Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/m7aSbzoyo3ZE97TMQ8dEs-YACLY.roa
File: m7aSbzoyo3ZE97TMQ8dEs-YACLY.roa (raw, json)
Hash identifier: MM7/Gj7431BZOFl4IiwUqZppWRC9KEzc4J7/2tms1xg=
Subject key identifier: 9B:B6:92:6F:3A:32:A3:76:44:F7:B4:CC:43:C7:44:B3:E6:00:08:B6
Certificate issuer: /CN=96429851d86633cbe2983aaf94ba8415ca232aa1
Certificate serial: 01852FBD828F5FAD64AA69DF318943109B1A
Authority key identifier: 96:42:98:51:D8:66:33:CB:E2:98:3A:AF:94:BA:84:15:CA:23:2A:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkKYUdhmM8vimDqvlLqEFcojKqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/m7aSbzoyo3ZE97TMQ8dEs-YACLY.roa
Signing time: Tue 20 Dec 2022 13:33:46 +0000
ROA not before: Tue 20 Dec 2022 13:33:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9123
IP address blocks: 194.26.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:bd:82:8f:5f:ad:64:aa:69:df:31:89:43:10:9b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96429851d86633cbe2983aaf94ba8415ca232aa1
Validity
Not Before: Dec 20 13:33:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bb6926f3a32a37644f7b4cc43c744b3e60008b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:62:44:37:37:8c:b9:e6:b8:3c:a8:65:8a:c1:
07:ae:11:83:34:2b:43:4e:a3:e3:cc:d6:48:aa:4e:
15:83:b8:4f:40:4e:38:0e:b8:da:7f:b6:ce:cf:5e:
53:91:5b:c7:90:4d:f6:7f:aa:f2:46:9c:cc:46:33:
2b:1f:25:bb:34:c9:b6:d2:f8:44:f6:02:cc:f2:e4:
b3:5a:da:da:d8:30:10:6d:d3:0a:b9:c3:17:57:f6:
86:c3:7b:61:e4:cb:33:db:d5:a4:2b:48:e2:ca:d9:
2d:6b:a6:16:45:b5:d1:11:75:87:e5:c3:4a:d5:22:
9c:53:4b:7d:27:e9:9b:79:e6:c9:c2:9a:d3:58:29:
44:cf:dc:00:21:dc:c2:f3:57:3f:5a:fb:85:4a:f0:
5e:84:0e:f2:14:62:d7:b3:bf:f7:c6:b5:97:61:62:
17:22:c5:0b:d8:27:0d:0c:8c:7d:ea:1d:ed:98:b1:
6e:8e:2b:e8:d3:d5:b9:cc:a1:4a:1b:6e:8d:c7:e0:
01:f8:1d:48:00:f2:b9:48:5e:1d:d9:b3:bb:4e:4e:
5e:87:dc:89:b5:71:6e:38:8f:14:ff:cf:5a:3b:95:
cd:de:a5:04:bf:d0:9a:21:0f:ff:f4:b6:9a:20:52:
08:6a:96:64:de:b0:2d:b6:3d:a9:cd:2c:ec:dc:83:
3b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B6:92:6F:3A:32:A3:76:44:F7:B4:CC:43:C7:44:B3:E6:00:08:B6
X509v3 Authority Key Identifier:
keyid:96:42:98:51:D8:66:33:CB:E2:98:3A:AF:94:BA:84:15:CA:23:2A:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkKYUdhmM8vimDqvlLqEFcojKqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/m7aSbzoyo3ZE97TMQ8dEs-YACLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/92857b-f106-466e-9c4b-c1114a9dad19/1/lkKYUdhmM8vimDqvlLqEFcojKqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.138.0/24
Signature Algorithm: sha256WithRSAEncryption
