Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YZu_C5cCOJIqmTLFW2TEUceyo0g.roa
File: YZu_C5cCOJIqmTLFW2TEUceyo0g.roa (raw, json)
Hash identifier: G+MLtB7Y1G5PWIpctwqncdiemIrsUIgdoN2lOq6drRs=
Subject key identifier: 61:9B:BF:0B:97:02:38:92:2A:99:32:C5:5B:64:C4:51:C7:B2:A3:48
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A141015
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YZu_C5cCOJIqmTLFW2TEUceyo0g.roa
Signing time: Wed 01 Jun 2022 09:32:23 +0000
ROA not before: Wed 01 Jun 2022 09:32:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51214
IP address blocks: 93.171.156.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 705957909 (0x2a141015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 09:32:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=619bbf0b970238922a9932c55b64c451c7b2a348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:22:c0:a0:cc:36:74:cc:40:1b:eb:1f:be:61:
41:78:47:9d:24:dc:28:0c:67:0d:8e:62:d4:38:7e:
10:e7:0f:2c:2e:3b:1d:81:c4:9f:ae:26:23:69:f2:
80:6f:de:3b:6e:f9:53:68:4f:35:c6:34:c0:6d:e0:
19:01:e5:80:71:39:09:4a:3b:87:23:06:dc:93:8b:
5b:89:f5:53:22:a9:c6:0f:b0:e8:94:c2:4f:43:b3:
f7:a7:4f:7e:f3:92:80:28:1a:c6:44:1b:9d:f0:77:
f9:b7:b5:21:02:43:0e:33:bb:d5:b3:a0:b3:87:d3:
e3:d1:5d:98:15:f2:e1:49:30:58:74:66:d2:2c:cf:
55:7f:c3:2a:67:21:20:51:d2:92:e4:87:49:17:e6:
17:d7:9f:3f:0f:d4:7b:ca:5b:89:55:f5:86:0d:a6:
0e:2e:7b:dc:04:8b:f6:cd:0e:bd:f8:74:a9:4a:64:
57:55:4d:4d:6c:48:a6:3f:b5:b9:4a:75:de:8b:20:
3e:81:ca:f1:88:ca:46:94:b4:1b:ab:bd:77:79:7e:
d0:07:8b:a1:7e:3d:82:43:58:c4:ff:cc:bf:a1:b1:
1c:27:7d:dc:fd:5f:f0:61:74:a1:89:70:7f:85:e0:
cb:1f:df:90:52:23:d7:32:c6:b2:b3:1c:4c:e5:ff:
00:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9B:BF:0B:97:02:38:92:2A:99:32:C5:5B:64:C4:51:C7:B2:A3:48
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/YZu_C5cCOJIqmTLFW2TEUceyo0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.156.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:27:ba:8b:c8:91:6c:ef:c8:f6:e7:98:43:cf:e9:1c:f4:4a:
42:b6:98:66:c0:66:18:b8:6e:85:a9:10:21:aa:2c:8e:44:4f:
87:e1:13:10:16:65:ff:76:c5:1b:18:b2:f4:76:59:ed:c1:bc:
6e:40:15:e6:7b:4d:77:db:9b:1c:a0:df:7d:1c:13:36:a1:68:
19:e5:e7:28:a3:b9:f9:e9:49:ab:87:77:4e:dd:94:f2:34:56:
12:68:84:f3:ce:d3:27:28:ca:f4:ed:e6:a2:83:4d:4c:8c:ae:
21:c4:70:32:ab:5e:4d:48:03:7e:1f:78:4d:e4:9e:26:6f:22:
7d:54:80:56:35:6f:bd:83:18:07:d0:ab:a5:12:44:5a:2f:20:
80:1c:d1:ca:e1:17:ef:77:27:fd:8e:6a:05:9f:7a:bf:12:ae:
9a:7f:b1:12:35:bd:93:a2:df:15:25:36:41:ee:eb:90:ee:e0:
ee:b6:24:1d:35:ca:16:16:5a:8c:d7:2d:38:bd:f7:da:4b:67:
4d:ba:06:44:c1:a3:f3:ea:41:25:c0:08:02:68:28:d2:7d:a8:
23:20:00:45:4a:a8:68:5c:46:d4:69:b8:75:ef:ca:32:34:25:
66:89:7a:00:3c:05:40:7e:61:01:77:e8:50:04:ec:27:d9:c2:
f8:cb:d6:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:58:33 2025 by rpki-client