Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/Y0x8CeEVmsCJJ_BEl67HonyEOyY.roa
File: Y0x8CeEVmsCJJ_BEl67HonyEOyY.roa (raw, json)
Hash identifier: g51f3IgEmC4uLm5DQ8DmefgiaBGIKOYMx8REHY5gsAg=
Subject key identifier: 63:4C:7C:09:E1:15:9A:C0:89:27:F0:44:97:AE:C7:A2:7C:84:3B:26
Certificate issuer: /CN=509fe7e8b9de675913121e7ebb4226b62d03b1cb
Certificate serial: E2BEED
Authority key identifier: 50:9F:E7:E8:B9:DE:67:59:13:12:1E:7E:BB:42:26:B6:2D:03:B1:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJ_n6LneZ1kTEh5-u0Imti0Dscs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/Y0x8CeEVmsCJJ_BEl67HonyEOyY.roa
Signing time: Mon 21 Feb 2022 08:44:23 +0000
ROA not before: Mon 21 Feb 2022 08:44:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25413
IP address blocks: 194.156.12.0/22 maxlen: 24
2a0d:c40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14860013 (0xe2beed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509fe7e8b9de675913121e7ebb4226b62d03b1cb
Validity
Not Before: Feb 21 08:44:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=634c7c09e1159ac08927f04497aec7a27c843b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5b:9d:92:59:af:02:1d:18:75:c0:a7:23:e4:
bf:26:6e:3c:6d:52:a8:94:0a:94:93:f6:c7:46:67:
12:3a:b8:98:e5:4d:97:02:e2:7c:0b:5d:54:05:fa:
d4:28:da:b6:99:46:e7:b6:9f:8e:08:ed:63:31:a0:
18:b2:2a:00:5a:db:c5:2a:58:81:58:02:0d:39:be:
72:fa:bf:b5:29:b1:92:90:8b:31:01:a4:31:ba:41:
10:a5:0b:49:d2:5f:28:c1:b3:90:31:ce:09:41:16:
eb:0a:1b:35:39:01:11:40:3a:b7:70:1b:24:97:2c:
a9:5e:e4:a3:99:39:4a:63:52:78:b3:92:7e:5d:63:
58:25:00:7b:77:53:ab:c9:13:1c:88:8b:d3:5a:92:
e0:76:89:9d:7e:ca:c7:af:89:7d:fa:0c:27:fd:66:
cc:ff:ad:8a:0a:f4:8c:38:64:d8:8b:e5:d5:16:99:
f0:80:8b:1a:5a:68:5a:8b:9d:ac:95:9a:c9:25:1e:
07:d7:6f:6f:89:3e:90:04:98:27:7d:36:ab:3b:9c:
d9:ee:14:db:8a:1d:ff:57:fd:87:a4:a0:9a:9f:f9:
0f:72:e6:1f:73:4e:4c:84:2b:85:1d:fd:44:be:93:
c5:22:b2:fd:5a:5d:0c:46:45:d4:d5:64:73:91:27:
05:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4C:7C:09:E1:15:9A:C0:89:27:F0:44:97:AE:C7:A2:7C:84:3B:26
X509v3 Authority Key Identifier:
keyid:50:9F:E7:E8:B9:DE:67:59:13:12:1E:7E:BB:42:26:B6:2D:03:B1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJ_n6LneZ1kTEh5-u0Imti0Dscs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/Y0x8CeEVmsCJJ_BEl67HonyEOyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/UJ_n6LneZ1kTEh5-u0Imti0Dscs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.12.0/22
IPv6:
2a0d:c40::/29
Signature Algorithm: sha256WithRSAEncryption
ab:99:11:ff:52:94:f8:d9:a2:e5:f3:09:59:6f:f1:74:55:c8:
21:bc:e9:1b:cb:ac:08:36:a4:6c:8f:db:de:5e:48:cb:6f:53:
53:7c:55:07:77:f6:2f:29:59:8a:3c:30:23:4a:54:00:a8:5e:
18:7e:f1:49:6e:96:fe:dd:f5:c3:a5:c6:0c:38:13:6c:8a:4b:
76:c7:b5:b6:df:6f:78:ba:8e:2c:10:ce:4d:49:47:66:0b:5a:
95:d6:3e:fc:9f:ca:f6:b4:a7:7c:f9:9c:8f:a8:3c:c3:ee:d0:
af:e0:0f:5c:f8:c4:43:13:d7:13:8c:66:55:74:ee:68:27:1e:
03:cf:82:c7:05:45:17:83:d9:26:29:6b:3d:74:b7:fb:77:07:
70:74:eb:56:3b:7a:5b:e0:df:ef:f5:3f:1e:96:42:e9:45:79:
c7:c7:92:d3:ca:52:e6:0c:d7:62:9d:5b:53:ba:ec:ba:82:48:
33:f5:eb:8e:a7:87:91:b7:23:26:56:49:6e:4e:4c:ed:e3:2f:
eb:93:e5:d6:95:ed:44:88:72:83:a5:a1:0f:b4:95:13:5b:af:
4c:50:d1:13:35:3e:05:10:76:ca:69:69:6a:19:30:d9:d9:13:
7b:18:13:d2:ac:12:5b:8b:c9:85:ba:e5:46:8b:2d:3d:69:13:
24:4c:14:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:41 2025 by rpki-client