Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/yrUUpiBQYO-0l-Ifdl_VDFbNC8w.roa
File: yrUUpiBQYO-0l-Ifdl_VDFbNC8w.roa (raw, json)
Hash identifier: cx/wRcmprBxcgEfSryU1Uzyx6l2VvSq6Favp+GWDhfk=
Subject key identifier: CA:B5:14:A6:20:50:60:EF:B4:97:E2:1F:76:5F:D5:0C:56:CD:0B:CC
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0B20C73A
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/yrUUpiBQYO-0l-Ifdl_VDFbNC8w.roa
Signing time: Sat 01 Jan 2022 05:02:28 +0000
ROA not before: Sat 01 Jan 2022 05:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43415
IP address blocks: 217.218.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186697530 (0xb20c73a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 1 05:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cab514a6205060efb497e21f765fd50c56cd0bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bb:49:24:dc:89:62:f7:00:18:38:7b:b1:39:
89:ec:26:79:5d:f1:d9:e9:8c:cf:5b:de:59:4b:92:
db:4a:57:ea:b2:80:2f:3b:91:0a:55:57:dc:38:28:
d1:a7:d2:00:dd:1d:79:73:d7:c8:43:2f:1c:10:a5:
69:40:dd:e0:f5:0d:24:04:83:2c:6a:51:c1:10:33:
77:aa:0d:29:ff:d4:d3:1c:ef:dc:5a:3f:25:a0:02:
08:f5:85:ef:49:64:35:6e:c4:59:15:88:36:69:f7:
d8:5a:d8:35:3d:20:34:b7:16:11:f8:69:cb:80:5d:
9e:b7:aa:46:bc:1b:76:09:40:d0:c0:01:06:f1:c8:
71:d9:84:b7:61:f3:28:cf:d6:30:68:7f:64:f1:7f:
d2:a5:47:e9:73:e1:89:2a:20:b5:d2:5c:80:80:11:
63:93:e2:a6:e0:41:3d:16:62:2c:60:f5:7c:53:fc:
2a:f3:fc:f2:69:a5:31:14:fc:24:e7:51:a2:be:44:
a6:42:f2:83:5b:c5:b3:a4:c1:e0:47:16:b6:86:99:
b7:f1:f5:45:3f:0d:cb:70:21:8a:17:60:88:f0:c5:
74:dd:33:bf:dc:c3:56:84:a1:b9:e5:a5:1f:07:14:
c7:8f:34:91:2c:a2:3f:01:1e:8f:35:1d:0f:d6:11:
3b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B5:14:A6:20:50:60:EF:B4:97:E2:1F:76:5F:D5:0C:56:CD:0B:CC
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/yrUUpiBQYO-0l-Ifdl_VDFbNC8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.218.45.0/24
Signature Algorithm: sha256WithRSAEncryption
45:89:13:ad:e9:ef:75:41:f8:2b:f6:c7:e5:98:d0:d5:74:d0:
5e:87:49:15:b6:86:61:4e:e0:53:2e:8e:6c:7f:6b:aa:44:86:
f0:d7:3c:39:92:9b:d0:10:02:3f:45:dd:99:1f:14:e5:74:6f:
ad:30:cd:bf:d0:77:0d:9a:12:55:a2:0e:89:f3:b6:d6:5e:60:
7a:68:98:56:b4:9a:3a:70:25:1f:36:9c:c1:f1:47:0a:71:6b:
f5:90:ef:54:25:15:db:7e:62:2c:cf:6f:c3:00:df:1e:55:e3:
29:5e:1f:4f:97:f1:b8:1c:df:2b:d4:be:dc:c0:f2:41:6e:16:
90:cf:6d:82:b9:dd:93:d2:8c:b7:92:b8:c6:63:84:e1:5f:72:
1f:99:8a:02:f4:08:4c:7b:05:4d:5f:25:56:a5:a3:8b:a2:b1:
1b:07:ed:97:18:73:13:d1:cf:25:3b:d1:e4:e7:6e:84:69:08:
57:38:d1:6f:67:01:52:6a:77:61:fb:c1:2b:f9:64:c7:39:53:
ce:22:24:a4:f5:31:2a:43:04:5c:8b:75:37:b2:17:7e:28:b2:
cb:e9:f8:aa:6e:ea:36:94:91:e2:60:8e:9c:56:a5:d7:0e:4d:
2f:ec:c6:ea:20:91:84:0f:86:f2:df:dc:bd:62:59:ed:de:0d:
9a:00:b8:e5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECyDHOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
N2EzOWU0Nzk0YzM0NjEyZTdmMjI1NjliMWE2YTgxNzEwMjYwYWU1MB4XDTIyMDEw
MTA1MDIyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2FiNTE0YTYyMDUw
NjBlZmI0OTdlMjFmNzY1ZmQ1MGM1NmNkMGJjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANi7SSTciWL3ABg4e7E5iewmeV3x2emMz1veWUuS20pX6rKA
LzuRClVX3Dgo0afSAN0deXPXyEMvHBClaUDd4PUNJASDLGpRwRAzd6oNKf/U0xzv
3Fo/JaACCPWF70lkNW7EWRWINmn32FrYNT0gNLcWEfhpy4BdnreqRrwbdglA0MAB
BvHIcdmEt2HzKM/WMGh/ZPF/0qVH6XPhiSogtdJcgIARY5PipuBBPRZiLGD1fFP8
KvP88mmlMRT8JOdRor5EpkLyg1vFs6TB4EcWtoaZt/H1RT8Ny3AhihdgiPDFdN0z
v9zDVoShueWlHwcUx480kSyiPwEejzUdD9YRO5cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTKtRSmIFBg77SX4h92X9UMVs0LzDAfBgNVHSMEGDAWgBQno55HlMNGEufy
JWmxpqgXECYK5TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0o2T2VSNVREUmhMbjhpVnBzYWFvRnhBbUN1VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvMzhmYzMzLTA2YzEtNDAwNi05ZTIzLWY3NGQ5NTE4NTc2Yy8x
L3lyVVVwaUJRWU8tMGwtSWZkbF9WREZiTkM4dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
MzhmYzMzLTA2YzEtNDAwNi05ZTIzLWY3NGQ5NTE4NTc2Yy8xL0o2T2VSNVREUmhM
bjhpVnBzYWFvRnhBbUN1VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANnaLTANBgkqhkiG9w0BAQsFAAOC
AQEARYkTrenvdUH4K/bH5ZjQ1XTQXodJFbaGYU7gUy6ObH9rqkSG8Nc8OZKb0BAC
P0XdmR8U5XRvrTDNv9B3DZoSVaIOifO21l5gemiYVrSaOnAlHzacwfFHCnFr9ZDv
VCUV235iLM9vwwDfHlXjKV4fT5fxuBzfK9S+3MDyQW4WkM9tgrndk9KMt5K4xmOE
4V9yH5mKAvQITHsFTV8lVqWji6KxGwftlxhzE9HPJTvR5OduhGkIVzjRb2cBUmp3
YfvBK/lkxzlTziIkpPUxKkMEXIt1N7IXfiiyy+n4qm7qNpSR4mCOnFal1w5NL+zG
6iCRhA+G8t/cvWJZ7d4NmgC45Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:48 2024 by rpki-client on console-fra.rpki-client.org