Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/Y-l40nrH7MSCUPsJe4kxRj486HM.roa
File: Y-l40nrH7MSCUPsJe4kxRj486HM.roa (raw, json)
Hash identifier: 7BEqcqBCjNKUsejALykD/VlfexXvE8ySKR1l69bNZho=
Subject key identifier: 63:E9:78:D2:7A:C7:EC:C4:82:50:FB:09:7B:89:31:46:3E:3C:E8:73
Certificate issuer: /CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Certificate serial: 356B5AA9
Authority key identifier: 12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/Y-l40nrH7MSCUPsJe4kxRj486HM.roa
Signing time: Sat 01 Jan 2022 15:55:16 +0000
ROA not before: Sat 01 Jan 2022 15:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49102
IP address blocks: 93.159.128.0/18 maxlen: 18
2a00:1578::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 896228009 (0x356b5aa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Validity
Not Before: Jan 1 15:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63e978d27ac7ecc48250fb097b8931463e3ce873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:28:2b:07:26:66:37:4c:99:86:4f:d9:02:
69:57:29:f9:e4:d4:e2:80:27:e1:70:59:bd:06:52:
2d:37:a4:65:9c:47:f4:e4:76:7a:8d:28:46:41:63:
2f:ba:f6:e7:43:f0:3b:c4:b5:ba:1c:65:42:f5:13:
e5:eb:3a:66:0a:eb:9d:b6:e4:a2:ed:52:ce:38:f3:
2c:6c:4c:d1:82:45:ea:8a:fc:69:e7:b2:ba:81:1f:
1c:ee:38:5f:e6:a7:ee:01:64:05:1d:f1:49:59:4a:
ea:62:54:fe:4b:a9:f5:a1:90:38:05:7c:cc:9b:6c:
63:dc:30:6e:69:84:e0:e3:6c:d1:a2:9d:e2:13:50:
60:a3:9c:02:d3:24:b9:7f:33:04:75:79:ca:eb:5b:
f5:4b:ca:54:9f:85:35:79:04:d1:cf:4b:79:19:aa:
a0:c7:94:0b:04:04:4d:25:e4:06:82:29:d0:82:c9:
f3:ec:ec:95:26:5b:e9:d5:88:dc:fa:e9:7a:0e:c3:
57:de:36:33:0f:d8:f1:1a:20:a8:36:59:11:f3:59:
09:4e:57:ad:9e:a7:08:0b:cc:83:1c:d6:bc:9f:77:
e9:0d:09:83:45:8f:57:2c:11:2b:1b:0c:e8:88:35:
32:19:2a:90:f4:18:00:86:96:09:83:00:59:f6:5b:
cd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E9:78:D2:7A:C7:EC:C4:82:50:FB:09:7B:89:31:46:3E:3C:E8:73
X509v3 Authority Key Identifier:
keyid:12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/Y-l40nrH7MSCUPsJe4kxRj486HM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/Eipka-1MQXprSAX5PXenpGXjS5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.159.128.0/18
IPv6:
2a00:1578::/29
Signature Algorithm: sha256WithRSAEncryption
07:3c:35:6b:ae:d2:58:3d:b3:3d:78:80:77:6d:7c:74:8e:32:
8e:68:ea:16:f0:00:37:ef:c6:2a:d8:0e:9f:e7:c4:a6:25:0c:
4f:4e:6d:94:b9:97:4d:3e:57:02:2f:88:b5:32:94:83:28:5d:
92:11:94:07:16:ff:83:90:b1:fc:86:4d:60:d9:00:f3:33:4a:
95:8c:77:a9:30:58:08:6f:a7:7a:92:21:ce:d2:3b:f2:ca:d2:
1e:e0:c5:17:d7:4d:fa:3d:8c:63:fb:77:7c:e1:41:2b:56:e7:
ca:a4:bc:ff:4f:e2:d6:28:6d:6a:3a:36:ce:f3:a7:a2:58:ec:
e8:90:b9:5c:b0:ba:42:3b:81:a9:36:35:a6:bc:39:de:a6:f1:
8e:8b:0a:8f:64:aa:50:c0:6a:5f:e4:79:dd:34:ae:3c:1b:d8:
19:3f:7d:e2:e9:8c:2d:9a:5e:af:da:87:36:04:ab:88:67:f3:
be:d0:44:19:df:ec:43:43:31:58:b1:bf:09:72:6b:a9:5c:f2:
81:a2:19:e2:57:19:31:1f:c0:3f:89:5d:9b:98:69:8c:44:69:
e8:ac:74:ef:d1:ba:25:a9:b1:2e:f8:b7:e7:b5:fb:d0:c9:1f:
78:d7:9d:68:9d:8e:eb:dc:2f:59:e2:e2:1d:08:34:27:f5:c7:
58:42:3c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-ams.rpki-client.org