Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/Yaiw7fKXhogau1b53GsasODMr34.roa
File: Yaiw7fKXhogau1b53GsasODMr34.roa (raw, json)
Hash identifier: zylOtjEJnzD7GfE/U7tOhuHcMJ+8ZLE/28UYjQRSINg=
Subject key identifier: 61:A8:B0:ED:F2:97:86:88:1A:BB:56:F9:DC:6B:1A:B0:E0:CC:AF:7E
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 026F18
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/Yaiw7fKXhogau1b53GsasODMr34.roa
Signing time: Wed 06 Apr 2022 13:06:56 +0000
ROA not before: Wed 06 Apr 2022 13:06:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208652
IP address blocks: 185.72.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159512 (0x26f18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Apr 6 13:06:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61a8b0edf29786881abb56f9dc6b1ab0e0ccaf7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:27:ca:0c:5f:c0:7e:e0:48:82:d2:ed:23:a4:
2b:d2:be:13:38:cb:d6:25:bd:a5:b9:49:73:d9:2d:
0f:bc:61:4f:41:8e:7b:5f:b5:32:aa:75:cb:21:0b:
ac:5f:df:e7:9b:0a:5d:fd:73:45:bc:a5:91:7e:1f:
d6:56:cb:eb:21:53:1e:7d:98:2d:64:f5:23:4a:a6:
2b:80:7e:5c:14:55:68:04:e8:d0:3c:32:4a:f9:fd:
70:ba:cb:e8:b3:c5:5b:af:bb:82:09:0c:6b:fb:ad:
c9:62:fe:5c:62:f6:c7:f5:f4:e9:6c:36:30:65:8a:
b4:50:50:b8:a8:3c:a8:df:60:58:9a:3c:3f:d6:ad:
f7:34:be:0a:85:99:0e:ac:ab:ec:46:d7:7a:22:c4:
1b:81:58:52:59:94:70:5b:64:71:0a:4d:f5:a9:f8:
9f:b0:60:df:27:e3:ba:21:f2:bb:1b:4e:8e:b1:79:
70:8d:10:ca:c6:4d:20:8c:8b:87:a5:b2:13:5d:8c:
37:7d:4c:a1:a2:9f:bd:05:43:3e:0c:01:06:01:f3:
ba:54:44:cb:c4:60:00:5d:8e:05:20:9f:ff:5c:7b:
da:d4:21:39:28:66:54:a1:29:7e:42:2c:ec:ed:47:
78:1e:57:8b:f6:5a:78:1b:98:e1:49:21:19:da:fa:
f7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A8:B0:ED:F2:97:86:88:1A:BB:56:F9:DC:6B:1A:B0:E0:CC:AF:7E
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/Yaiw7fKXhogau1b53GsasODMr34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.51.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:02:e9:e9:db:70:2e:c7:1c:90:a3:8b:7f:d3:86:81:e0:03:
f7:5a:aa:f0:de:fe:07:fe:d1:6e:e2:e7:e8:d2:6e:8b:b9:b5:
f8:d8:49:33:22:03:3e:27:94:fc:fc:aa:0d:f3:df:c4:87:f4:
0a:7a:28:92:30:61:1e:66:27:85:e1:0f:29:b6:e6:fa:b8:32:
7b:f1:6d:61:b4:3e:29:75:b0:96:ec:fd:4d:99:7c:7e:76:45:
ed:f9:0f:72:2e:03:91:c1:10:35:80:d2:16:cb:2d:ab:22:1e:
b6:b7:8f:2e:4f:8f:e4:c9:aa:e0:1e:43:c3:fd:06:e0:4a:b6:
cd:bc:71:8a:c9:df:5f:77:ef:be:cf:31:84:c7:74:a7:66:6e:
32:04:ff:02:ce:72:59:81:f4:9a:6a:c2:46:1c:37:7b:54:5d:
58:de:15:91:b3:43:4b:51:b2:65:77:f7:26:96:36:b7:a1:07:
f0:ce:f2:26:76:8f:78:1d:58:8e:a3:df:09:55:35:77:69:a5:
48:9b:8d:fb:e2:2d:af:a3:cf:86:5a:3d:07:7d:1b:31:47:da:
b7:e3:69:e2:b6:25:cb:47:dc:5f:09:cd:50:70:48:51:b3:2c:
69:2d:5b:ed:3a:cd:87:db:39:13:e7:36:2d:17:f2:9d:51:28:
9d:97:57:96
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAm8YMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ5
YWQxOGY0YzM2MDY3MjIwZjRkODMzY2JjNzhhMTBmOTRlYjA4ODgwHhcNMjIwNDA2
MTMwNjU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2MWE4YjBlZGYyOTc4
Njg4MWFiYjU2ZjlkYzZiMWFiMGUwY2NhZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAySfKDF/AfuBIgtLtI6Qr0r4TOMvWJb2luUlz2S0PvGFPQY57
X7UyqnXLIQusX9/nmwpd/XNFvKWRfh/WVsvrIVMefZgtZPUjSqYrgH5cFFVoBOjQ
PDJK+f1wusvos8Vbr7uCCQxr+63JYv5cYvbH9fTpbDYwZYq0UFC4qDyo32BYmjw/
1q33NL4KhZkOrKvsRtd6IsQbgVhSWZRwW2RxCk31qfifsGDfJ+O6IfK7G06OsXlw
jRDKxk0gjIuHpbITXYw3fUyhop+9BUM+DAEGAfO6VETLxGAAXY4FIJ//XHva1CE5
KGZUoSl+Qizs7Ud4HleL9lp4G5jhSSEZ2vr3YQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGGosO3yl4aIGrtW+dxrGrDgzK9+MB8GA1UdIwQYMBaAFNmtGPTDYGciD02D
PLx4oQ+U6wiIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84OC9kMzUxYmYtNzFjZS00ODU3LTllNTAtYzI2NDczODVlNzI3LzEv
WWFpdzdmS1hob2dhdTFiNTNHc2FzT0RNcjM0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9k
MzUxYmYtNzFjZS00ODU3LTllNTAtYzI2NDczODVlNzI3LzEvMmEwWTlNTmdaeUlQ
VFlNOHZIaWhENVRyQ0lnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUgzMA0GCSqGSIb3DQEBCwUAA4IB
AQDTAunp23AuxxyQo4t/04aB4AP3Wqrw3v4H/tFu4ufo0m6LubX42EkzIgM+J5T8
/KoN89/Eh/QKeiiSMGEeZieF4Q8ptub6uDJ78W1htD4pdbCW7P1NmXx+dkXt+Q9y
LgORwRA1gNIWyy2rIh62t48uT4/kyargHkPD/QbgSrbNvHGKyd9fd+++zzGEx3Sn
Zm4yBP8CznJZgfSaasJGHDd7VF1Y3hWRs0NLUbJld/cmlja3oQfwzvImdo94HViO
o98JVTV3aaVIm4374i2vo8+GWj0HfRsxR9q342nitiXLR9xfCc1QcEhRsyxpLVvt
Os2H2zkT5zYtF/KdUSidl1eW
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:18 2025 by rpki-client