Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/YyZ8VjUB6IG5_zwFG1sAcdQEFKk.roa
File: YyZ8VjUB6IG5_zwFG1sAcdQEFKk.roa (raw, json)
Hash identifier: SIYxY+Yu60WiSTeCbO8FlA0xN+5rJv5gvn6Bhjk5p5w=
Subject key identifier: 63:26:7C:56:35:01:E8:81:B9:FF:3C:05:1B:5B:00:71:D4:04:14:A9
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 048F52A1
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/YyZ8VjUB6IG5_zwFG1sAcdQEFKk.roa
Signing time: Wed 22 Jun 2022 03:42:44 +0000
ROA not before: Wed 22 Jun 2022 03:42:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 91.220.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76501665 (0x48f52a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Jun 22 03:42:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63267c563501e881b9ff3c051b5b0071d40414a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:f8:4e:9b:bc:5b:2f:70:f0:bb:44:a2:1c:
f9:33:2e:85:5e:57:f2:bb:f0:06:3b:63:4a:0b:75:
5c:c7:16:56:93:40:4f:e9:a7:6a:a9:f4:a6:09:c5:
8c:c1:b3:90:98:a2:fa:37:b2:a0:4c:b4:89:b3:d3:
10:25:91:ea:72:43:9b:d8:bd:af:2c:49:c0:99:5c:
f2:bf:00:c8:c0:3d:30:72:a7:86:42:36:57:7b:29:
04:d8:a0:6b:f2:a0:e0:6a:95:53:3c:66:68:d7:81:
8b:5a:8b:70:2e:7e:0b:a9:e2:2b:2b:5e:2b:2e:b1:
e0:b6:a5:c6:d8:7d:1d:82:1b:ad:b8:51:5a:76:bc:
fa:c7:70:be:19:f4:51:4b:9c:b8:c6:66:f8:da:58:
ea:6b:94:69:45:80:76:4d:64:85:13:fa:b3:a2:b5:
06:a8:8e:66:6b:82:92:b1:8b:7c:98:eb:c8:e1:c4:
28:96:91:0a:68:bc:52:f1:3e:79:0d:a8:ae:0a:e9:
77:98:d7:b1:44:29:a0:9b:c4:b5:b1:7f:16:c7:5e:
fc:c9:12:39:77:b7:a0:16:cd:a7:ff:10:e7:03:82:
62:ee:35:50:b4:26:67:07:06:be:70:7e:cb:22:12:
a1:e1:f9:f3:89:fd:21:e0:9a:d7:d8:b0:4d:13:e3:
12:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:26:7C:56:35:01:E8:81:B9:FF:3C:05:1B:5B:00:71:D4:04:14:A9
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/YyZ8VjUB6IG5_zwFG1sAcdQEFKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.249.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:c7:08:92:d7:dc:96:e1:46:5e:0e:ec:0e:23:2e:bd:f9:d3:
9b:76:4a:87:3f:6a:d9:7e:7f:2e:e7:a2:e7:ed:b3:58:19:a1:
64:1b:f2:cc:53:98:88:aa:b0:bb:56:af:6a:be:64:cd:cd:61:
88:83:9e:ef:00:f3:5f:1d:f1:19:56:e6:1f:ca:50:ab:6c:4f:
b8:9e:16:73:14:d0:bb:0f:76:e4:00:a5:9c:ff:ac:4a:ce:74:
71:10:42:67:9b:cc:ca:b9:a7:6d:2d:8d:5b:d1:da:ce:e1:c4:
65:d6:3c:6e:aa:16:a8:8e:a4:1b:24:ee:69:77:c6:cc:3f:8d:
38:ab:fc:0f:43:30:6f:c5:12:49:59:a3:e5:91:4c:0a:e0:44:
1b:c2:55:a3:7b:99:60:9a:b4:33:1e:3d:e5:70:a9:35:5c:ab:
25:d4:13:c2:ce:f5:4b:1e:c6:e9:1a:ba:14:00:16:94:0f:fc:
37:2a:95:2d:d2:7d:9b:6b:37:91:64:10:b8:7a:de:17:10:20:
c4:86:1b:e4:40:1e:ce:95:9b:93:4c:e3:c1:8c:4d:6f:a6:16:
79:c2:2c:92:93:8e:d1:c7:23:e2:e4:c5:29:00:54:fa:83:7c:
b3:ad:c1:c9:b2:c4:8d:22:44:7a:1b:d1:c1:bb:a7:5f:d1:43:
98:f6:3d:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBI9SoTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
Y2RjYzhiY2RiNmM3NDRhY2RmNDNkZDcyZDY4ZDIwNDUxYTE3OWY2MB4XDTIyMDYy
MjAzNDI0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjMyNjdjNTYzNTAx
ZTg4MWI5ZmYzYzA1MWI1YjAwNzFkNDA0MTRhOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJZy+E6bvFsvcPC7RKIc+TMuhV5X8rvwBjtjSgt1XMcWVpNA
T+mnaqn0pgnFjMGzkJii+jeyoEy0ibPTECWR6nJDm9i9ryxJwJlc8r8AyMA9MHKn
hkI2V3spBNiga/Kg4GqVUzxmaNeBi1qLcC5+C6niKyteKy6x4Lalxth9HYIbrbhR
Wna8+sdwvhn0UUucuMZm+NpY6muUaUWAdk1khRP6s6K1BqiOZmuCkrGLfJjryOHE
KJaRCmi8UvE+eQ2orgrpd5jXsUQpoJvEtbF/Fsde/MkSOXe3oBbNp/8Q5wOCYu41
ULQmZwcGvnB+yyISoeH584n9IeCa19iwTRPjEiECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjJnxWNQHogbn/PAUbWwBx1AQUqTAfBgNVHSMEGDAWgBQ83Mi822x0Ss30
PdctaNIEUaF59jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BOekl2TnRzZEVyTjlEM1hMV2pTQkZHaGVmWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzEvMzU2ODI2LWZjMTAtNGFhOS05NmE0LTYzN2IzNzFkYThlNi8x
L1l5WjhWalVCNklHNV96d0ZHMXNBY2RRRUZLay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzEv
MzU2ODI2LWZjMTAtNGFhOS05NmE0LTYzN2IzNzFkYThlNi8xL1BOekl2TnRzZEVy
TjlEM1hMV2pTQkZHaGVmWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvc+TANBgkqhkiG9w0BAQsFAAOC
AQEAPccIktfcluFGXg7sDiMuvfnTm3ZKhz9q2X5/Luei5+2zWBmhZBvyzFOYiKqw
u1avar5kzc1hiIOe7wDzXx3xGVbmH8pQq2xPuJ4WcxTQuw925AClnP+sSs50cRBC
Z5vMyrmnbS2NW9HazuHEZdY8bqoWqI6kGyTuaXfGzD+NOKv8D0Mwb8USSVmj5ZFM
CuBEG8JVo3uZYJq0Mx495XCpNVyrJdQTws71Sx7G6Rq6FAAWlA/8NyqVLdJ9m2s3
kWQQuHreFxAgxIYb5EAezpWbk0zjwYxNb6YWecIskpOO0ccj4uTFKQBU+oN8s63B
ybLEjSJEehvRwbunX9FDmPY93A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:49 2023 by rpki-client on console-fra.rpki-client.org