Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/Tr1yMN42hUJ3GlFK9y-fr-KdKnE.roa
File: Tr1yMN42hUJ3GlFK9y-fr-KdKnE.roa (raw, json)
Hash identifier: DJ7pgTB8Azy9MaiLVGKbGMdhu9ktP+5KPzrAB1TVUbY=
Subject key identifier: 4E:BD:72:30:DE:36:85:42:77:1A:51:4A:F7:2F:9F:AF:E2:9D:2A:71
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 379B5B15
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/Tr1yMN42hUJ3GlFK9y-fr-KdKnE.roa
Signing time: Sat 01 Jan 2022 10:05:38 +0000
ROA not before: Sat 01 Jan 2022 10:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34749
IP address blocks: 93.94.160.0/21 maxlen: 24
193.168.50.0/24 maxlen: 24
2a00:ea80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932928277 (0x379b5b15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: Jan 1 10:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ebd7230de368542771a514af72f9fafe29d2a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:23:74:21:2c:9c:db:d1:d5:6d:10:44:89:07:
d0:1e:70:97:c1:53:14:47:2b:12:1f:d8:e3:b3:93:
81:a2:a0:e2:b2:07:42:e0:2c:b7:d0:bd:97:6a:37:
4a:0a:15:0d:d7:ff:6c:90:c4:f0:ef:f7:70:0f:66:
c8:ea:60:5d:a5:33:05:c9:c6:bc:9e:aa:0f:43:72:
2d:dd:20:b8:39:30:3a:5e:a6:f9:a0:34:f3:17:4b:
d3:f2:f2:4b:7f:b5:f9:76:c3:27:64:52:66:51:d3:
15:db:60:ba:51:49:58:98:59:39:de:6f:1b:a4:08:
bf:27:9e:af:d8:43:18:28:24:92:eb:54:78:23:3a:
5b:94:84:19:db:3e:66:86:63:8b:88:8a:70:04:37:
93:6f:1f:69:52:f1:aa:a5:73:f0:a3:50:de:3a:f2:
1d:20:80:15:3c:12:b1:1b:45:f8:f6:b3:57:de:f6:
a8:50:3c:18:77:38:89:87:d0:ff:25:62:67:4f:fd:
dc:f2:92:26:ad:a2:02:82:4f:7b:c1:eb:5c:75:54:
e2:5f:0a:0d:cb:24:e4:ec:eb:16:d6:df:de:cb:40:
2a:de:af:a1:93:02:1f:bd:9a:fd:e8:52:6e:90:72:
98:03:b7:a2:a5:b9:d7:82:ab:5f:35:f4:73:2f:d0:
d7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:BD:72:30:DE:36:85:42:77:1A:51:4A:F7:2F:9F:AF:E2:9D:2A:71
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/Tr1yMN42hUJ3GlFK9y-fr-KdKnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.94.160.0/21
193.168.50.0/24
IPv6:
2a00:ea80::/32
Signature Algorithm: sha256WithRSAEncryption
4a:ff:2e:45:40:22:e0:cb:1d:cb:1c:6f:e5:f1:72:a7:9d:51:
a1:33:fe:12:8a:3f:60:f2:ac:7a:1b:9d:79:fb:db:a3:e4:c5:
9c:5d:6d:d4:28:2a:56:47:06:16:70:28:2d:41:39:04:ae:08:
46:1b:2c:d4:d8:cd:d7:9c:42:1e:89:ca:70:cc:76:5c:c2:14:
6c:f1:76:38:ce:37:2e:98:0e:dc:f9:e9:93:79:6a:04:bc:66:
b2:a4:22:85:07:94:dc:d2:18:ce:79:a8:8a:05:85:82:22:f4:
dc:61:cb:98:fc:cb:1d:1a:b0:51:fa:b8:dd:a9:4a:f8:4b:30:
ff:a1:da:27:a7:8a:db:96:01:e8:93:75:22:01:c1:18:73:ac:
68:41:b3:ed:42:40:72:ba:17:0b:f8:4b:b4:33:d3:13:1d:44:
8b:cd:d6:94:d5:a1:c4:f6:91:db:2d:59:2e:e2:d6:7d:19:2c:
bd:82:91:78:dd:f7:99:ed:f7:65:4b:27:af:d9:28:a3:33:c7:
73:ed:07:34:18:06:a0:07:75:6b:05:25:d4:ee:db:70:cc:4f:
fd:88:3d:54:1a:7f:aa:d6:7e:cf:98:ea:79:2b:ea:52:ee:78:
4b:64:bd:55:36:a4:ac:f4:5a:69:2d:cf:dc:9c:9a:52:90:d7:
3d:75:f3:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:29 2024 by rpki-client on console-ams.rpki-client.org