Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/74bf41-d6a7-4fb5-801c-33cc3adb1e78/1/xypQbUdry_qGhRLa5KR5wGruEFs.roa
File: xypQbUdry_qGhRLa5KR5wGruEFs.roa (raw, json)
Hash identifier: GbuMaH1GDvgyoos6smxegY/3tuK0eC6h+2N2zBZONdw=
Subject key identifier: C7:2A:50:6D:47:6B:CB:FA:86:85:12:DA:E4:A4:79:C0:6A:EE:10:5B
Certificate issuer: /CN=61e6ea83926bc478c785471d805a5c1210a8c993
Certificate serial: 07645E6E
Authority key identifier: 61:E6:EA:83:92:6B:C4:78:C7:85:47:1D:80:5A:5C:12:10:A8:C9:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yebqg5JrxHjHhUcdgFpcEhCoyZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/74bf41-d6a7-4fb5-801c-33cc3adb1e78/1/xypQbUdry_qGhRLa5KR5wGruEFs.roa
Signing time: Sat 01 Jan 2022 13:59:57 +0000
ROA not before: Sat 01 Jan 2022 13:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50204
IP address blocks: 91.196.60.0/22 maxlen: 22
195.69.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124018286 (0x7645e6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61e6ea83926bc478c785471d805a5c1210a8c993
Validity
Not Before: Jan 1 13:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c72a506d476bcbfa868512dae4a479c06aee105b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8c:e5:b4:40:3d:c9:62:66:5b:f7:77:14:c9:
d5:f1:5d:12:3f:cd:63:09:5f:a4:35:25:0f:7f:3d:
fd:34:bf:23:d6:0e:00:6a:e9:10:f6:8b:f5:70:01:
3b:57:a3:15:46:32:f2:65:ff:c4:0b:03:8d:20:ff:
73:75:89:13:1e:0a:7f:0d:29:76:9f:9d:62:11:17:
38:06:c4:4f:af:eb:66:d2:c0:d4:3c:a4:00:66:b0:
70:b7:9e:88:9b:4f:9f:10:37:ea:59:93:4f:a4:fe:
dd:0e:ec:51:5f:5a:14:b5:27:7b:5c:a8:0e:ca:7f:
31:a1:f9:a5:bc:03:8f:3f:6e:b3:40:63:d3:86:fb:
32:5a:7a:38:6d:04:12:0a:c2:79:d8:80:86:60:19:
9b:e9:ce:ec:f8:98:d7:b4:d7:b4:d3:0c:fd:4f:12:
a6:10:57:88:33:93:67:e7:0a:11:51:80:df:a8:2d:
0f:4b:13:52:43:57:f9:e4:2c:ad:6b:30:16:fe:a9:
e9:df:5b:f1:c1:0a:7f:34:03:90:1a:5f:c7:79:e2:
6e:68:12:1a:cf:6d:f1:36:59:38:c7:b7:db:da:2b:
53:01:d0:90:86:51:86:17:7e:43:2f:ce:57:2c:04:
dc:67:dd:c8:31:89:e0:13:3f:bd:f5:54:fd:69:27:
f5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2A:50:6D:47:6B:CB:FA:86:85:12:DA:E4:A4:79:C0:6A:EE:10:5B
X509v3 Authority Key Identifier:
keyid:61:E6:EA:83:92:6B:C4:78:C7:85:47:1D:80:5A:5C:12:10:A8:C9:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yebqg5JrxHjHhUcdgFpcEhCoyZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/74bf41-d6a7-4fb5-801c-33cc3adb1e78/1/xypQbUdry_qGhRLa5KR5wGruEFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/74bf41-d6a7-4fb5-801c-33cc3adb1e78/1/Yebqg5JrxHjHhUcdgFpcEhCoyZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.60.0/22
