Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/yiys4ZFDH1q1LeCFXyadUZecGYI.roa
File: yiys4ZFDH1q1LeCFXyadUZecGYI.roa (raw, json)
Hash identifier: 8oslItuvZJQMeqnfdFy63LaNoXoPMkcsHg9R8ZXj/YM=
Subject key identifier: CA:2C:AC:E1:91:43:1F:5A:B5:2D:E0:85:5F:26:9D:51:97:9C:19:82
Certificate issuer: /CN=58f267aaac99bf0c9d1e8e429de01ccd3cc90ec0
Certificate serial: 05C88B08
Authority key identifier: 58:F2:67:AA:AC:99:BF:0C:9D:1E:8E:42:9D:E0:1C:CD:3C:C9:0E:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WPJnqqyZvwydHo5CneAczTzJDsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/yiys4ZFDH1q1LeCFXyadUZecGYI.roa
Signing time: Sat 01 Jan 2022 10:01:43 +0000
ROA not before: Sat 01 Jan 2022 10:01:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207474
IP address blocks: 94.231.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97028872 (0x5c88b08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58f267aaac99bf0c9d1e8e429de01ccd3cc90ec0
Validity
Not Before: Jan 1 10:01:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca2cace191431f5ab52de0855f269d51979c1982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:84:89:3f:6e:0f:46:88:30:be:a4:b2:83:ea:
40:e4:9f:7a:4b:a0:24:6c:c4:b5:41:88:e5:7b:6b:
b8:c4:e9:a4:d0:47:0e:69:c6:9c:62:16:5e:2b:fe:
86:11:3d:40:36:65:fc:29:cd:9d:af:88:3f:9c:cb:
ca:9d:f0:9d:46:5f:e7:0d:ca:e2:50:4f:77:93:17:
da:49:d6:93:42:b4:0b:70:ce:27:2d:5f:c7:1e:53:
5b:f7:26:a7:16:2c:f4:13:15:85:9b:4d:72:02:9f:
cd:25:15:68:61:ea:eb:c9:6e:02:e5:b2:62:f5:fa:
6d:13:35:34:d5:ff:86:69:29:d2:2a:82:cd:5a:c0:
21:02:43:72:3c:64:81:88:6f:ef:9c:7a:1d:5f:f5:
fd:87:36:51:3f:24:1e:01:0a:33:df:32:fd:07:d4:
f7:b6:81:f9:0b:7d:05:71:3f:9f:ff:31:ff:20:c1:
48:16:b5:2f:06:8d:f4:7c:6c:0c:bf:1c:cd:63:94:
8f:0f:e6:66:05:68:42:83:a8:f1:59:d5:1b:c9:10:
0c:8c:e0:4e:8f:05:c2:86:f5:e1:12:78:f6:f8:cf:
5f:66:04:77:96:f2:88:2d:27:0e:5d:f5:40:89:dc:
82:2a:69:4f:85:32:7a:a0:ec:01:ec:55:4f:4e:32:
ad:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2C:AC:E1:91:43:1F:5A:B5:2D:E0:85:5F:26:9D:51:97:9C:19:82
X509v3 Authority Key Identifier:
keyid:58:F2:67:AA:AC:99:BF:0C:9D:1E:8E:42:9D:E0:1C:CD:3C:C9:0E:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WPJnqqyZvwydHo5CneAczTzJDsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/yiys4ZFDH1q1LeCFXyadUZecGYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/WPJnqqyZvwydHo5CneAczTzJDsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.192.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:99:1a:a9:eb:de:34:28:85:52:ba:23:88:36:09:c4:51:93:
ab:ef:88:d0:a3:87:c3:ef:f2:ae:31:58:ed:5d:ce:d2:25:96:
ee:d7:3d:3a:d2:08:79:17:bd:b4:05:f6:c7:f9:d7:1c:c1:f5:
2f:7e:61:7c:e6:00:7e:8a:0f:bd:39:cd:ac:17:e6:aa:b1:80:
00:18:eb:02:ce:a0:b4:fb:76:55:68:ac:fb:a1:ff:e5:37:bd:
37:a5:50:6c:de:5c:10:8c:cb:d3:9b:92:11:e9:30:7b:ff:bd:
59:bb:5d:52:2a:31:96:82:f3:35:1b:a9:01:55:33:d6:7d:e0:
1e:90:5e:51:52:6c:5a:39:96:e7:84:bd:13:26:4c:df:70:b5:
7b:83:a1:73:6d:23:e0:cb:88:17:91:16:7d:04:ab:c2:5a:25:
6f:9c:5b:5b:92:e2:c7:cb:5d:c9:60:a3:37:47:5f:4f:ec:8c:
e4:f4:10:1a:66:32:98:7b:ec:49:65:76:09:de:2a:82:9a:5b:
76:02:19:3a:da:97:8f:2a:65:12:77:a3:fc:b0:77:d8:b9:a7:
95:d0:2c:44:17:6f:c4:88:04:57:77:2b:90:c8:f3:9b:18:cb:
63:21:28:6f:bc:e5:26:8a:4d:ec:89:90:10:b1:a7:20:bc:32:
62:1b:d2:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:22 2025 by rpki-client