Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/c4cac9-5b63-473c-88d7-d7a660d4caad/1/YKEv3UKKMOgTyf75cknVRZPWWm4.roa
File: YKEv3UKKMOgTyf75cknVRZPWWm4.roa (raw, json)
Hash identifier: yr7WkmtcdZpLBab9lmj0FYmhMAcy16zD5J25mPDiULQ=
Subject key identifier: 60:A1:2F:DD:42:8A:30:E8:13:C9:FE:F9:72:49:D5:45:93:D6:5A:6E
Certificate issuer: /CN=8b01817d42cff8b8814bbd1700ade91674268ed7
Certificate serial: 0379FE78
Authority key identifier: 8B:01:81:7D:42:CF:F8:B8:81:4B:BD:17:00:AD:E9:16:74:26:8E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwGBfULP-LiBS70XAK3pFnQmjtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/c4cac9-5b63-473c-88d7-d7a660d4caad/1/YKEv3UKKMOgTyf75cknVRZPWWm4.roa
Signing time: Sat 01 Jan 2022 10:56:11 +0000
ROA not before: Sat 01 Jan 2022 10:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212755
IP address blocks: 91.233.197.0/24 maxlen: 24
2a0a:b440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58326648 (0x379fe78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b01817d42cff8b8814bbd1700ade91674268ed7
Validity
Not Before: Jan 1 10:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60a12fdd428a30e813c9fef97249d54593d65a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ac:6f:05:73:ec:45:46:41:ca:72:cc:54:9e:
39:e5:ac:56:7c:da:28:a2:79:08:dc:30:eb:c2:0a:
22:7d:be:54:b5:92:58:54:0f:02:63:e8:ce:f8:8e:
06:8f:8d:92:79:e6:86:9f:a9:15:7c:65:67:bb:19:
6f:9b:43:ba:e9:0c:ec:96:ab:78:3f:37:b1:36:fe:
b1:c8:c2:d1:a8:a1:9f:43:5b:a5:dd:56:5c:aa:9b:
89:2e:4a:4b:fd:12:6b:22:e7:32:47:90:3c:a5:67:
92:ba:47:b9:95:87:4d:94:74:89:d3:ac:5f:09:1a:
f7:35:8a:4a:3f:44:7e:94:72:50:5b:82:86:11:7f:
cb:9a:7e:44:64:91:b0:d4:fe:89:18:3c:12:13:19:
3e:4a:12:13:f9:fa:e9:21:6e:b3:84:72:ec:46:65:
8d:c0:e5:5d:fb:2a:a0:23:6c:c6:7a:be:6e:d3:68:
fb:7d:0c:f2:f5:cd:53:b8:76:b3:ed:14:cc:da:57:
b8:d9:60:3d:d8:b2:2c:99:3b:de:83:f6:30:95:cc:
6c:a0:87:19:8d:71:eb:0c:74:c8:91:10:a5:3b:53:
7d:ee:23:50:99:04:92:6e:22:53:e2:8c:07:08:65:
bd:3b:d9:d5:8c:1d:0e:22:bf:32:73:97:61:31:64:
31:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A1:2F:DD:42:8A:30:E8:13:C9:FE:F9:72:49:D5:45:93:D6:5A:6E
X509v3 Authority Key Identifier:
keyid:8B:01:81:7D:42:CF:F8:B8:81:4B:BD:17:00:AD:E9:16:74:26:8E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwGBfULP-LiBS70XAK3pFnQmjtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/c4cac9-5b63-473c-88d7-d7a660d4caad/1/YKEv3UKKMOgTyf75cknVRZPWWm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/c4cac9-5b63-473c-88d7-d7a660d4caad/1/iwGBfULP-LiBS70XAK3pFnQmjtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.197.0/24
IPv6:
2a0a:b440::/29
Signature Algorithm: sha256WithRSAEncryption
37:b1:8d:c7:a1:25:78:be:6d:72:50:62:08:67:c9:3e:e2:17:
dd:ee:92:17:cc:22:e8:0b:59:07:bc:15:d5:b0:4a:d4:6e:e6:
38:47:ff:d9:2c:34:3e:ef:a4:16:fc:de:37:92:40:89:74:69:
41:ec:bc:62:21:39:a0:5b:56:28:e2:22:e9:18:12:fb:03:79:
6e:a2:bc:8f:10:34:33:c5:2a:b0:44:45:bd:5b:7e:df:7d:c9:
f0:40:8d:b7:b7:0b:6a:3f:d4:9b:27:97:fe:f9:93:04:86:ec:
f2:88:37:ae:74:ea:92:7e:ce:e5:8e:7b:4e:78:0d:e0:46:e6:
fe:85:51:c3:39:76:47:0a:f3:80:6f:86:f7:98:c2:ce:8d:11:
96:74:49:a7:a2:09:66:46:da:ae:5c:09:5e:9f:26:92:2c:8a:
47:5e:78:43:a8:b4:ca:40:38:82:74:f5:d5:54:fc:39:11:fc:
f1:96:82:8c:18:f7:96:0c:f5:3c:22:ca:66:61:cd:d1:12:fe:
5c:71:33:6d:82:d3:6c:31:22:34:87:6e:67:48:af:2a:b3:15:
c7:ec:7b:dd:43:a0:31:35:d1:ed:5d:86:d6:2a:a0:d0:91:8c:
f8:e8:f4:9e:60:4a:c2:40:4b:5f:5b:85:e0:35:6a:80:69:7a:
8c:cd:1a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:11 2023 by rpki-client on console-fra.rpki-client.org