Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/Yn8XfT-iDsqrK4kZXvoQrraGG2A.roa
File: Yn8XfT-iDsqrK4kZXvoQrraGG2A.roa (raw, json)
Hash identifier: FCbv8DQfCZVscXn/9mw9pv1yOrnm80on8qGY5aj4ljM=
Subject key identifier: 62:7F:17:7D:3F:A2:0E:CA:AB:2B:89:19:5E:FA:10:AE:B6:86:1B:60
Certificate issuer: /CN=26a5aa918cbfeb3e12997f33890feb258907b343
Certificate serial: 036F4ED5
Authority key identifier: 26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/Yn8XfT-iDsqrK4kZXvoQrraGG2A.roa
Signing time: Sat 01 Jan 2022 05:06:09 +0000
ROA not before: Sat 01 Jan 2022 05:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58321
IP address blocks: 94.152.254.0/24 maxlen: 24
94.152.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57626325 (0x36f4ed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26a5aa918cbfeb3e12997f33890feb258907b343
Validity
Not Before: Jan 1 05:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=627f177d3fa20ecaab2b89195efa10aeb6861b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1c:ef:e3:e4:b8:49:e2:1a:04:e4:06:f5:c1:
5c:d5:83:56:b7:4a:9e:d2:c0:69:17:cd:86:61:89:
45:f9:5e:d6:d5:a8:98:19:a6:b7:80:3a:42:2d:0c:
f1:74:b3:79:7d:76:47:de:dd:b5:f7:41:5d:67:12:
27:25:14:47:25:c3:da:17:e7:16:f3:28:41:80:8a:
8f:19:f3:c9:3c:8d:41:fc:65:03:ad:ba:d4:16:3c:
e2:a9:e4:b4:5e:b7:e3:ca:77:c2:02:39:3e:e5:27:
01:75:5e:be:00:85:e7:54:a4:ae:84:27:36:b5:dc:
e0:16:b6:aa:bd:29:7b:4f:bc:db:48:83:2a:ec:8d:
96:37:c8:59:3f:6d:7e:33:f3:4e:75:60:5f:1a:2d:
f4:c0:a6:d8:6d:31:96:99:ca:29:e1:74:05:81:0f:
b0:c6:e2:db:ec:c5:8a:b0:0d:22:13:c5:7e:ca:5c:
43:d5:83:26:06:cf:35:ba:b0:77:26:77:52:50:a0:
71:27:db:28:d2:0d:52:c8:b5:8a:91:9a:e9:75:db:
57:4d:21:74:09:a1:17:c7:af:36:2c:e5:b7:0a:c9:
57:6a:27:62:44:2c:cd:d6:d6:0e:d6:2a:40:67:78:
b1:be:84:51:63:8d:b8:12:c6:b0:52:fb:4e:1b:5e:
67:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:7F:17:7D:3F:A2:0E:CA:AB:2B:89:19:5E:FA:10:AE:B6:86:1B:60
X509v3 Authority Key Identifier:
keyid:26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/Yn8XfT-iDsqrK4kZXvoQrraGG2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.152.254.0/23
Signature Algorithm: sha256WithRSAEncryption
61:3b:fe:98:27:c0:0f:8c:5d:5d:f1:2d:72:03:83:b4:01:c4:
24:e9:5d:e5:91:9c:ec:21:cc:7f:05:36:75:f0:f7:bd:58:e5:
70:2c:f5:11:80:70:83:a4:f0:85:dc:35:a1:84:24:88:ee:d7:
a2:2c:51:f6:fd:64:d1:4b:c0:e7:a4:6a:be:c0:bb:d9:84:53:
bd:01:80:01:5b:b6:54:56:db:1e:56:f8:2a:6f:f7:1e:bc:63:
97:85:af:f3:18:3b:e9:35:b2:b0:34:81:5f:0a:21:92:ae:fd:
3e:96:48:cf:00:15:38:c5:6e:00:83:bc:e7:e7:74:47:41:9d:
cf:30:d8:6e:62:d1:fb:ee:86:ea:ad:b5:13:f0:6f:b6:84:b6:
19:c5:3f:cf:c7:8b:0e:ce:9a:9f:1b:74:61:12:7a:ff:5d:39:
72:8e:6d:46:b2:1e:74:ff:46:9f:a1:86:f5:8f:51:72:60:c2:
05:1c:0c:cd:2b:0b:ea:d8:b6:c6:a3:8b:ee:86:19:03:63:3e:
1d:27:8b:47:85:1a:a9:de:54:6b:7b:ef:cc:75:4f:31:29:ab:
d2:cf:82:be:f3:e0:ce:13:3e:32:16:36:d9:70:7d:e5:c3:22:
f2:10:fe:08:51:20:77:0d:68:3e:85:5b:2e:38:ba:d7:e0:3e:
d5:e0:87:d0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA29O1TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NmE1YWE5MThjYmZlYjNlMTI5OTdmMzM4OTBmZWIyNTg5MDdiMzQzMB4XDTIyMDEw
MTA1MDYwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjI3ZjE3N2QzZmEy
MGVjYWFiMmI4OTE5NWVmYTEwYWViNjg2MWI2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJkc7+PkuEniGgTkBvXBXNWDVrdKntLAaRfNhmGJRfle1tWo
mBmmt4A6Qi0M8XSzeX12R97dtfdBXWcSJyUURyXD2hfnFvMoQYCKjxnzyTyNQfxl
A6261BY84qnktF6348p3wgI5PuUnAXVevgCF51SkroQnNrXc4Ba2qr0pe0+820iD
KuyNljfIWT9tfjPzTnVgXxot9MCm2G0xlpnKKeF0BYEPsMbi2+zFirANIhPFfspc
Q9WDJgbPNbqwdyZ3UlCgcSfbKNINUsi1ipGa6XXbV00hdAmhF8evNizltwrJV2on
YkQszdbWDtYqQGd4sb6EUWONuBLGsFL7ThteZ0cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRifxd9P6IOyqsriRle+hCutoYbYDAfBgNVHSMEGDAWgBQmpaqRjL/rPhKZ
fzOJD+sliQezQzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pxV3FrWXlfNno0U21YOHppUV9ySllrSHMwTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvMTQzM2VhLTEwODAtNDZlNS1iNjEyLTI5N2UyODJkNjZhOC8x
L1luOFhmVC1pRHNxcks0a1pYdm9RcnJhR0cyQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
MTQzM2VhLTEwODAtNDZlNS1iNjEyLTI5N2UyODJkNjZhOC8xL0pxV3FrWXlfNno0
U21YOHppUV9ySllrSHMwTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAV6Y/jANBgkqhkiG9w0BAQsFAAOC
AQEAYTv+mCfAD4xdXfEtcgODtAHEJOld5ZGc7CHMfwU2dfD3vVjlcCz1EYBwg6Tw
hdw1oYQkiO7XoixR9v1k0UvA56RqvsC72YRTvQGAAVu2VFbbHlb4Km/3Hrxjl4Wv
8xg76TWysDSBXwohkq79PpZIzwAVOMVuAIO85+d0R0GdzzDYbmLR++6G6q21E/Bv
toS2GcU/z8eLDs6anxt0YRJ6/105co5tRrIedP9Gn6GG9Y9RcmDCBRwMzSsL6ti2
xqOL7oYZA2M+HSeLR4Uaqd5Ua3vvzHVPMSmr0s+CvvPgzhM+MhY22XB95cMi8hD+
CFEgdw1oPoVbLji61+A+1eCH0A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:03 2023 by rpki-client on console-fra.rpki-client.org