Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/YUn02V2N-6z2lob3DIOaFiFRAZQ.roa
File: YUn02V2N-6z2lob3DIOaFiFRAZQ.roa (raw, json)
Hash identifier: 8ECxahOP0gjimpaiKoUVwTbQJnKxHUyNSDErT0Y1qww=
Subject key identifier: 61:49:F4:D9:5D:8D:FB:AC:F6:96:86:F7:0C:83:9A:16:21:51:01:94
Certificate issuer: /CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30
Certificate serial: 0A65189C
Authority key identifier: 6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/YUn02V2N-6z2lob3DIOaFiFRAZQ.roa
Signing time: Sat 01 Jan 2022 06:01:15 +0000
ROA not before: Sat 01 Jan 2022 06:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201017
IP address blocks: 145.219.10.0/24 maxlen: 24
145.219.8.0/21 maxlen: 21
145.219.11.0/24 maxlen: 24
145.219.8.0/24 maxlen: 24
145.219.9.0/24 maxlen: 24
145.219.13.0/24 maxlen: 24
145.219.14.0/24 maxlen: 24
145.219.12.0/24 maxlen: 24
145.219.16.0/23 maxlen: 23
145.219.17.0/24 maxlen: 24
145.219.15.0/24 maxlen: 24
145.219.16.0/24 maxlen: 24
2a04:b0c0:8::/45 maxlen: 45
2a04:b0c0::/44 maxlen: 44
2a04:b0c0::/45 maxlen: 45
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174397596 (0xa65189c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e6d7bcabfcc308d420053c482a0d59fb1282e30
Validity
Not Before: Jan 1 06:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6149f4d95d8dfbacf69686f70c839a1621510194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:67:d4:52:d8:88:7a:e9:b3:c9:c7:0c:6a:4a:
7b:f1:27:4e:6c:62:3a:8a:29:01:54:38:0f:42:d4:
71:5c:f6:28:02:ad:a8:80:1c:af:81:ed:fe:12:91:
db:6e:b6:50:73:94:14:fd:06:e2:1a:99:0b:7e:3a:
60:04:35:55:90:10:4c:4c:50:8f:17:b8:2a:64:82:
ed:f7:f2:20:06:4b:09:c9:aa:a0:91:31:73:0a:ff:
a2:fd:89:0a:a8:b8:2c:97:f2:1c:cf:eb:b1:74:76:
8b:7e:65:e2:ee:5f:b4:99:c4:dc:fa:ac:c4:ff:18:
af:07:32:4d:bd:9a:fa:0a:87:23:e9:24:5d:f8:19:
70:b1:85:4f:be:06:5d:bc:73:82:9a:6e:1a:93:a7:
e9:a0:89:39:98:eb:85:95:70:47:d8:c8:9c:3d:e9:
f4:be:1d:10:9b:01:6b:cf:43:d2:2d:a3:1d:dc:5a:
e4:5a:58:4d:c9:9b:19:7d:01:97:5e:38:da:a7:99:
a1:6d:f9:7e:81:45:29:46:6b:ab:5b:1a:ac:b7:16:
ba:ce:04:9a:ef:92:15:86:9a:b2:0d:03:6b:bb:0d:
1e:85:e3:9e:7d:f4:2f:d4:4e:e7:b3:94:d2:28:72:
61:6f:04:42:cb:21:23:ec:10:3f:6f:c0:12:20:e9:
68:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:49:F4:D9:5D:8D:FB:AC:F6:96:86:F7:0C:83:9A:16:21:51:01:94
X509v3 Authority Key Identifier:
keyid:6E:6D:7B:CA:BF:CC:30:8D:42:00:53:C4:82:A0:D5:9F:B1:28:2E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bm17yr_MMI1CAFPEgqDVn7EoLjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/YUn02V2N-6z2lob3DIOaFiFRAZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/45c689-afaa-4da3-a942-93194eb6108d/1/bm17yr_MMI1CAFPEgqDVn7EoLjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.219.8.0-145.219.17.255
IPv6:
2a04:b0c0::/44
Signature Algorithm: sha256WithRSAEncryption
7c:dc:06:ad:32:0b:2c:f1:10:6f:e9:0b:9c:77:87:06:9d:e8:
9a:7e:f4:12:6f:01:ac:df:e0:d3:f3:c2:64:f8:f7:20:a9:bb:
56:66:f4:48:57:0d:b7:9d:8d:48:52:3e:17:fc:ad:00:9d:55:
c1:a0:e4:b0:b9:a6:40:ec:48:73:3a:ec:34:05:25:6c:54:3b:
1c:41:e0:9f:ca:a5:b1:20:a6:f9:c7:8e:11:fa:36:b9:72:86:
50:1b:f1:95:4a:ae:e0:f9:d3:37:19:ba:5e:76:01:e5:9b:60:
73:3f:87:59:ce:0c:f7:b3:b9:17:7b:bc:97:b4:8b:ac:c1:81:
42:a4:d4:0a:18:4f:1c:29:04:ee:0a:7b:17:5b:83:67:81:91:
dd:22:a0:3e:62:73:e8:9f:89:c9:b1:ab:de:f0:1d:c3:fd:89:
5d:5b:f8:54:7d:ee:b5:d5:cf:50:e1:91:9d:dd:80:b4:7b:16:
1d:7f:47:26:63:62:e5:d0:68:df:06:f6:d8:09:33:1d:40:76:
1e:17:26:37:c3:dc:04:fe:f1:af:bf:44:19:0a:dd:34:d1:dc:
0a:62:68:e3:e4:da:c0:7d:47:31:b8:8b:ff:d8:27:db:f9:9c:
e0:7a:46:d4:36:77:5a:cc:67:f2:a8:be:8c:fe:a3:55:b2:13:
57:a1:33:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:11 2024 by rpki-client on console-fra.rpki-client.org