Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/yYCYABANz-ogAbNI-hfbaDpmreI.roa
File: yYCYABANz-ogAbNI-hfbaDpmreI.roa (raw, json)
Hash identifier: R0/gPodCvsWUF7d3HHnEWRted7UBXUPRROsGUBW37fc=
Subject key identifier: C9:80:98:00:10:0D:CF:EA:20:01:B3:48:FA:17:DB:68:3A:66:AD:E2
Certificate issuer: /CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885
Certificate serial: 038D04AC
Authority key identifier: 75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/yYCYABANz-ogAbNI-hfbaDpmreI.roa
Signing time: Sat 01 Jan 2022 13:04:43 +0000
ROA not before: Sat 01 Jan 2022 13:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 193.132.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59573420 (0x38d04ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885
Validity
Not Before: Jan 1 13:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9809800100dcfea2001b348fa17db683a66ade2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:85:c0:06:dd:4d:d5:ab:f9:86:12:72:8a:64:
35:c7:1b:19:d4:15:e6:75:fb:ee:71:8f:f6:62:fb:
d1:68:51:80:54:5a:c4:a9:fe:0f:76:bd:15:cc:68:
27:7c:b0:00:5b:05:c5:51:7f:e9:69:07:bb:00:20:
c5:9f:d5:b6:69:b7:9e:d7:3a:a7:76:05:a3:a0:cd:
56:3b:53:73:0f:53:b0:49:74:40:9e:13:70:92:aa:
4e:77:19:ab:c4:80:84:07:04:09:b8:d7:f1:90:0e:
69:f3:9e:cb:14:e9:bc:96:45:e2:f5:37:7f:c2:e9:
8d:c2:73:35:9d:5b:e7:29:d8:c4:d3:24:e2:6b:3a:
6e:36:7d:19:33:e0:b0:d4:00:9f:c6:e8:04:7f:91:
16:e7:41:82:14:97:48:c0:06:ed:8d:e6:e9:d3:53:
6a:90:50:16:25:54:0c:f6:76:fd:fa:14:51:33:29:
23:f6:d5:89:2d:e9:34:d0:f2:35:60:49:1b:f9:3b:
9c:c8:71:47:bb:78:9e:1c:f1:8a:de:41:25:2a:ff:
ad:6f:7e:d0:80:e8:c7:e5:5c:1f:62:a6:89:5c:dc:
66:11:46:0a:67:7d:1a:8f:a7:f1:7f:3e:fa:55:3f:
2a:74:ec:9c:1f:d5:53:d5:3d:3c:17:78:6b:67:dd:
ad:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:80:98:00:10:0D:CF:EA:20:01:B3:48:FA:17:DB:68:3A:66:AD:E2
X509v3 Authority Key Identifier:
keyid:75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/yYCYABANz-ogAbNI-hfbaDpmreI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.132.116.0/22
Signature Algorithm: sha256WithRSAEncryption
90:11:e0:3d:21:ad:f1:20:de:93:2d:05:81:4c:ad:22:80:08:
a8:ff:67:77:65:16:99:2b:f1:23:ad:4a:bf:ef:b5:3b:e4:62:
b2:c1:38:e8:9e:00:fa:8a:e4:2b:4b:0d:3b:b8:8f:f8:e7:dc:
3f:7b:c8:28:bc:5c:97:7d:5b:f3:db:cd:40:80:13:29:78:db:
76:cb:9a:7f:9e:13:bb:b3:6d:91:c6:25:10:3b:25:56:b9:5f:
07:d7:86:4b:dd:e2:01:26:81:d1:55:b4:de:cd:5f:e0:bf:40:
b2:e2:5b:be:3e:e9:aa:a1:d2:8c:04:8e:58:57:74:cb:32:c6:
91:ac:31:1d:40:bd:86:29:5d:4c:43:7b:09:65:0b:b2:be:33:
f5:47:61:9c:71:60:29:c1:58:1e:ad:b2:b9:c7:36:94:58:55:
eb:6c:98:69:00:09:41:09:83:9a:1c:39:ed:c2:45:c3:cc:25:
a9:01:69:40:97:18:6f:05:dd:0c:aa:aa:59:a0:aa:13:68:69:
22:92:1c:90:46:59:7f:c6:70:0d:81:c2:f5:05:a3:63:64:f1:
9a:8b:a7:b0:14:35:cf:15:30:83:07:45:1f:69:31:20:66:8a:
00:03:8f:2e:9c:51:b5:c6:44:da:18:81:43:13:c0:b9:a0:d7:
d8:59:46:e2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA40ErDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NWJkZDM4YTM4ODMyNDBlNDZjNGIxYWM4YmJmODMxN2RlOGZmODg1MB4XDTIyMDEw
MTEzMDQ0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzk4MDk4MDAxMDBk
Y2ZlYTIwMDFiMzQ4ZmExN2RiNjgzYTY2YWRlMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKGFwAbdTdWr+YYScopkNccbGdQV5nX77nGP9mL70WhRgFRa
xKn+D3a9FcxoJ3ywAFsFxVF/6WkHuwAgxZ/Vtmm3ntc6p3YFo6DNVjtTcw9TsEl0
QJ4TcJKqTncZq8SAhAcECbjX8ZAOafOeyxTpvJZF4vU3f8LpjcJzNZ1b5ynYxNMk
4ms6bjZ9GTPgsNQAn8boBH+RFudBghSXSMAG7Y3m6dNTapBQFiVUDPZ2/foUUTMp
I/bViS3pNNDyNWBJG/k7nMhxR7t4nhzxit5BJSr/rW9+0IDox+VcH2KmiVzcZhFG
Cmd9Go+n8X8++lU/KnTsnB/VU9U9PBd4a2fdrUECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTJgJgAEA3P6iABs0j6F9toOmat4jAfBgNVHSMEGDAWgBR1vdOKOIMkDkbE
sayLv4MX3o/4hTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RiM1RpamlESkE1R3hMR3NpNy1ERjk2UC1JVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvYzNhNGY3LTJkMGEtNDkyNC04Y2RiLThkYTYwNTM1ZTZhMC8x
L3lZQ1lBQkFOei1vZ0FiTkktaGZiYURwbXJlSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
YzNhNGY3LTJkMGEtNDkyNC04Y2RiLThkYTYwNTM1ZTZhMC8xL2RiM1RpamlESkE1
R3hMR3NpNy1ERjk2UC1JVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsGEdDANBgkqhkiG9w0BAQsFAAOC
AQEAkBHgPSGt8SDeky0FgUytIoAIqP9nd2UWmSvxI61Kv++1O+RissE46J4A+ork
K0sNO7iP+OfcP3vIKLxcl31b89vNQIATKXjbdsuaf54Tu7NtkcYlEDslVrlfB9eG
S93iASaB0VW03s1f4L9AsuJbvj7pqqHSjASOWFd0yzLGkawxHUC9hildTEN7CWUL
sr4z9UdhnHFgKcFYHq2yucc2lFhV62yYaQAJQQmDmhw57cJFw8wlqQFpQJcYbwXd
DKqqWaCqE2hpIpIckEZZf8ZwDYHC9QWjY2TxmounsBQ1zxUwgwdFH2kxIGaKAAOP
LpxRtcZE2hiBQxPAuaDX2FlG4g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:33 2024 by rpki-client on console-ams.rpki-client.org