Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/yKyf3MmCu_g4rqmq7NtHka5iNY8.roa
File: yKyf3MmCu_g4rqmq7NtHka5iNY8.roa (raw, json)
Hash identifier: 451j+2vs994e/YAxLA/YnTSTGT3JYOw8UzRxoLmApIg=
Subject key identifier: C8:AC:9F:DC:C9:82:BB:F8:38:AE:A9:AA:EC:DB:47:91:AE:62:35:8F
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0184646134BFEECAE927BF60443F2E2E09F7
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/yKyf3MmCu_g4rqmq7NtHka5iNY8.roa
Signing time: Fri 11 Nov 2022 01:50:02 +0000
ROA not before: Fri 11 Nov 2022 01:50:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 212.87.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:64:61:34:bf:ee:ca:e9:27:bf:60:44:3f:2e:2e:09:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Nov 11 01:50:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8ac9fdcc982bbf838aea9aaecdb4791ae62358f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9e:9d:e2:48:ac:b5:7f:2d:68:dc:96:86:4a:
39:09:c3:f6:0d:e4:70:e2:39:8a:cf:8b:9f:99:61:
f1:14:36:bf:f3:65:86:26:4f:f7:3f:ef:9c:39:b3:
1c:9d:4d:8d:f5:38:84:96:b8:5c:48:f5:16:a7:a1:
db:52:c3:07:a0:10:fe:93:0b:ad:f5:af:e5:ef:ae:
8c:c3:55:93:e5:67:c9:fd:0d:0f:95:fb:fc:f7:a4:
22:2d:9a:d8:91:54:70:3c:e9:49:ff:19:42:a8:b9:
dd:f5:e3:e2:3a:19:aa:28:42:da:cb:e5:0c:48:c6:
83:fc:92:05:7c:fd:14:0e:6e:d2:e6:59:f1:fc:27:
b8:9d:6a:d4:b9:ca:c7:31:88:33:a8:97:a6:b3:17:
ec:db:37:9d:07:c2:d3:96:27:93:14:15:04:23:23:
a1:2d:14:d2:2a:3d:d4:dc:b9:c5:bb:c9:67:6e:e3:
90:c3:7c:6f:2b:54:97:65:7a:ae:ff:14:1c:bf:81:
3e:aa:5b:df:25:8b:42:df:b1:a4:2c:26:61:65:f8:
e6:07:b1:ae:9f:0d:82:99:8a:9b:ef:59:c1:5c:ba:
0e:2c:f3:e5:67:63:82:6c:8e:83:df:03:55:7a:02:
1d:2c:d6:8d:9d:99:e6:ba:9c:53:81:ae:66:97:54:
32:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AC:9F:DC:C9:82:BB:F8:38:AE:A9:AA:EC:DB:47:91:AE:62:35:8F
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/yKyf3MmCu_g4rqmq7NtHka5iNY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.192.0/22
Signature Algorithm: sha256WithRSAEncryption
04:26:62:4b:42:b3:30:c6:85:99:a2:5c:a5:7e:f2:7e:d6:89:
36:c3:ec:01:51:e3:98:87:4f:54:9b:3b:4f:72:16:7a:b5:eb:
fb:d7:00:21:5e:69:fe:d0:79:36:81:73:c0:c8:f1:8c:b3:fd:
a3:1b:ad:59:2a:fd:eb:7c:39:61:c7:78:7c:c3:c3:75:a1:75:
3d:ce:ed:ae:88:31:05:a9:ab:81:8b:32:5a:93:06:64:e5:da:
a6:bd:d9:98:d3:be:ba:0a:df:25:59:71:7a:e7:12:86:7e:93:
05:94:46:85:c3:a8:a7:4a:88:f6:69:5f:50:b9:3b:70:f2:ae:
cf:31:97:51:c4:b7:c6:dc:4e:d4:0d:a3:51:fa:0e:42:75:9e:
47:65:0c:8f:12:d4:45:d8:77:ec:d3:17:e4:93:9b:d2:11:70:
46:66:86:4d:d8:12:23:a2:e9:3d:2c:66:a0:20:1c:14:7e:08:
f8:81:07:5c:37:d2:e9:09:f4:79:99:9f:9c:2b:96:2b:8c:c7:
d9:30:76:7a:ec:16:b5:92:03:26:fd:de:2a:f8:68:f1:28:af:
fc:01:5f:db:49:f7:dd:79:e3:eb:c9:42:36:e2:d9:54:4e:48:
dd:5a:ea:97:40:43:72:a1:63:aa:36:51:15:26:cd:0e:07:ef:
e0:cd:53:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRkYTS/7srpJ79gRD8uLgn3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjIxMTExMDE1MDAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOGFjOWZkY2M5ODJiYmY4MzhhZWE5YWFlY2RiNDc5MWFlNjIzNThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj56d4kistX8taNyWhko5CcP2DeRw
4jmKz4ufmWHxFDa/82WGJk/3P++cObMcnU2N9TiElrhcSPUWp6HbUsMHoBD+kwut
9a/l766Mw1WT5WfJ/Q0Plfv896QiLZrYkVRwPOlJ/xlCqLnd9ePiOhmqKELay+UM
SMaD/JIFfP0UDm7S5lnx/Ce4nWrUucrHMYgzqJemsxfs2zedB8LTlieTFBUEIyOh
LRTSKj3U3LnFu8lnbuOQw3xvK1SXZXqu/xQcv4E+qlvfJYtC37GkLCZhZfjmB7Gu
nw2CmYqb71nBXLoOLPPlZ2OCbI6D3wNVegIdLNaNnZnmupxTga5ml1Qy1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMisn9zJgrv4OK6pquzbR5GuYjWPMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEveUt5ZjNNbUN1X2c0cnFtcTdOdEhrYTVpTlk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1FfAMA0G
CSqGSIb3DQEBCwUAA4IBAQAEJmJLQrMwxoWZolylfvJ+1ok2w+wBUeOYh09UmztP
chZ6tev71wAhXmn+0Hk2gXPAyPGMs/2jG61ZKv3rfDlhx3h8w8N1oXU9zu2uiDEF
qauBizJakwZk5dqmvdmY0766Ct8lWXF65xKGfpMFlEaFw6inSoj2aV9QuTtw8q7P
MZdRxLfG3E7UDaNR+g5CdZ5HZQyPEtRF2Hfs0xfkk5vSEXBGZoZN2BIjouk9LGag
IBwUfgj4gQdcN9LpCfR5mZ+cK5YrjMfZMHZ67Ba1kgMm/d4q+GjxKK/8AV/bSffd
eePryUI24tlUTkjdWuqXQENyoWOqNlEVJs0OB+/gzVM5
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:25 2023 by rpki-client on console-ams.rpki-client.org