Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c0e7a1-06f5-4ca0-8210-ea6ed29cab5e/1/CyUOGVGqpWouse4n7ZZhr8opmt4.roa
File: CyUOGVGqpWouse4n7ZZhr8opmt4.roa (raw, json)
Hash identifier: LWWk21S4DbBwZ4dBd66znhv9U/aUYPNqiuPSviBp9Jo=
Subject key identifier: 0B:25:0E:19:51:AA:A5:6A:2E:B1:EE:27:ED:96:61:AF:CA:29:9A:DE
Certificate issuer: /CN=61b824b85aba7bc3512b1214b385de570fb294bf
Certificate serial: 01820140579D78E7003337F7208D3AB9AE00
Authority key identifier: 61:B8:24:B8:5A:BA:7B:C3:51:2B:12:14:B3:85:DE:57:0F:B2:94:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbgkuFq6e8NRKxIUs4XeVw-ylL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c0e7a1-06f5-4ca0-8210-ea6ed29cab5e/1/CyUOGVGqpWouse4n7ZZhr8opmt4.roa
Signing time: Fri 15 Jul 2022 09:46:10 +0000
ROA not before: Fri 15 Jul 2022 09:46:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51644
IP address blocks: 91.199.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:40:57:9d:78:e7:00:33:37:f7:20:8d:3a:b9:ae:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b824b85aba7bc3512b1214b385de570fb294bf
Validity
Not Before: Jul 15 09:46:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b250e1951aaa56a2eb1ee27ed9661afca299ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fe:54:ca:9b:3e:18:5e:28:1c:09:ab:45:6d:
7c:e3:ec:f6:55:21:2d:64:96:a4:30:51:57:6b:06:
bc:6f:67:1a:ad:59:ef:de:3f:4c:28:fc:fb:85:3f:
fb:9a:65:67:ed:9d:c1:a6:63:70:e0:78:c6:72:13:
f9:74:b4:17:7d:36:61:13:b4:bf:dd:da:68:fd:ca:
7a:ed:c5:af:d7:f3:fd:78:82:2f:c2:93:7f:ef:8a:
35:12:26:f0:6f:da:f4:62:dd:76:7c:f9:f0:bd:2d:
76:ef:da:d6:34:b0:7a:c0:f1:bf:88:3b:ca:18:67:
ea:4e:00:66:99:8f:d7:fd:fd:79:94:08:e2:2b:75:
f2:b8:58:ca:03:83:ce:dd:f9:ab:47:76:78:9e:7a:
23:66:51:6a:6d:ee:dd:eb:03:cb:e4:42:01:20:1e:
d9:8a:36:07:2f:02:31:83:98:84:d9:1a:bd:4e:e7:
9d:59:d2:8b:75:a6:13:34:87:6e:24:c3:c8:1a:ec:
5e:8b:40:e4:b0:5a:41:04:36:cb:a2:7d:ce:d3:5a:
15:d3:09:ac:cf:e6:d8:f0:04:36:44:3a:72:7d:57:
99:e0:d7:73:ae:60:9e:cf:c3:32:0d:3f:2e:ef:6f:
61:60:74:ec:5c:17:44:df:94:89:8a:23:f3:1f:52:
01:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:25:0E:19:51:AA:A5:6A:2E:B1:EE:27:ED:96:61:AF:CA:29:9A:DE
X509v3 Authority Key Identifier:
keyid:61:B8:24:B8:5A:BA:7B:C3:51:2B:12:14:B3:85:DE:57:0F:B2:94:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbgkuFq6e8NRKxIUs4XeVw-ylL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c0e7a1-06f5-4ca0-8210-ea6ed29cab5e/1/CyUOGVGqpWouse4n7ZZhr8opmt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c0e7a1-06f5-4ca0-8210-ea6ed29cab5e/1/YbgkuFq6e8NRKxIUs4XeVw-ylL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.61.0/24
Signature Algorithm: sha256WithRSAEncryption
59:8c:12:10:97:0c:da:31:62:1e:6e:93:22:08:06:9d:0f:7a:
72:6f:4d:90:22:d0:6d:6b:6d:38:6c:ac:21:6e:ad:71:a3:bf:
09:03:75:9f:10:20:83:d7:1a:25:2c:51:3a:c6:99:0f:e2:b0:
75:c5:04:af:ef:20:5d:72:bb:2e:47:47:33:a7:5b:c8:88:55:
e1:f7:d5:ee:8c:77:be:4e:bb:71:cd:68:65:aa:c5:94:5d:1a:
3d:04:e1:78:89:2b:1a:19:0a:b4:74:c6:fc:e0:a3:2f:e2:2c:
cf:2d:5c:cf:ef:e8:04:1b:b4:12:2d:64:2f:f9:ef:1a:a0:65:
c2:c1:4f:45:ec:ee:6b:7a:1c:18:7f:fa:13:a6:be:ed:d1:1e:
76:49:43:c1:d2:da:0f:46:14:3c:08:0b:5e:2c:4c:e4:95:bc:
89:74:fc:88:22:6e:5a:0a:88:49:99:a4:bc:e4:3a:b2:46:d0:
57:ad:81:d3:68:3a:92:52:83:7a:cb:e1:5f:9b:fc:91:99:f1:
3a:b0:7a:5a:4f:8b:f5:4b:7d:7d:99:6b:ad:ca:bf:6a:4e:e9:
95:89:fd:18:25:cb:54:73:16:a0:74:9f:77:df:d7:83:e4:ba:
80:db:e2:6d:be:b0:90:9e:fb:b1:57:0b:4e:70:9e:b9:cd:34:
1d:fe:aa:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:04 2024 by rpki-client on console-fra.rpki-client.org