Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/Yp3eg6TfyW8UYAKBi8eWsaTPXpA.roa
File: Yp3eg6TfyW8UYAKBi8eWsaTPXpA.roa (raw, json)
Hash identifier: rwMNB11WkvLAeaxKi4Oi/13mQLEe4e02QMUb50x+YBU=
Subject key identifier: 62:9D:DE:83:A4:DF:C9:6F:14:60:02:81:8B:C7:96:B1:A4:CF:5E:90
Certificate issuer: /CN=ca329ced8efb41f3b4a2078d94bbb0a3aab4fb02
Certificate serial: 018DB159
Authority key identifier: CA:32:9C:ED:8E:FB:41:F3:B4:A2:07:8D:94:BB:B0:A3:AA:B4:FB:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjKc7Y77QfO0ogeNlLuwo6q0-wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/Yp3eg6TfyW8UYAKBi8eWsaTPXpA.roa
Signing time: Sat 01 Jan 2022 05:57:53 +0000
ROA not before: Sat 01 Jan 2022 05:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211055
IP address blocks: 185.233.130.0/24 maxlen: 24
2a11:3400::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26063193 (0x18db159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca329ced8efb41f3b4a2078d94bbb0a3aab4fb02
Validity
Not Before: Jan 1 05:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=629dde83a4dfc96f146002818bc796b1a4cf5e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5e:b5:58:9e:1b:cc:24:c9:d2:72:f5:05:4f:
e2:e0:23:df:27:14:61:61:81:f8:cb:39:d2:2a:a4:
ed:4a:fa:53:8b:c9:a2:db:d9:14:d0:1d:fd:bb:ae:
82:99:62:13:95:55:79:70:83:11:eb:86:60:88:72:
d7:93:e3:a2:ae:ce:2a:00:63:b9:b4:e2:21:8a:7a:
69:10:57:47:31:d4:10:d5:39:1a:a9:c6:40:6a:b5:
cb:99:6b:ac:3f:39:c5:52:98:d8:44:f8:71:8e:81:
12:d8:84:dc:2b:e1:29:ad:ab:7c:87:e9:34:2a:95:
61:8d:b6:78:8f:26:c5:b1:15:56:2f:f6:bc:40:7c:
2a:a7:7a:a4:0f:92:ea:07:2a:20:4d:d4:29:44:c9:
ee:ba:93:83:1f:60:f1:2e:b5:d3:e4:78:c2:f5:40:
f3:16:96:a0:59:b0:89:64:c1:a2:3c:72:dc:4b:eb:
be:d1:56:b0:7d:fa:7e:b7:31:ec:d9:a2:40:a7:b4:
28:af:14:9b:74:b0:5d:72:ae:73:14:e5:2c:31:5b:
30:b2:be:84:c1:fe:63:98:74:8a:45:1b:2b:51:35:
33:41:32:66:8b:d7:31:e9:71:26:3b:30:14:8d:bb:
9a:c0:29:af:c9:fe:8d:72:cb:66:99:1e:e6:23:f5:
6b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:9D:DE:83:A4:DF:C9:6F:14:60:02:81:8B:C7:96:B1:A4:CF:5E:90
X509v3 Authority Key Identifier:
keyid:CA:32:9C:ED:8E:FB:41:F3:B4:A2:07:8D:94:BB:B0:A3:AA:B4:FB:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjKc7Y77QfO0ogeNlLuwo6q0-wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/Yp3eg6TfyW8UYAKBi8eWsaTPXpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/yjKc7Y77QfO0ogeNlLuwo6q0-wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.130.0/24
IPv6:
2a11:3400::/29
Signature Algorithm: sha256WithRSAEncryption
a7:dd:3c:30:c0:12:78:04:de:bc:dc:b5:a0:5e:88:c0:c1:f0:
58:84:94:9c:4f:08:79:ac:40:66:3c:3f:ef:a4:69:4f:e9:14:
9e:aa:9b:66:1f:72:47:08:6f:55:3c:c3:62:ba:81:65:7a:e1:
e2:70:d6:63:ba:87:f7:31:fd:3d:f9:91:c9:4e:22:1f:b9:94:
ce:90:ee:aa:a3:56:15:03:c8:1d:7f:11:92:57:1c:3c:a9:82:
6a:4f:f0:bb:44:36:78:d8:3d:53:56:ea:e8:9a:93:5c:f0:9d:
38:f5:b4:35:0d:5e:af:07:ce:f1:75:20:5d:d2:a8:23:9e:55:
ac:b9:01:1c:91:f1:ad:59:99:da:86:9c:12:4f:a0:08:ed:0a:
e7:e8:90:44:59:ff:f1:ee:53:4a:3d:cf:86:07:f7:7c:68:86:
d8:13:bc:02:ec:22:14:fa:33:03:78:94:e2:6b:c8:2e:29:a2:
55:55:a6:37:59:98:57:9c:f9:5f:0a:52:bc:24:09:9f:d5:7b:
76:f4:d2:a3:1e:55:36:6e:64:5c:50:ed:c2:4d:5e:88:51:98:
7a:8c:2b:86:00:6d:45:de:f9:36:00:19:22:3b:3c:64:05:45:
06:fa:d0:58:e7:d3:be:5a:9c:53:a3:eb:62:cd:53:0d:a0:47:
7c:31:ee:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-fra.rpki-client.org