Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9e2b1a-163b-4854-961a-ea75ddf47b4a/1/yhjK4_FUvTfn3KyZY_TIvg99PhU.roa
File: yhjK4_FUvTfn3KyZY_TIvg99PhU.roa (raw, json)
Hash identifier: yMABlAauIKgKzY76VUyXyuY3SlOB+l6oezhMM2eSeHI=
Subject key identifier: CA:18:CA:E3:F1:54:BD:37:E7:DC:AC:99:63:F4:C8:BE:0F:7D:3E:15
Certificate issuer: /CN=f4c0aa7b3e3cbff88262add92b339e35051ce1a0
Certificate serial: 34471A63
Authority key identifier: F4:C0:AA:7B:3E:3C:BF:F8:82:62:AD:D9:2B:33:9E:35:05:1C:E1:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MCqez48v_iCYq3ZKzOeNQUc4aA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9e2b1a-163b-4854-961a-ea75ddf47b4a/1/yhjK4_FUvTfn3KyZY_TIvg99PhU.roa
Signing time: Sat 01 Jan 2022 09:57:31 +0000
ROA not before: Sat 01 Jan 2022 09:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47956
IP address blocks: 141.226.144.0/20 maxlen: 24
141.226.144.0/21 maxlen: 21
141.226.152.0/21 maxlen: 21
188.120.128.0/19 maxlen: 24
141.226.160.0/20 maxlen: 24
141.226.160.0/22 maxlen: 22
141.226.160.0/21 maxlen: 21
141.226.168.0/21 maxlen: 21
141.226.176.0/21 maxlen: 24
94.230.80.0/20 maxlen: 24
141.226.0.0/22 maxlen: 22
141.226.0.0/21 maxlen: 21
141.226.0.0/18 maxlen: 24
141.226.4.0/22 maxlen: 22
141.226.8.0/22 maxlen: 22
141.226.8.0/21 maxlen: 21
141.226.12.0/22 maxlen: 22
5.102.192.0/18 maxlen: 24
91.205.152.0/22 maxlen: 24
31.210.176.0/20 maxlen: 24
37.46.32.0/20 maxlen: 24
141.226.56.0/21 maxlen: 21
141.226.64.0/20 maxlen: 24
141.226.72.0/21 maxlen: 21
2a02:ed5::/32 maxlen: 32
2a02:ed0::/29 maxlen: 29
2a02:ed1::/32 maxlen: 32
2a02:ed2::/32 maxlen: 32
2a02:ed0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 877075043 (0x34471a63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c0aa7b3e3cbff88262add92b339e35051ce1a0
Validity
Not Before: Jan 1 09:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca18cae3f154bd37e7dcac9963f4c8be0f7d3e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1b:5a:9c:b7:cd:5a:fe:22:78:ad:8b:6f:60:
af:64:80:73:f2:ba:8b:e8:a3:8f:b0:80:4c:b0:4e:
d5:12:d1:d9:49:31:62:02:95:18:e2:74:f5:56:96:
09:71:8e:b5:79:55:67:ce:7f:41:fd:73:17:4f:27:
c4:9d:2a:1c:70:6a:49:82:f0:2c:57:59:c5:00:d2:
04:7a:fa:b8:2e:12:93:95:67:d5:49:92:c9:0c:51:
f0:f5:36:79:7c:be:b9:e0:fa:24:3d:97:79:06:78:
6c:95:8c:39:0c:41:8d:3e:a5:08:f3:46:f5:9a:a3:
5f:e7:7d:55:fb:1b:72:ea:4e:52:93:6d:f5:e3:37:
2f:22:bd:ac:e1:81:68:48:5e:82:40:7c:66:1d:d3:
c0:cd:e0:e3:30:e8:e1:ea:2f:e8:91:87:35:f5:c0:
a3:6a:66:53:7c:0b:c5:c2:4c:f8:0b:85:17:72:aa:
bf:ce:c1:ed:27:56:e3:14:46:01:7b:bb:cb:9f:c7:
f1:2c:34:5a:9d:4e:c6:a3:35:27:54:10:b8:11:39:
b0:51:74:d6:81:40:23:16:99:0c:e0:5a:45:1d:d1:
45:3d:b7:a3:ed:82:76:7f:17:7c:07:14:54:39:15:
fd:83:d5:77:db:cb:ae:e3:28:a7:fa:1a:d0:98:ca:
d6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:18:CA:E3:F1:54:BD:37:E7:DC:AC:99:63:F4:C8:BE:0F:7D:3E:15
X509v3 Authority Key Identifier:
keyid:F4:C0:AA:7B:3E:3C:BF:F8:82:62:AD:D9:2B:33:9E:35:05:1C:E1:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MCqez48v_iCYq3ZKzOeNQUc4aA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9e2b1a-163b-4854-961a-ea75ddf47b4a/1/yhjK4_FUvTfn3KyZY_TIvg99PhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9e2b1a-163b-4854-961a-ea75ddf47b4a/1/9MCqez48v_iCYq3ZKzOeNQUc4aA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.192.0/18
31.210.176.0/20
37.46.32.0/20
91.205.152.0/22
94.230.80.0/20
141.226.0.0-141.226.79.255
141.226.144.0-141.226.183.255
188.120.128.0/19
IPv6:
2a02:ed0::/29
Signature Algorithm: sha256WithRSAEncryption
5e:43:88:50:74:1a:dd:4e:df:37:39:19:fb:37:81:f0:93:f2:
7e:cb:b9:c4:80:4d:d3:de:cb:c2:0f:69:99:b3:4a:aa:b4:d5:
2c:c1:64:7d:29:23:1b:92:b5:bc:f1:d0:b9:57:2b:d4:6e:14:
8b:a9:84:4d:cd:78:27:9d:29:52:69:e6:0a:4c:d1:1a:7a:58:
1b:cc:64:72:0a:7f:ce:13:26:fb:ee:5f:39:04:6a:7a:d5:b3:
9a:43:be:3f:9b:a4:16:8e:f9:ca:92:f7:ba:2c:3b:5d:8c:17:
67:b7:00:20:62:9f:37:4c:d2:c6:97:54:f4:6a:74:49:13:87:
89:06:b7:25:e3:5a:0a:f4:0a:00:3d:2a:a0:bf:30:ee:03:87:
00:bd:9c:1f:4f:59:9e:14:f0:04:60:10:78:6c:df:64:fd:e6:
dd:77:a8:48:30:0b:59:61:26:f0:b4:04:ef:f3:57:f1:95:c1:
2a:4e:41:f5:3b:56:bb:21:78:4a:64:a3:1f:1e:c4:f6:44:ea:
f3:25:f7:07:c6:61:56:c5:d9:b8:d6:ac:75:19:93:00:e1:0c:
87:f5:1e:2a:8a:7d:14:02:6a:76:e4:0f:32:c8:f4:31:9c:90:
1c:f8:c7:d4:fa:78:19:25:b7:62:cf:82:bc:01:59:5d:fb:69:
81:ab:df:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:29 2023 by rpki-client on console-ams.rpki-client.org