01:32:5e:3b:5b:e8:2c:db:25:1c:da:34:cb:f8:aa:eb:b2:5c:
0e:4b:aa:85:f2:65:1b:5d:bf:34:a4:68:1e:58:75:01:2e:a5:
5b:d7:16:a1:3d:10:d1:d2:b1:ba:ce:d7:f6:4d:01:03:2b:44:
9e:27:ca:43:2a:34:e8:49:48:b4:87:fa:0f:52:b8:bf:91:d9:
da:2a:bf:6d:68:83:0e:fe:7b:b4:a3:d9:86:eb:10:ef:47:16:
87:05:8b:89:74:cb:7f:fe:ad:f5:21:20:7a:e4:80:7d:d5:c6:
2e:28:e4:00:55:64:c5:79:72:ee:32:cf:2b:d2:84:ad:fa:2d:
57:3b:c4:4d:a3:24:7a:6d:0c:80:8c:6a:f4:8d:aa:b2:f4:a4:
69:1a:06:bb:56:e0:78:92:d4:ca:c6:e4:8d:26:4b:70:d6:86:
0f:b4:25:4b:86:97:e6:22:56:16:34:8e:35:9a:ef:32:8e:fb:
d9:ed:1a:d4:37:ad:c7:8e:29:76:fd:8e:e9:4e:6e:a7:9f:7f:
d3:6c:4d:ea:5d:6e:6c:e0:29:39:c3:ad:b5:2b:79:5d:84:33:
ec:2c:90:fc:0d:60:1a:9a:5a:09:9d:19:74:d0:2a:70:5c:ee:
f1:19:33:c9:29:14:54:01:d9:81:ad:f9:28:4e:d4:17:19:0d:
aa:65:fa:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUvvYKPX61kqmnfMYlDEJsaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2NDI5ODUxZDg2NjMzY2JlMjk4M2FhZjk0YmE4NDE1Y2Ey
MzJhYTEwHhcNMjIxMjIwMTMzMzQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmI2OTI2ZjNhMzJhMzc2NDRmN2I0Y2M0M2M3NDRiM2U2MDAwOGI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmJENzeMuea4PKhlisEHrhGDNCtD
TqPjzNZIqk4Vg7hPQE44Drjaf7bOz15TkVvHkE32f6ryRpzMRjMrHyW7NMm20vhE
9gLM8uSzWtra2DAQbdMKucMXV/aGw3th5Msz29WkK0jiytkta6YWRbXREXWH5cNK
1SKcU0t9J+mbeebJwprTWClEz9wAIdzC81c/WvuFSvBehA7yFGLXs7/3xrWXYWIX
IsUL2CcNDIx96h3tmLFujivo09W5zKFKG26Nx+AB+B1IAPK5SF4d2bO7Tk5eh9yJ
tXFuOI8U/89aO5XN3qUEv9CaIQ//9LaaIFIIapZk3rAttj2pzSzs3IM79QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJu2km86MqN2RPe0zEPHRLPmAAi2MB8GA1UdIwQY
MBaAFJZCmFHYZjPL4pg6r5S6hBXKIyqhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGtLWVVkaG1NOHZpbURxdmxMcUVGY29qS3FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy85Mjg1N2ItZjEwNi00NjZlLTljNGIt
YzExMTRhOWRhZDE5LzEvbTdhU2J6b3lvM1pFOTdUTVE4ZEVzLVlBQ0xZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy85Mjg1N2ItZjEwNi00NjZlLTljNGItYzExMTRhOWRhZDE5
LzEvbGtLWVVkaG1NOHZpbURxdmxMcUVGY29qS3FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhqKMA0G
CSqGSIb3DQEBCwUAA4IBAQABMl47W+gs2yUc2jTL+KrrslwOS6qF8mUbXb80pGge
WHUBLqVb1xahPRDR0rG6ztf2TQEDK0SeJ8pDKjToSUi0h/oPUri/kdnaKr9taIMO
/nu0o9mG6xDvRxaHBYuJdMt//q31ISB65IB91cYuKOQAVWTFeXLuMs8r0oSt+i1X
O8RNoyR6bQyAjGr0jaqy9KRpGga7VuB4ktTKxuSNJktw1oYPtCVLhpfmIlYWNI41
mu8yjvvZ7RrUN63Hjil2/Y7pTm6nn3/TbE3qXW5s4Ck5w621K3ldhDPsLJD8DWAa
mloJnRl00CpwXO7xGTPJKRRUAdmBrfkoTtQXGQ2qZfrW
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:36 2023 by rpki-client on console-ams.rpki-client.org