Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/YvBVecP4_GZCzdPJh5GzrT4GBFE.roa
File: YvBVecP4_GZCzdPJh5GzrT4GBFE.roa (raw, json)
Hash identifier: 5WMJ6Xqy3rR5KbQpDLsPM2hJILT9QtKfS3VKnayXLhM=
Subject key identifier: 62:F0:55:79:C3:F8:FC:66:42:CD:D3:C9:87:91:B3:AD:3E:06:04:51
Certificate issuer: /CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Certificate serial: 0D8F26CF
Authority key identifier: CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/YvBVecP4_GZCzdPJh5GzrT4GBFE.roa
Signing time: Sat 01 Jan 2022 01:51:11 +0000
ROA not before: Sat 01 Jan 2022 01:51:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57004
IP address blocks: 185.191.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227485391 (0xd8f26cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd919eb5c2108360155de7fb4f216a055ae31f09
Validity
Not Before: Jan 1 01:51:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62f05579c3f8fc6642cdd3c98791b3ad3e060451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3f:b0:9f:29:e0:30:22:ed:b4:64:e1:dd:8d:
06:ec:a7:94:62:01:39:1a:4f:54:49:85:a4:5a:2f:
83:89:43:49:8b:ad:f6:54:22:65:0f:86:94:c1:70:
34:9e:81:ed:d5:00:60:ee:63:1b:07:55:ec:2d:6c:
8e:16:fe:5f:39:bd:dd:77:81:6f:a5:e9:d4:0a:fe:
81:d9:13:d5:79:8e:63:cf:8b:d4:9f:75:ab:46:06:
ed:7e:17:2d:c9:01:ae:03:ad:85:0e:58:7d:ee:2b:
ce:a1:04:31:bb:6f:bf:3b:07:3b:9c:e1:72:ea:58:
b3:f4:9a:e2:ff:e5:5e:86:a4:03:d0:25:37:09:9f:
90:59:d7:19:51:0e:71:4a:6e:b0:2f:0e:83:aa:75:
18:52:8e:82:df:65:75:36:8f:db:a1:1f:58:cd:93:
12:83:ad:3f:df:c7:12:be:61:9b:28:90:04:f0:5b:
01:68:3f:3d:07:79:c3:7d:a9:dc:99:49:39:37:ac:
0a:ba:c2:a7:6c:9b:f0:c4:fb:c8:de:06:1e:33:9f:
0b:c1:be:0a:db:01:14:ef:4f:7a:29:74:57:12:c7:
4d:4d:07:03:85:49:47:7e:0d:7b:68:9b:a2:40:30:
20:ac:b5:bd:c7:cc:f5:e9:d3:55:54:4c:ff:77:59:
2c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F0:55:79:C3:F8:FC:66:42:CD:D3:C9:87:91:B3:AD:3E:06:04:51
X509v3 Authority Key Identifier:
keyid:CD:91:9E:B5:C2:10:83:60:15:5D:E7:FB:4F:21:6A:05:5A:E3:1F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZGetcIQg2AVXef7TyFqBVrjHwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/YvBVecP4_GZCzdPJh5GzrT4GBFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4fc780-b296-40b7-9508-9f8e6a184374/1/zZGetcIQg2AVXef7TyFqBVrjHwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.200.0/24
Signature Algorithm: sha256WithRSAEncryption
83:49:a7:0a:16:6a:17:a9:99:a1:2f:0f:e3:c7:e3:63:2a:f8:
35:34:e5:62:73:ee:43:b8:79:61:6c:f0:6f:be:6c:eb:ff:b6:
56:47:78:5c:f5:3e:87:16:08:50:8e:fd:dc:e2:df:d7:04:89:
d0:65:1d:fb:3a:2a:7a:a8:47:1d:75:df:8c:d0:e0:fa:54:eb:
33:39:4e:65:a7:03:c8:d3:d2:0f:64:d0:e3:33:35:25:34:db:
7b:2f:d6:6b:4b:8d:ac:75:80:d8:7f:e2:bc:97:60:79:19:00:
cf:70:4e:c9:81:2f:14:ec:24:fd:49:42:51:13:e1:51:16:a2:
f6:e4:ea:a0:43:9d:00:91:c2:06:c9:d7:22:56:34:25:e7:fb:
69:13:a1:b1:09:86:6b:0d:f2:38:f5:7f:cb:78:f9:f6:74:ec:
aa:46:65:71:cf:ef:90:ea:86:f2:89:66:0f:b7:d0:97:9c:9a:
2d:63:0d:1e:26:37:63:27:90:98:b8:c8:e4:1e:94:fc:c6:9b:
3a:ff:f9:c0:23:02:4e:a2:07:85:76:4b:ac:a3:8f:f5:12:5b:
6d:5b:9e:46:40:3a:e7:62:a0:31:fd:41:de:07:a9:aa:91:93:
86:08:37:a8:20:51:be:54:43:05:b4:7b:9a:57:45:ef:11:d1:
e7:54:04:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:10 2025 by rpki-client