195.69.248.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:82:09:39:09:64:5e:0e:3f:3b:3a:4e:60:f3:30:26:fd:c7:
7c:0f:30:b4:4b:af:87:a3:fa:5f:37:e1:d3:9b:39:b2:06:51:
e1:f5:3e:4a:ea:e0:26:1b:8c:bf:96:e0:24:70:26:e0:e8:5f:
e0:ad:d4:5e:e4:60:03:15:d5:0d:30:50:02:61:31:84:a7:b6:
4c:aa:92:ac:81:92:39:77:0f:b2:10:57:c5:e7:6b:72:67:28:
d6:29:2b:6b:bb:ba:97:dd:1b:4c:e9:c0:56:4e:89:f1:1d:f5:
dd:1b:0b:1e:e6:b0:66:6c:55:52:08:f6:ca:57:eb:99:b8:14:
9c:31:56:36:37:7f:af:f8:aa:7c:0d:db:73:cd:74:9a:1f:ae:
de:65:a2:c6:98:82:61:0b:f1:3b:ee:0d:54:72:d7:63:88:3d:
9b:0b:96:64:e3:12:a5:29:31:ed:c3:ac:7c:8c:f4:63:76:d7:
b3:a0:2c:3c:2b:1d:7f:64:e3:f4:28:d5:96:50:e9:a9:63:18:
1b:d4:4d:5d:bc:2a:bd:66:96:ee:4d:89:0f:0c:1e:45:74:ac:
55:b6:9e:aa:b0:e7:5a:4a:1f:3a:31:8d:c7:67:0b:60:32:d2:
d7:83:c0:14:5b:a2:ed:6a:9f:cb:ae:6a:68:d0:b8:80:6d:d8:
43:32:40:d9
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB2RebjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MWU2ZWE4MzkyNmJjNDc4Yzc4NTQ3MWQ4MDVhNWMxMjEwYThjOTkzMB4XDTIyMDEw
MTEzNTk1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzcyYTUwNmQ0NzZi
Y2JmYTg2ODUxMmRhZTRhNDc5YzA2YWVlMTA1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKiM5bRAPcliZlv3dxTJ1fFdEj/NYwlfpDUlD389/TS/I9YO
AGrpEPaL9XABO1ejFUYy8mX/xAsDjSD/c3WJEx4Kfw0pdp+dYhEXOAbET6/rZtLA
1DykAGawcLeeiJtPnxA36lmTT6T+3Q7sUV9aFLUne1yoDsp/MaH5pbwDjz9us0Bj
04b7Mlp6OG0EEgrCediAhmAZm+nO7PiY17TXtNMM/U8SphBXiDOTZ+cKEVGA36gt
D0sTUkNX+eQsrWswFv6p6d9b8cEKfzQDkBpfx3nibmgSGs9t8TZZOMe329orUwHQ
kIZRhhd+Qy/OVywE3GfdyDGJ4BM/vfVU/Wkn9eUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTHKlBtR2vL+oaFEtrkpHnAau4QWzAfBgNVHSMEGDAWgBRh5uqDkmvEeMeF
Rx2AWlwSEKjJkzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1llYnFnNUpyeEhqSGhVY2RnRnBjRWhDb3laTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjAvNzRiZjQxLWQ2YTctNGZiNS04MDFjLTMzY2MzYWRiMWU3OC8x
L3h5cFFiVWRyeV9xR2hSTGE1S1I1d0dydUVGcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjAv
NzRiZjQxLWQ2YTctNGZiNS04MDFjLTMzY2MzYWRiMWU3OC8xL1llYnFnNUpyeEhq
SGhVY2RnRnBjRWhDb3laTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAlvEPAMEAsNF+DANBgkqhkiG9w0B
AQsFAAOCAQEAHYIJOQlkXg4/OzpOYPMwJv3HfA8wtEuvh6P6Xzfh05s5sgZR4fU+
SurgJhuMv5bgJHAm4Ohf4K3UXuRgAxXVDTBQAmExhKe2TKqSrIGSOXcPshBXxedr
cmco1ikra7u6l90bTOnAVk6J8R313RsLHuawZmxVUgj2ylfrmbgUnDFWNjd/r/iq
fA3bc810mh+u3mWixpiCYQvxO+4NVHLXY4g9mwuWZOMSpSkx7cOsfIz0Y3bXs6As
PCsdf2Tj9CjVllDpqWMYG9RNXbwqvWaW7k2JDwweRXSsVbaeqrDnWkofOjGNx2cL
YDLS14PAFFui7Wqfy65qaNC4gG3YQzJA2Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:38 2023 by rpki-client on console-ams.rpki-client.org