Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/YhV8jQqPjcxXP2Qf_xZ3yZ0gD00.roa
File: YhV8jQqPjcxXP2Qf_xZ3yZ0gD00.roa (raw, json)
Hash identifier: YnaiPrSa3bJQV8K2obxi0oTP3C0O0gzHJcmx+fKw1n0=
Subject key identifier: 62:15:7C:8D:0A:8F:8D:CC:57:3F:64:1F:FF:16:77:C9:9D:20:0F:4D
Certificate issuer: /CN=1cae1a26967dfe287eb602749ec2c6f05afbb57c
Certificate serial: 0D662870
Authority key identifier: 1C:AE:1A:26:96:7D:FE:28:7E:B6:02:74:9E:C2:C6:F0:5A:FB:B5:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK4aJpZ9_ih-tgJ0nsLG8Fr7tXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/YhV8jQqPjcxXP2Qf_xZ3yZ0gD00.roa
Signing time: Tue 01 Mar 2022 13:38:09 +0000
ROA not before: Tue 01 Mar 2022 13:38:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56953
IP address blocks: 91.229.152.0/23 maxlen: 23
31.132.200.0/21 maxlen: 24
2001:67c:2340::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224798832 (0xd662870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cae1a26967dfe287eb602749ec2c6f05afbb57c
Validity
Not Before: Mar 1 13:38:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62157c8d0a8f8dcc573f641fff1677c99d200f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d5:ea:9e:b6:7b:58:02:85:48:2c:a3:fa:78:
89:98:d1:1c:1f:e2:1f:c7:f3:8e:71:82:19:85:8d:
2d:b5:58:56:d4:23:4f:7d:02:95:84:e8:6b:9f:e9:
17:13:5c:d2:ef:c6:80:ad:a4:88:ec:b1:65:58:b8:
ff:a1:32:02:28:a4:16:f0:d8:ea:b4:b9:26:5c:36:
c0:99:fa:df:51:ff:42:72:31:fd:11:bf:ca:52:ef:
c0:d7:95:1e:9a:87:fe:69:94:20:67:e3:bf:ce:e2:
ef:78:44:e8:af:b7:d0:6d:c1:b1:d1:08:ae:13:e3:
47:99:96:d2:6a:44:de:69:32:83:c1:50:07:1f:e6:
97:70:72:ca:1a:a3:bf:32:31:eb:7e:50:57:2b:99:
b9:23:fa:1a:d8:19:f8:a6:d7:c1:d7:a3:36:16:62:
3f:2b:5b:1d:e5:2c:25:06:7c:dd:5f:5a:83:74:de:
f0:3d:5a:75:e4:a3:c0:9c:b7:76:5d:2f:2c:80:cf:
af:ed:ad:1c:1b:04:20:e5:cb:f7:ec:7a:e8:69:71:
12:d4:5e:3d:d6:cb:fa:9a:07:9f:41:63:5a:6c:4c:
98:cb:1c:6a:4d:ce:1f:2a:52:00:4f:44:53:66:f1:
3e:9a:4a:a3:95:60:d7:f5:a0:cb:e3:d4:b9:b3:84:
2d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:15:7C:8D:0A:8F:8D:CC:57:3F:64:1F:FF:16:77:C9:9D:20:0F:4D
X509v3 Authority Key Identifier:
keyid:1C:AE:1A:26:96:7D:FE:28:7E:B6:02:74:9E:C2:C6:F0:5A:FB:B5:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK4aJpZ9_ih-tgJ0nsLG8Fr7tXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/YhV8jQqPjcxXP2Qf_xZ3yZ0gD00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/HK4aJpZ9_ih-tgJ0nsLG8Fr7tXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.132.200.0/21
91.229.152.0/23
IPv6:
2001:67c:2340::/48
Signature Algorithm: sha256WithRSAEncryption
ad:20:6e:5c:eb:18:72:50:e8:c2:88:d1:1d:b9:5f:5f:06:df:
1f:e5:2e:80:37:0c:0a:14:cc:dc:46:ad:f4:18:5b:14:19:f1:
d2:16:ac:0a:09:8d:be:59:6e:e4:fe:58:01:c7:80:6a:d7:6a:
6b:23:75:70:04:c2:67:6c:7f:72:58:f1:58:08:94:ca:81:e1:
41:16:14:05:15:65:d1:e4:cc:18:62:0e:0f:f5:ba:99:64:34:
6d:41:a6:e5:38:45:92:1b:d4:f4:a5:6b:38:5d:fb:7a:e6:b9:
ba:c0:1c:07:60:bb:af:04:b7:7b:64:0b:57:8e:e0:e4:b3:8b:
50:c9:21:1d:48:4e:b7:13:5e:16:47:c4:c6:cb:e6:e8:04:07:
2b:e9:15:90:35:89:40:43:9d:9a:62:6e:50:92:ca:95:c8:7d:
de:19:01:1a:5f:32:41:c8:f3:0c:82:59:0c:20:ed:fb:c7:f0:
2a:65:2b:58:1d:cd:2b:63:47:38:95:fd:a0:6e:40:67:d4:5e:
2d:54:80:20:19:6a:dd:0c:22:08:c1:b7:07:22:ba:bb:c6:c6:
13:ac:ad:70:b4:e1:7a:13:a7:62:f0:b2:2f:bc:9c:1b:4a:30:
c1:60:bb:60:bf:9e:e6:86:05:21:5d:b8:5b:1b:61:c5:2f:53:
d9:99:c3:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:33 2024 by rpki-client on console-fra.rpki-client.org