Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/ynUEIPG33CawcZzz3SDLmlkEVGk.roa
File: ynUEIPG33CawcZzz3SDLmlkEVGk.roa (raw, json)
Hash identifier: twDapjVLoN87kTHysyUp1DR1KoOETQXIKOhD5VotMhw=
Subject key identifier: CA:75:04:20:F1:B7:DC:26:B0:71:9C:F3:DD:20:CB:9A:59:04:54:69
Certificate issuer: /CN=13230da70232f66784730fd6c1255135b7f8d09f
Certificate serial: 1479203F
Authority key identifier: 13:23:0D:A7:02:32:F6:67:84:73:0F:D6:C1:25:51:35:B7:F8:D0:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EyMNpwIy9meEcw_WwSVRNbf40J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/ynUEIPG33CawcZzz3SDLmlkEVGk.roa
Signing time: Sat 01 Jan 2022 07:52:53 +0000
ROA not before: Sat 01 Jan 2022 07:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51354
IP address blocks: 195.43.75.0/24 maxlen: 24
2001:7f9:8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343482431 (0x1479203f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13230da70232f66784730fd6c1255135b7f8d09f
Validity
Not Before: Jan 1 07:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca750420f1b7dc26b0719cf3dd20cb9a59045469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:d0:4c:de:48:09:f5:41:93:b5:4c:74:75:
98:16:1b:17:e9:89:4d:fa:24:42:6e:de:c8:80:de:
af:1a:3e:89:2c:90:86:36:58:32:8d:e6:a6:4c:99:
f2:6d:94:48:96:ee:39:d6:7d:02:b9:7f:37:19:4e:
0f:a1:1c:90:e7:9b:c8:5f:eb:cc:a6:91:3b:a0:33:
fc:59:f3:08:fa:fb:12:09:45:e9:b3:22:5e:90:1a:
59:94:fe:86:52:8d:25:23:eb:99:cb:f6:7a:2f:41:
56:36:72:3d:ea:72:83:18:9d:57:30:64:f0:68:a0:
f5:aa:c8:12:a7:f5:24:d4:a7:cb:66:b8:78:9c:8f:
21:4f:33:1b:4d:86:8f:b7:5e:4d:7b:2e:96:66:36:
46:f7:b1:39:6d:6e:3c:33:23:e2:cb:91:3c:51:87:
d7:9d:00:1f:a3:14:28:73:33:d6:21:97:2b:e1:df:
0f:bb:bd:72:16:0f:f7:56:b6:75:fa:00:52:9d:d1:
d2:2b:51:1d:b7:77:2f:e5:86:11:fc:20:3e:36:5d:
eb:b9:d7:d1:dd:fb:af:70:fb:0a:32:63:0b:c7:92:
71:00:97:e7:bb:58:c1:c1:8f:b9:7f:9b:3b:35:64:
19:e0:50:fd:96:bd:52:6e:5b:d4:39:94:ba:9b:1b:
47:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:75:04:20:F1:B7:DC:26:B0:71:9C:F3:DD:20:CB:9A:59:04:54:69
X509v3 Authority Key Identifier:
keyid:13:23:0D:A7:02:32:F6:67:84:73:0F:D6:C1:25:51:35:B7:F8:D0:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EyMNpwIy9meEcw_WwSVRNbf40J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/ynUEIPG33CawcZzz3SDLmlkEVGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/EyMNpwIy9meEcw_WwSVRNbf40J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.75.0/24
IPv6:
2001:7f9:8::/48
Signature Algorithm: sha256WithRSAEncryption
19:24:77:a9:a9:ed:23:a5:77:e0:b2:15:2f:af:57:1c:0c:df:
43:16:5a:6b:17:5f:85:1a:58:df:88:37:f9:6f:9e:d0:25:0a:
d3:d4:fa:11:2f:d3:a9:e3:30:29:eb:98:24:c7:ec:be:f8:ad:
54:e9:cd:f4:e6:aa:32:86:d7:81:25:58:7b:87:7b:75:0e:ef:
6d:3b:c1:30:02:30:8f:82:76:43:6c:ba:1d:d2:2f:91:03:08:
39:2b:67:f8:58:24:1f:fd:bb:96:43:33:b3:2a:ed:e9:0c:93:
c1:ef:b9:77:e4:15:04:0a:7d:ea:1a:46:67:03:ad:10:6e:c4:
c5:d1:df:76:33:1b:a6:45:4b:0b:63:7c:0b:f1:5f:85:cb:ae:
b8:94:4a:48:9c:29:8a:95:cc:1a:62:32:7f:db:1a:1e:ea:93:
c0:2a:78:64:9d:ba:b0:2a:b2:19:7e:9b:08:45:5d:65:ad:0f:
6d:f2:ea:7e:e5:d7:b0:84:7e:42:4c:b2:20:9b:b6:40:de:82:
70:a2:3b:33:5f:2b:6b:e3:a4:7b:4b:c7:32:1c:f5:34:27:fd:
06:5e:89:e8:76:d3:c7:3a:2e:65:91:fd:6b:d6:a9:e3:59:a6:
09:9e:37:71:1a:87:b1:64:bb:e0:f8:f1:85:64:1d:d7:0b:9e:
01:8a:9d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-fra.rpki-client.org