Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/YBFsSYiarOiUWAhetj1B8Xkye0s.roa
File: YBFsSYiarOiUWAhetj1B8Xkye0s.roa (raw, json)
Hash identifier: ufsjcaKEDinMLVA3BKQuRhinBQ/ddFnYAGGkASZhKyQ=
Subject key identifier: 60:11:6C:49:88:9A:AC:E8:94:58:08:5E:B6:3D:41:F1:79:32:7B:4B
Certificate issuer: /CN=54404da602dab0625be7223d09320b1cd7aafced
Certificate serial: 0859231F
Authority key identifier: 54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VEBNpgLasGJb5yI9CTILHNeq_O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/YBFsSYiarOiUWAhetj1B8Xkye0s.roa
Signing time: Mon 18 Apr 2022 13:41:28 +0000
ROA not before: Mon 18 Apr 2022 13:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205247
IP address blocks: 185.224.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140059423 (0x859231f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54404da602dab0625be7223d09320b1cd7aafced
Validity
Not Before: Apr 18 13:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60116c49889aace89458085eb63d41f179327b4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ad:e7:06:af:54:5d:d2:69:a6:98:fd:15:7b:
6c:d5:dd:fe:ad:05:a7:e9:6b:33:94:a4:e6:a2:fc:
5c:c6:19:18:e5:08:c0:d6:79:73:e5:1d:53:35:87:
b7:d3:d1:f2:9b:ad:11:4f:41:8d:4f:36:88:6d:8a:
25:f3:b4:96:19:68:f1:ed:2a:34:4f:ce:a9:03:e1:
f8:be:5a:75:b8:59:2d:54:43:8f:c5:2b:3a:00:29:
05:86:1d:28:f9:8e:4f:8b:8f:45:4c:b6:ad:05:9c:
93:ae:95:ee:92:55:8c:68:27:8c:ac:75:cd:87:d8:
8d:0e:82:51:3a:58:a2:7c:c0:ba:97:18:b6:47:5f:
6f:0f:41:db:88:f7:34:ef:93:ff:df:dc:6a:54:15:
ac:f3:1e:bd:de:ba:2a:79:4f:10:a5:a0:32:b2:a3:
ae:c6:44:f8:6c:72:3c:81:c8:b7:fc:df:f1:b9:bd:
f9:69:26:fb:b0:f0:eb:50:57:fb:90:2c:34:6c:40:
29:83:ee:7a:44:c0:34:ea:ed:e4:23:c8:f3:79:16:
5b:c0:86:ee:55:8a:1f:47:f6:cb:f0:37:19:da:00:
d7:b7:af:66:db:ab:aa:94:f7:73:36:51:99:56:bb:
5b:4b:ff:98:18:06:fe:5a:01:23:70:42:bd:0c:36:
00:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:11:6C:49:88:9A:AC:E8:94:58:08:5E:B6:3D:41:F1:79:32:7B:4B
X509v3 Authority Key Identifier:
keyid:54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VEBNpgLasGJb5yI9CTILHNeq_O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/YBFsSYiarOiUWAhetj1B8Xkye0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/VEBNpgLasGJb5yI9CTILHNeq_O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.108.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:b9:43:4c:0d:f7:11:d4:44:aa:5c:41:92:ed:25:af:8d:25:
39:d6:bc:3e:ba:6e:fd:8e:11:c8:f5:3e:53:3a:6a:a9:c9:07:
9d:63:8e:7b:f3:d2:6f:f7:3e:80:32:14:db:08:e9:1f:77:5b:
2e:15:7c:c4:ad:49:24:33:cf:87:30:f5:68:97:80:63:68:83:
85:68:f8:12:ef:d3:50:0f:17:ea:13:34:25:6b:fb:97:2a:78:
54:6b:4a:6c:08:9a:a8:6b:04:99:4c:32:07:01:6c:e4:04:6a:
53:4d:9e:6a:2e:f4:b1:1e:45:07:84:0d:63:60:79:a0:0a:df:
85:ec:0b:ed:f0:52:8c:e6:6e:47:1b:b0:63:8d:44:35:73:2d:
01:87:54:7a:54:82:2b:5e:80:f5:da:4f:44:b0:ee:d2:f4:61:
19:aa:c3:65:7c:89:60:4a:4c:b5:7b:0f:ae:80:44:85:cc:a3:
2e:13:23:c1:ff:26:c8:c7:32:f8:ed:83:93:df:0b:84:c4:e4:
c1:56:1b:06:f1:5b:3d:48:be:ba:75:be:d0:8b:4e:47:c9:dc:
98:14:82:8c:19:aa:08:ea:05:b3:7e:ec:58:47:a2:b0:17:ce:
8d:2e:5a:c7:df:a4:bf:d2:ba:77:75:c9:b5:c1:77:9e:54:17:
fb:db:d1:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:29 2025 by rpki-client