Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/YOmWeGwlGeFdTCQxQbaqJ8EhI60.roa
File: YOmWeGwlGeFdTCQxQbaqJ8EhI60.roa (raw, json)
Hash identifier: H10Rb/VYNKTqksq15YMTpINwYnFySOj0s/5AHm9YKhg=
Subject key identifier: 60:E9:96:78:6C:25:19:E1:5D:4C:24:31:41:B6:AA:27:C1:21:23:AD
Certificate issuer: /CN=33bb8fccc6d6ab72ba5294b09985de799ea06348
Certificate serial: 0185703079E259052DB0BD2548F2ACC48588
Authority key identifier: 33:BB:8F:CC:C6:D6:AB:72:BA:52:94:B0:99:85:DE:79:9E:A0:63:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7uPzMbWq3K6UpSwmYXeeZ6gY0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/YOmWeGwlGeFdTCQxQbaqJ8EhI60.roa
Signing time: Mon 02 Jan 2023 01:55:03 +0000
ROA not before: Mon 02 Jan 2023 01:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15605
IP address blocks: 92.39.149.0/24 maxlen: 24
92.39.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:79:e2:59:05:2d:b0:bd:25:48:f2:ac:c4:85:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33bb8fccc6d6ab72ba5294b09985de799ea06348
Validity
Not Before: Jan 2 01:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60e996786c2519e15d4c243141b6aa27c12123ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f1:38:59:2b:a5:25:21:6d:ad:41:9a:0a:e8:
07:77:6b:e2:3d:16:47:66:ff:ad:f6:5a:9f:8c:98:
0f:2a:21:b3:dc:88:ec:a7:b2:27:57:03:4f:ce:26:
ed:d9:44:80:29:ab:7d:b1:3f:1c:df:04:e1:92:42:
01:9a:cd:8b:86:c9:18:34:9c:8e:8a:c3:c3:e0:ca:
db:fc:43:45:29:6a:2a:94:9a:bd:8c:e1:40:0a:ac:
29:b1:1b:74:17:76:f4:21:90:2e:46:f3:3a:31:93:
da:fe:9f:5f:bf:7f:16:52:1a:71:d1:93:d4:fd:d1:
2d:27:f6:9b:a7:4b:37:b7:67:98:b0:a4:d2:18:cc:
48:a5:a2:a7:e0:ec:07:13:42:1a:fb:bd:b0:60:ba:
cf:8d:d4:fc:c8:35:65:36:b3:09:5a:37:79:22:a3:
21:be:3c:52:f5:13:95:e9:78:af:7c:64:cc:80:08:
33:bb:d9:16:5e:e6:de:29:c0:95:fb:4d:36:a5:6a:
db:72:d8:44:a2:8f:2e:95:33:e5:8b:ff:0c:66:83:
dd:5d:61:b1:01:34:ee:e2:2e:60:b8:b6:91:88:ad:
00:61:07:13:76:35:bd:bf:53:82:28:22:6b:43:5e:
98:2b:77:c7:0c:b1:65:fb:3d:83:53:43:13:a2:0e:
7e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E9:96:78:6C:25:19:E1:5D:4C:24:31:41:B6:AA:27:C1:21:23:AD
X509v3 Authority Key Identifier:
keyid:33:BB:8F:CC:C6:D6:AB:72:BA:52:94:B0:99:85:DE:79:9E:A0:63:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7uPzMbWq3K6UpSwmYXeeZ6gY0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/YOmWeGwlGeFdTCQxQbaqJ8EhI60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/M7uPzMbWq3K6UpSwmYXeeZ6gY0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.149.0-92.39.150.255
Signature Algorithm: sha256WithRSAEncryption
65:28:bd:f4:8a:00:5f:3f:90:dd:2a:be:32:52:0b:67:7b:00:
c0:2c:cf:9e:ba:c7:d9:95:ab:c1:7d:70:58:f3:d7:a3:6c:5d:
55:1e:f9:f2:bd:48:6d:69:04:8d:61:90:a2:6d:3f:61:b6:0c:
f4:51:ac:d5:36:c1:b0:51:51:52:44:23:2f:8e:7b:23:a7:8f:
0b:29:d0:e2:63:68:4b:c2:0a:b2:82:6f:53:66:ce:23:a7:be:
f1:75:7c:e9:92:9c:b2:9d:ad:1d:5a:66:d0:e9:c6:1a:1a:a6:
18:8c:11:f3:ea:e4:e5:a0:87:5a:e9:10:9f:e5:18:d2:68:3f:
85:fc:d1:00:e7:dd:13:0f:ee:3f:1c:59:0e:61:72:65:5b:bc:
33:29:c1:07:f8:fb:56:bb:5b:9a:ca:a5:07:4b:75:e2:20:7b:
b1:ed:45:f3:d0:50:18:9e:1f:35:54:ec:00:a4:41:1b:18:b7:
92:f1:f1:9f:bb:ea:af:98:9b:ae:a9:81:92:9c:7c:e1:39:b8:
bd:f4:67:74:86:6c:31:70:1c:14:0b:c0:7c:16:e7:fb:ad:60:
ee:3c:d4:86:c8:57:6d:82:88:d8:7c:92:f2:f1:0c:27:cf:c1:
85:09:a7:6a:7b:bd:f1:e1:be:ec:4e:c2:22:97:32:06:da:2c:
e3:40:5d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:54 2025 by rpki-client