Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/yvtp-6k9Mwz9jRaOGema8anwS8Y.roa
File: yvtp-6k9Mwz9jRaOGema8anwS8Y.roa (raw, json)
Hash identifier: aaI2x3M3J//zO/Oio5qOQFL9NMfy9rI+Fb3j5Ni3s1k=
Subject key identifier: CA:FB:69:FB:A9:3D:33:0C:FD:8D:16:8E:19:E9:9A:F1:A9:F0:4B:C6
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 20F76523
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/yvtp-6k9Mwz9jRaOGema8anwS8Y.roa
Signing time: Thu 26 May 2022 08:10:13 +0000
ROA not before: Thu 26 May 2022 08:10:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60461
IP address blocks: 94.154.50.0/24 maxlen: 24
94.154.55.0/24 maxlen: 24
43.251.161.0/24 maxlen: 24
43.251.160.0/24 maxlen: 24
176.100.38.0/24 maxlen: 24
176.100.37.0/24 maxlen: 24
176.100.36.0/24 maxlen: 24
176.100.39.0/24 maxlen: 24
37.114.33.0/24 maxlen: 24
37.114.44.0/24 maxlen: 24
37.114.43.0/24 maxlen: 24
37.114.39.0/24 maxlen: 24
37.114.51.0/24 maxlen: 24
37.114.50.0/24 maxlen: 24
37.114.49.0/24 maxlen: 24
37.114.48.0/24 maxlen: 24
37.114.46.0/24 maxlen: 24
37.114.45.0/24 maxlen: 24
37.114.58.0/24 maxlen: 24
37.114.55.0/24 maxlen: 24
37.114.54.0/24 maxlen: 24
37.114.52.0/24 maxlen: 24
37.114.63.0/24 maxlen: 24
2a00:ccc3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 553084195 (0x20f76523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: May 26 08:10:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cafb69fba93d330cfd8d168e19e99af1a9f04bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a7:5c:a6:b3:c8:5a:db:d8:ad:00:d7:bc:35:
45:da:77:5a:90:d6:ae:b1:5a:00:3d:04:3f:b8:0a:
07:58:65:73:88:1f:4a:d9:f9:6e:e5:75:7c:bc:88:
7d:89:4d:d5:df:9c:d9:15:ac:01:d7:b4:7e:f7:3c:
e3:46:d9:07:be:60:9d:a6:1a:80:16:87:dc:16:f0:
74:94:16:b0:f4:a3:99:46:77:52:ba:05:d9:23:e6:
6b:b7:cf:91:a4:cb:74:86:ea:d2:84:d1:c9:eb:42:
97:26:0c:95:6c:48:95:cd:df:48:dc:20:0e:5b:72:
86:76:6b:05:bc:ea:63:e0:b5:e1:c6:47:8e:f0:94:
71:20:ef:ea:71:13:8b:4b:db:8c:46:66:b8:1f:21:
46:b6:ce:48:21:09:07:83:29:f7:7b:94:24:21:10:
c6:4e:02:a7:51:53:9f:ff:6b:75:0f:75:5b:2d:91:
db:2f:5c:e8:bf:fa:74:c7:45:09:e1:9a:3a:ef:81:
8f:eb:bf:14:dd:75:10:f5:e5:52:fe:70:df:76:6c:
1f:fa:47:bd:76:b2:fa:bf:9c:2c:ee:c5:20:0c:82:
54:dd:2e:b8:e7:72:11:2d:47:93:e1:18:9c:5b:a9:
51:12:8c:35:9b:72:9c:fb:16:a5:e7:69:08:d2:85:
2f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:FB:69:FB:A9:3D:33:0C:FD:8D:16:8E:19:E9:9A:F1:A9:F0:4B:C6
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/yvtp-6k9Mwz9jRaOGema8anwS8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.33.0/24
37.114.39.0/24
37.114.43.0-37.114.46.255
37.114.48.0-37.114.52.255
37.114.54.0/23
37.114.58.0/24
37.114.63.0/24
43.251.160.0/23
94.154.50.0/24
94.154.55.0/24
176.100.36.0/22
IPv6:
2a00:ccc3::/32
Signature Algorithm: sha256WithRSAEncryption
20:22:3d:17:f1:08:09:f0:33:e6:84:ea:8f:22:92:da:f0:de:
df:69:f0:18:a8:e6:0f:c3:e7:b8:30:c8:91:9a:87:3c:8e:3b:
6c:c0:21:e5:08:da:af:29:0b:5b:6a:84:50:b2:f2:22:8c:53:
dc:7b:a7:bc:7f:4a:a4:d1:6f:cd:07:ad:64:a6:0f:5b:68:50:
da:ac:d2:ea:64:66:9c:af:68:a7:71:ec:9e:78:73:a9:f1:56:
57:45:de:d1:3c:64:73:33:ea:02:eb:67:5a:94:20:03:a4:72:
22:19:7f:e2:e5:2d:b2:f4:ce:cc:cf:03:01:1e:a5:6a:41:65:
f8:a0:6a:79:6a:0a:ee:c6:33:db:c4:2e:f6:4d:3c:07:a4:89:
34:7c:47:b2:d9:42:a1:a1:8c:90:fd:00:1f:dc:7d:99:15:9b:
23:24:27:64:97:6c:06:5b:54:b7:41:7a:ab:fb:9c:0a:90:03:
5f:8a:34:4b:bf:4d:8c:88:b5:f8:b9:3e:66:d0:77:b0:6e:a1:
a8:5c:3c:c0:85:d1:f8:7a:96:b8:89:bb:bb:c7:31:af:9f:c9:
a0:76:ff:b6:ce:3f:41:a0:71:0d:27:60:0f:33:60:f9:86:68:
8c:37:fe:bc:08:d6:15:97:eb:ee:31:53:99:a2:23:86:ef:d0:
a4:66:ab:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org