Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/Y1EZBEHejvhZEerxl72IP2KEtCU.roa
File: Y1EZBEHejvhZEerxl72IP2KEtCU.roa (raw, json)
Hash identifier: Sw/osxe3pGdnV3jQRY3SBbXX2fZcCuMm8onUxqVWNsI=
Subject key identifier: 63:51:19:04:41:DE:8E:F8:59:11:EA:F1:97:BD:88:3F:62:84:B4:25
Certificate issuer: /CN=94b1cbff4bd970fa27fdefd4bf68b02d68d2b9dd
Certificate serial: 05CA38F3
Authority key identifier: 94:B1:CB:FF:4B:D9:70:FA:27:FD:EF:D4:BF:68:B0:2D:68:D2:B9:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lLHL_0vZcPon_e_Uv2iwLWjSud0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/Y1EZBEHejvhZEerxl72IP2KEtCU.roa
Signing time: Sat 01 Jan 2022 10:03:06 +0000
ROA not before: Sat 01 Jan 2022 10:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20892
IP address blocks: 91.194.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97138931 (0x5ca38f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94b1cbff4bd970fa27fdefd4bf68b02d68d2b9dd
Validity
Not Before: Jan 1 10:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6351190441de8ef85911eaf197bd883f6284b425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:47:57:f6:1c:2c:f0:f5:21:e8:59:88:86:60:
b9:fd:64:3d:49:11:14:a2:5d:30:d6:34:0e:28:13:
bf:29:58:56:ac:c2:6c:e2:31:b4:a4:cc:72:54:97:
fd:3f:8a:9c:82:95:37:73:d5:74:a8:48:31:fb:d2:
42:d7:62:c0:4b:61:48:ea:93:f8:45:67:12:65:cf:
53:c2:1e:4f:71:3e:a3:09:21:f1:d5:8f:96:54:3e:
0c:ff:52:0e:45:13:5d:fa:47:ce:26:57:c9:8d:61:
82:26:ba:25:4e:51:41:5f:b4:f6:87:7e:61:eb:4f:
7e:a9:a4:1e:39:1e:13:49:22:41:6c:97:ef:1d:db:
66:29:d3:16:4e:98:9c:b1:98:72:dd:db:ed:6a:58:
36:c5:49:fc:4c:63:2a:88:f2:ea:92:6d:fb:25:9d:
4a:89:fd:02:44:0d:a1:9a:12:dc:2c:b3:ca:d3:ac:
a5:4a:a4:0f:d1:a1:5b:f8:eb:2b:cb:ae:84:41:ac:
47:5d:f7:48:8a:19:9a:ca:6f:30:72:7e:e6:1b:b7:
21:9f:75:e9:d1:6b:be:db:36:27:0a:61:b0:78:e5:
f3:99:05:f3:62:0b:0f:e5:4f:90:f5:49:99:4e:75:
4b:29:d1:84:6f:c3:44:84:df:b1:ae:bf:11:a8:26:
fd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:51:19:04:41:DE:8E:F8:59:11:EA:F1:97:BD:88:3F:62:84:B4:25
X509v3 Authority Key Identifier:
keyid:94:B1:CB:FF:4B:D9:70:FA:27:FD:EF:D4:BF:68:B0:2D:68:D2:B9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lLHL_0vZcPon_e_Uv2iwLWjSud0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/Y1EZBEHejvhZEerxl72IP2KEtCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/063658-8262-4965-9661-0542427b02b9/1/lLHL_0vZcPon_e_Uv2iwLWjSud0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.242.0/23
Signature Algorithm: sha256WithRSAEncryption
