Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/yoa_wNMeflA1J4aSJ67XlSKgQdE.roa
File: yoa_wNMeflA1J4aSJ67XlSKgQdE.roa (raw, json)
Hash identifier: uUDP2ilvVmtkcopgqsPCGEGYdgbtae7QGs/jEObWCCk=
Subject key identifier: CA:86:BF:C0:D3:1E:7E:50:35:27:86:92:27:AE:D7:95:22:A0:41:D1
Certificate issuer: /CN=745901b402d482f3d6dd2928ea8ced2eeb6ce412
Certificate serial: 0B6FB5D4
Authority key identifier: 74:59:01:B4:02:D4:82:F3:D6:DD:29:28:EA:8C:ED:2E:EB:6C:E4:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dFkBtALUgvPW3Sko6oztLuts5BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/yoa_wNMeflA1J4aSJ67XlSKgQdE.roa
Signing time: Wed 20 Apr 2022 06:45:27 +0000
ROA not before: Wed 20 Apr 2022 06:45:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41706
IP address blocks: 91.142.135.0/24 maxlen: 24
193.30.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191870420 (0xb6fb5d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=745901b402d482f3d6dd2928ea8ced2eeb6ce412
Validity
Not Before: Apr 20 06:45:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca86bfc0d31e7e503527869227aed79522a041d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a2:8a:28:1f:d3:b8:8c:39:ae:64:57:25:ba:
a4:c8:d3:e7:20:1d:ce:52:1d:ae:3e:60:07:03:0c:
8a:d3:60:5d:f3:b7:29:1e:96:a2:62:13:30:cd:99:
83:57:10:79:94:bc:76:fb:50:cd:4c:bf:5c:13:d2:
cb:6e:b0:95:04:60:e1:1a:95:40:d5:b6:c0:e8:c4:
68:85:14:ec:81:73:6f:da:dc:bb:b6:f0:de:83:bf:
e5:80:e0:3b:ea:38:c8:cd:94:99:03:d6:cd:b2:9b:
cb:55:17:01:c5:a6:02:77:47:21:69:bd:a9:55:0f:
8a:8a:25:dc:e9:65:24:ce:d7:89:dc:e2:7c:7c:c9:
25:52:86:a8:00:b9:cd:fc:25:ec:71:1a:1a:f5:a1:
a6:a8:62:21:95:ca:66:72:fc:aa:d1:2b:8f:5c:a9:
1b:2f:f8:4c:fa:76:37:fd:a7:00:a2:8c:83:c8:33:
37:ce:44:12:ca:c3:04:e8:45:a6:be:57:c4:78:49:
d2:64:2c:f4:db:e6:c0:d5:82:92:d4:3a:7d:ba:4a:
73:c1:11:10:6e:e3:5e:04:e0:6b:df:a8:b0:7c:08:
52:d0:e3:38:9d:19:5b:db:9f:f5:fb:69:1a:e4:2e:
9c:de:f4:ab:30:77:1f:ca:7b:ff:4d:81:b9:13:37:
25:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:86:BF:C0:D3:1E:7E:50:35:27:86:92:27:AE:D7:95:22:A0:41:D1
X509v3 Authority Key Identifier:
keyid:74:59:01:B4:02:D4:82:F3:D6:DD:29:28:EA:8C:ED:2E:EB:6C:E4:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dFkBtALUgvPW3Sko6oztLuts5BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/yoa_wNMeflA1J4aSJ67XlSKgQdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/dFkBtALUgvPW3Sko6oztLuts5BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.135.0/24
193.30.236.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:16:4b:59:d7:fc:c0:d1:8f:d2:3a:31:f6:76:4d:17:18:1c:
b2:68:2e:a2:4e:83:b7:64:cc:af:d9:ae:64:39:74:5d:53:f8:
78:ca:18:9c:ee:95:47:c0:4a:33:e6:a7:1c:3e:d5:c2:90:b1:
61:3d:fa:8a:e9:d5:61:c5:a0:fd:8a:b8:9f:70:ec:37:dd:1f:
40:49:9a:fb:bd:fe:04:5a:a7:ca:69:a9:31:a1:a8:d1:bb:42:
06:96:43:79:46:46:7d:f4:8d:38:8b:37:f6:46:15:91:06:73:
53:f6:91:84:b0:53:ad:1f:7c:fc:38:23:d1:7b:d6:84:bd:e4:
c4:4e:c9:01:5c:2c:ac:f6:b7:8c:02:db:31:f9:0e:fa:58:cd:
24:3e:a1:57:09:e7:87:a1:66:11:11:1b:0a:9b:dc:83:67:7d:
54:1e:e5:ae:64:74:5a:dc:40:1f:e6:d4:f3:8b:61:43:c0:19:
bf:1e:7a:e2:2c:84:51:04:04:7f:b3:94:a9:af:66:ad:e2:3d:
c9:ea:e6:ed:ee:91:76:5d:0f:b2:40:2d:f1:6e:ca:30:7f:30:
34:fe:86:ec:f7:0a:db:85:48:4b:b0:1a:5d:55:88:77:70:7b:
fd:37:40:28:73:55:8a:db:c8:bf:41:82:f9:9d:97:91:cb:b4:
d6:9f:cc:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-fra.rpki-client.org