Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/yyv8RUu93dyJmRcqImrvTpLf2HI.roa
File: yyv8RUu93dyJmRcqImrvTpLf2HI.roa (raw, json)
Hash identifier: RgAlQ2LIuxqVhKJoHzuz23++2lL8I1RF3pfvuV/Rmp0=
Subject key identifier: CB:2B:FC:45:4B:BD:DD:DC:89:99:17:2A:22:6A:EF:4E:92:DF:D8:72
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 08DA5ADE
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/yyv8RUu93dyJmRcqImrvTpLf2HI.roa
Signing time: Sat 01 Jan 2022 07:01:25 +0000
ROA not before: Sat 01 Jan 2022 07:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133929
IP address blocks: 185.243.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148527838 (0x8da5ade)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 1 07:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb2bfc454bbddddc8999172a226aef4e92dfd872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c0:c1:db:91:cd:66:57:d8:7f:b9:ca:1c:4c:
dc:b2:ed:36:a6:83:4b:98:f3:e7:da:2c:51:03:47:
62:d9:8d:87:7d:09:5f:d0:7b:a7:66:14:12:cf:eb:
d4:82:40:f5:ab:44:da:0e:89:48:30:7c:79:8f:ac:
be:57:4a:6a:b4:c1:1b:77:8d:f4:a9:a3:9c:7f:70:
b2:69:ea:b7:46:e5:5a:6a:0b:9d:f6:6e:5b:b5:f0:
e8:ab:f8:94:a7:37:c5:41:a4:d0:3b:78:54:32:04:
31:f1:d6:7f:41:33:21:12:da:ff:94:92:ba:76:f4:
9c:ac:7c:fa:be:c2:92:c5:92:46:2b:46:ce:db:78:
b4:95:f9:14:46:9c:b3:28:5c:0c:47:12:8f:cd:87:
46:bc:7c:41:61:51:be:58:a6:4c:ae:d5:e1:c1:c8:
c4:c6:45:23:73:01:68:ff:fc:4e:2a:c4:e4:9e:12:
ae:fc:2e:d2:8e:68:88:90:6a:14:68:70:05:9d:2c:
94:40:38:bc:03:13:7a:e7:c0:2d:8a:df:e0:ee:aa:
cf:6c:88:af:8a:b5:1a:70:a9:28:17:39:07:b6:92:
14:89:88:66:0f:09:a6:1f:c4:f5:f0:ef:16:b2:04:
95:78:83:39:c1:8b:35:35:14:93:37:f2:92:35:39:
2e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2B:FC:45:4B:BD:DD:DC:89:99:17:2A:22:6A:EF:4E:92:DF:D8:72
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/yyv8RUu93dyJmRcqImrvTpLf2HI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.6.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:ed:56:1c:34:9c:a7:2e:d6:67:a5:e0:21:bd:21:aa:f1:cf:
7a:46:cd:5d:c7:57:f5:eb:fe:51:e8:e5:84:ed:ee:8a:42:59:
e0:26:65:96:6a:a2:fa:26:07:e9:21:64:5f:f1:c5:07:4b:45:
7a:c7:ea:b2:93:63:3f:fc:0f:f5:eb:c3:ac:55:13:75:24:d5:
8b:ac:42:e3:53:1f:75:fc:e3:33:99:9a:fe:91:3d:fc:9a:a6:
f5:03:86:02:22:e7:ef:c6:97:29:9a:c7:a8:20:87:c1:45:f2:
e8:93:96:d5:97:48:3c:97:23:a8:f5:82:99:d2:68:f9:a0:a6:
b2:83:f3:ea:93:b5:93:b0:cb:cf:9e:2d:ad:67:d0:31:71:a2:
56:65:a1:7a:70:6e:d4:a0:2b:b7:b3:9f:05:5c:f7:96:34:b5:
ad:fe:75:da:9f:79:fd:79:73:c8:c5:64:75:b9:7f:26:35:06:
46:0a:c5:18:e5:3b:5a:d4:51:17:a1:25:7b:75:6d:f7:53:ec:
9a:be:e6:56:35:7f:95:39:49:89:cd:16:bf:56:17:de:29:77:
ea:25:b6:54:39:3f:a4:6d:1b:b9:72:a9:90:e4:b4:0c:e9:97:
3e:dc:89:62:50:73:ce:d7:76:1f:e8:6e:66:b4:c9:6c:1f:7c:
8e:59:65:29
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECNpa3jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
N2QwM2YyOTgxODBjYzEwOWYxOWQ0YjE5OTJjN2Q3MWM1NmM4ZGNjMB4XDTIyMDEw
MTA3MDEyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2IyYmZjNDU0YmJk
ZGRkYzg5OTkxNzJhMjI2YWVmNGU5MmRmZDg3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPAwduRzWZX2H+5yhxM3LLtNqaDS5jz59osUQNHYtmNh30J
X9B7p2YUEs/r1IJA9atE2g6JSDB8eY+svldKarTBG3eN9KmjnH9wsmnqt0blWmoL
nfZuW7Xw6Kv4lKc3xUGk0Dt4VDIEMfHWf0EzIRLa/5SSunb0nKx8+r7CksWSRitG
ztt4tJX5FEacsyhcDEcSj82HRrx8QWFRvlimTK7V4cHIxMZFI3MBaP/8TirE5J4S
rvwu0o5oiJBqFGhwBZ0slEA4vAMTeufALYrf4O6qz2yIr4q1GnCpKBc5B7aSFImI
Zg8Jph/E9fDvFrIElXiDOcGLNTUUkzfykjU5LncCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTLK/xFS73d3ImZFyoiau9Okt/YcjAfBgNVHSMEGDAWgBQX0D8pgYDMEJ8Z
1LGZLH1xxWyNzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y5QV9LWUdBekJDZkdkU3htU3g5Y2NWc2pjdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvODJlMjUzLTAxNzctNGEyMC1iZWZlLTkxOGFjNjQ2MjY3OS8x
L3l5djhSVXU5M2R5Sm1SY3FJbXJ2VHBMZjJISS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
ODJlMjUzLTAxNzctNGEyMC1iZWZlLTkxOGFjNjQ2MjY3OS8xL0Y5QV9LWUdBekJD
ZkdkU3htU3g5Y2NWc2pjdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnzBjANBgkqhkiG9w0BAQsFAAOC
AQEAp+1WHDScpy7WZ6XgIb0hqvHPekbNXcdX9ev+UejlhO3uikJZ4CZllmqi+iYH
6SFkX/HFB0tFesfqspNjP/wP9evDrFUTdSTVi6xC41MfdfzjM5ma/pE9/Jqm9QOG
AiLn78aXKZrHqCCHwUXy6JOW1ZdIPJcjqPWCmdJo+aCmsoPz6pO1k7DLz54trWfQ
MXGiVmWhenBu1KArt7OfBVz3ljS1rf512p95/XlzyMVkdbl/JjUGRgrFGOU7WtRR
F6Ele3Vt91Psmr7mVjV/lTlJic0Wv1YX3il36iW2VDk/pG0buXKpkOS0DOmXPtyJ
YlBzztd2H+huZrTJbB98jlllKQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:46 2023 by rpki-client on console-ams.rpki-client.org