ca:fa:6a:bb:2d:77:a0:96:bb:d2:1b:a3:64:6a:24:bf:b7:90:
5b:f2:08:9d:9d:c0:af:66:df:bb:81:ed:e7:6d:8a:e4:5c:86:
40:7a:19:21:ce:9d:1a:a5:8d:50:e9:6e:ca:d0:9a:e8:03:2d:
12:ef:6e:a9:d5:a5:13:b7:e4:13:69:c8:88:28:5a:7b:b6:86:
03:15:1a:17:3e:3e:0c:b3:7f:8d:0f:92:af:0f:33:25:a9:a2:
4c:0e:51:85:79:54:9c:86:b4:4c:33:1a:23:8e:6d:64:bb:5d:
8c:25:46:8f:47:5b:57:a4:ca:41:bd:8f:92:68:57:e3:08:a0:
72:2d:cb:8d:85:fb:7f:c0:40:06:56:cb:f6:2f:d6:5a:12:14:
c7:f9:d8:14:7f:3f:05:b2:2d:10:a2:f3:eb:95:27:65:1b:bc:
90:37:20:ab:25:36:07:5e:da:35:82:ef:f0:49:a8:9d:b4:d9:
2d:03:6f:68:be:7e:99:4e:5d:bc:bf:4f:2d:8b:12:e5:db:d2:
bb:55:47:79:2b:a2:92:c5:16:23:4c:ca:0c:ed:63:89:43:24:
3c:3a:28:80:6a:62:42:7f:38:9f:bb:51:9a:0c:66:ef:44:dc:
1f:30:bf:b1:b3:22:01:d4:bc:40:a1:e3:14:3c:8b:95:01:51:
27:0c:4d:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBco48zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NGIxY2JmZjRiZDk3MGZhMjdmZGVmZDRiZjY4YjAyZDY4ZDJiOWRkMB4XDTIyMDEw
MTEwMDMwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjM1MTE5MDQ0MWRl
OGVmODU5MTFlYWYxOTdiZDg4M2Y2Mjg0YjQyNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANxHV/YcLPD1IehZiIZguf1kPUkRFKJdMNY0DigTvylYVqzC
bOIxtKTMclSX/T+KnIKVN3PVdKhIMfvSQtdiwEthSOqT+EVnEmXPU8IeT3E+owkh
8dWPllQ+DP9SDkUTXfpHziZXyY1hgia6JU5RQV+09od+YetPfqmkHjkeE0kiQWyX
7x3bZinTFk6YnLGYct3b7WpYNsVJ/ExjKojy6pJt+yWdSon9AkQNoZoS3CyzytOs
pUqkD9GhW/jrK8uuhEGsR133SIoZmspvMHJ+5hu3IZ916dFrvts2JwphsHjl85kF
82ILD+VPkPVJmU51SynRhG/DRITfsa6/Eagm/c8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjURkEQd6O+FkR6vGXvYg/YoS0JTAfBgNVHSMEGDAWgBSUscv/S9lw+if9
79S/aLAtaNK53TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xMSExfMHZaY1Bvbl9lX1V2Mml3TFdqU3VkMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjcvMDYzNjU4LTgyNjItNDk2NS05NjYxLTA1NDI0MjdiMDJiOS8x
L1kxRVpCRUhlanZoWkVlcnhsNzJJUDJLRXRDVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjcv
MDYzNjU4LTgyNjItNDk2NS05NjYxLTA1NDI0MjdiMDJiOS8xL2xMSExfMHZaY1Bv
bl9lX1V2Mml3TFdqU3VkMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvC8jANBgkqhkiG9w0BAQsFAAOC
AQEAyvpquy13oJa70hujZGokv7eQW/IInZ3Ar2bfu4Ht522K5FyGQHoZIc6dGqWN
UOluytCa6AMtEu9uqdWlE7fkE2nIiChae7aGAxUaFz4+DLN/jQ+Srw8zJamiTA5R
hXlUnIa0TDMaI45tZLtdjCVGj0dbV6TKQb2PkmhX4wigci3LjYX7f8BABlbL9i/W
WhIUx/nYFH8/BbItEKLz65UnZRu8kDcgqyU2B17aNYLv8EmonbTZLQNvaL5+mU5d
vL9PLYsS5dvSu1VHeSuiksUWI0zKDO1jiUMkPDoogGpiQn84n7tRmgxm70TcHzC/
sbMiAdS8QKHjFDyLlQFRJwxN3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:24 2024 by rpki-client on console-ams.rpki-client.org