydYf0iL6+0J2RrzW2qiTDcouErxYz30sLqhThJ
me3xxtiB50AiaFWqJ2FcYxdU2KrEMdn2NG9miWraa4hSkD+Ej0r4dGlSJgR9ova1
ugkx9rxxxcpMGGzZAN/y8eGcXrgOMNQwS6ZqLSr7mntHt95ikKtH3YwLoUtdPUFo
ZxCqM7ZRgJHD4BzHLwXE76WK3TCByVWfN1ZUdML0PY10+2DCw2vyGTAuowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGGSeeDuGSOs52o3GJHeombOvjQaMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvWVpKNTRPNFpJNnpuYWpjWWtkNmlaczYtTkJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXksMA0G
CSqGSIb3DQEBCwUAA4IBAQAr/VRMd6Pg0elUX+S+PLyLa/HaECfGGEdWaBqcXs7c
/ov/QuySI+5yD7DU38DitncMNimRU4W3qhFNhxh5pJwlySC31xMjjKxgHA0zyA5h
5OUBhXXyedoZY6gpGOwb1riOYB2uElVGdIqg2LwpIUEAB0dZ2ZtMbhv5IjKMyawC
lwYTALnrQaoa4FyhD5XDpxanGvuMJ8dMvEGbMT8qaHZxnQcWQYlW2XR0UKldmM1s
BTq3vSkvKNiipcnlQP2g/2wKiq/+Zr0ktYo0rZ/qd4cEG3AE/OISAMSfq0OVBH2h
Fhhrld4Bf4JqoixstuyuXm4o/M+JIDrGUeQguV5B6ofN
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org