Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/YhRhAQY1KZY4v9xikqkqZ93qUPQ.roa
File: YhRhAQY1KZY4v9xikqkqZ93qUPQ.roa (raw, json)
Hash identifier: zEL3DmcQIY97jRGQ50JKqm4jROR0vcpsgf6HbirnYLU=
Subject key identifier: 62:14:61:01:06:35:29:96:38:BF:DC:62:92:A9:2A:67:DD:EA:50:F4
Certificate issuer: /CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Certificate serial: 078EA4CF
Authority key identifier: 99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/YhRhAQY1KZY4v9xikqkqZ93qUPQ.roa
Signing time: Wed 23 Mar 2022 08:33:46 +0000
ROA not before: Wed 23 Mar 2022 08:33:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 79.132.145.0/24 maxlen: 24
86.107.248.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126788815 (0x78ea4cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Validity
Not Before: Mar 23 08:33:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=621461010635299638bfdc6292a92a67ddea50f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:61:5b:c9:66:e3:d7:06:ce:32:b5:d5:b4:26:
0b:49:d1:6f:5b:9d:3e:c4:32:ca:6d:4f:7d:cf:29:
54:b8:1b:bb:f8:9b:3a:ce:1a:d2:c4:8d:5f:f6:40:
c5:90:34:49:b7:39:ba:a0:23:f9:5e:11:f3:82:01:
21:16:82:2e:6c:af:1f:0f:2e:ae:1b:dc:38:0f:9d:
27:b5:34:20:06:cc:f5:1d:37:5d:24:93:14:55:52:
60:0f:30:a8:96:ce:c6:12:5c:34:7c:9f:77:28:5c:
14:7c:59:1f:9f:76:30:23:fe:8a:92:55:ed:db:39:
b4:d9:a3:6c:ea:f2:c0:46:f7:1f:f4:8a:b1:29:53:
a9:32:62:3f:0a:44:69:39:9a:99:e6:d7:99:34:ba:
3f:2f:8d:f8:2e:66:5e:12:fb:37:4e:ce:b1:21:9c:
69:31:ca:47:30:b5:a1:64:83:78:ee:52:48:b0:cd:
ff:07:63:3b:61:69:65:b1:c4:c2:9c:7d:d0:0f:3e:
9f:6d:c0:f9:cc:d5:04:7c:1e:bd:ee:c6:cc:da:08:
69:06:42:1e:e7:1a:e7:d9:7c:d4:d7:6e:7e:79:c2:
11:bb:e4:e0:61:53:b4:5e:d8:8e:3f:ec:d9:51:c4:
66:68:74:d7:4c:cb:29:50:7e:27:61:2d:e6:d0:9a:
ce:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:14:61:01:06:35:29:96:38:BF:DC:62:92:A9:2A:67:DD:EA:50:F4
X509v3 Authority Key Identifier:
keyid:99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/YhRhAQY1KZY4v9xikqkqZ93qUPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/mWchgxr7izgwe0n1ue5ikq0eWFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.145.0/24
86.107.248.0/21
Signature Algorithm: sha256WithRSAEncryption
47:2b:19:4a:f5:b4:88:c9:cf:0b:c3:82:cf:a5:d0:e5:e2:ee:
09:7a:8b:b9:7b:1a:72:93:ba:90:e7:c6:6f:5c:c0:cf:68:7c:
c0:3b:28:6f:7d:fc:52:2b:67:eb:d2:f0:fb:cf:9f:c1:47:e0:
a1:a1:70:5d:51:88:b0:59:5c:db:a5:6f:53:0d:e3:fd:82:71:
77:9b:d9:d3:ad:e6:58:ac:c3:2a:b2:54:f8:05:ed:4d:b9:87:
c8:ca:c7:94:c4:a3:66:bf:39:0a:63:24:dd:11:2a:cf:ce:e3:
f1:6f:47:6f:6a:f7:78:57:8e:bc:7d:28:8b:e3:21:18:a6:ea:
fb:fb:b4:2e:45:e7:11:dd:0b:1a:6b:c7:5b:d3:62:42:e4:81:
eb:1a:a1:a5:45:03:a2:c2:34:e5:b6:82:97:b0:13:78:70:b3:
5d:f1:7b:e0:09:48:fe:7b:74:5d:72:af:e2:57:af:f0:a8:86:
3b:82:b2:8d:ef:aa:f7:e2:42:7d:8f:2e:be:b7:29:1b:0e:f3:
98:74:b1:2a:32:f8:80:8a:c9:7f:b6:be:a7:a7:2f:7f:90:af:
3b:c2:91:38:2f:d2:fe:3b:e7:13:15:0d:4a:81:8c:b4:dd:4e:
b1:be:f5:09:b5:fb:ae:01:04:09:c3:af:d8:79:b2:f1:ac:6f:
51:ae:70:54
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB46kzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OTY3MjE4MzFhZmI4YjM4MzA3YjQ5ZjViOWVlNjI5MmFkMWU1ODUwMB4XDTIyMDMy
MzA4MzM0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjIxNDYxMDEwNjM1
Mjk5NjM4YmZkYzYyOTJhOTJhNjdkZGVhNTBmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBhW8lm49cGzjK11bQmC0nRb1udPsQyym1Pfc8pVLgbu/ib
Os4a0sSNX/ZAxZA0Sbc5uqAj+V4R84IBIRaCLmyvHw8urhvcOA+dJ7U0IAbM9R03
XSSTFFVSYA8wqJbOxhJcNHyfdyhcFHxZH592MCP+ipJV7ds5tNmjbOrywEb3H/SK
sSlTqTJiPwpEaTmamebXmTS6Py+N+C5mXhL7N07OsSGcaTHKRzC1oWSDeO5SSLDN
/wdjO2FpZbHEwpx90A8+n23A+czVBHweve7GzNoIaQZCHuca59l81NdufnnCEbvk
4GFTtF7Yjj/s2VHEZmh010zLKVB+J2Et5tCazlUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRiFGEBBjUplji/3GKSqSpn3epQ9DAfBgNVHSMEGDAWgBSZZyGDGvuLODB7
SfW57mKSrR5YUDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21XY2hneHI3aXpnd2UwbjF1ZTVpa3EwZVdGQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvMWMxZWIyLTFmNjUtNGY3MS04YjMyLWI0YmZlNDU2ZGRlMC8x
L1loUmhBUVkxS1pZNHY5eGlrcWtxWjkzcVVQUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
MWMxZWIyLTFmNjUtNGY3MS04YjMyLWI0YmZlNDU2ZGRlMC8xL21XY2hneHI3aXpn
d2UwbjF1ZTVpa3EwZVdGQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAE+EkQMEA1Zr+DANBgkqhkiG9w0B
AQsFAAOCAQEARysZSvW0iMnPC8OCz6XQ5eLuCXqLuXsacpO6kOfGb1zAz2h8wDso
b338Uitn69Lw+8+fwUfgoaFwXVGIsFlc26VvUw3j/YJxd5vZ063mWKzDKrJU+AXt
TbmHyMrHlMSjZr85CmMk3REqz87j8W9Hb2r3eFeOvH0oi+MhGKbq+/u0LkXnEd0L
GmvHW9NiQuSB6xqhpUUDosI05baCl7ATeHCzXfF74AlI/nt0XXKv4lev8KiGO4Ky
je+q9+JCfY8uvrcpGw7zmHSxKjL4gIrJf7a+p6cvf5CvO8KROC/S/jvnExUNSoGM
tN1Osb71CbX7rgEECcOv2Hmy8axvUa5wVA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:46 2024 by rpki-client on console-ams.rpki-client.org