Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/YPLv8uf8h-N-8MpQC4n-zLT97lY.roa
File: YPLv8uf8h-N-8MpQC4n-zLT97lY.roa (raw, json)
Hash identifier: 53588lyFfFMUVtAzHOeocnZ700oJmbH9WqaPh3RMniU=
Subject key identifier: 60:F2:EF:F2:E7:FC:87:E3:7E:F0:CA:50:0B:89:FE:CC:B4:FD:EE:56
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08F7C382
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/YPLv8uf8h-N-8MpQC4n-zLT97lY.roa
Signing time: Tue 12 Apr 2022 09:15:40 +0000
ROA not before: Tue 12 Apr 2022 09:15:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202492
IP address blocks: 178.253.0.0/21 maxlen: 21
83.147.196.0/22 maxlen: 22
83.147.195.0/24 maxlen: 24
94.241.188.0/22 maxlen: 22
94.241.144.0/21 maxlen: 21
83.147.200.0/22 maxlen: 22
83.147.204.0/22 maxlen: 22
178.253.17.0/24 maxlen: 24
83.147.208.0/24 maxlen: 24
83.147.209.0/24 maxlen: 24
178.253.20.0/23 maxlen: 23
178.253.24.0/23 maxlen: 23
83.147.218.0/23 maxlen: 23
178.253.30.0/24 maxlen: 24
83.147.220.0/23 maxlen: 23
83.147.224.0/22 maxlen: 22
83.147.228.0/22 maxlen: 22
83.147.236.0/22 maxlen: 22
178.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150455170 (0x8f7c382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 12 09:15:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60f2eff2e7fc87e37ef0ca500b89feccb4fdee56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5d:6d:bb:ec:59:7b:64:cd:aa:b4:d1:e2:1a:
e6:68:51:1d:15:63:b8:b0:50:e7:c1:63:82:b3:4f:
16:08:01:ce:31:71:22:52:67:46:b5:89:92:c8:86:
8f:c7:39:0a:5f:dd:19:f5:59:50:4f:f6:64:1b:4d:
e6:86:f0:db:31:4e:a2:80:ce:94:b2:bf:71:18:d0:
a2:ee:50:60:83:3e:27:7b:f1:ed:12:48:7c:25:8f:
9c:d4:e2:e8:be:da:8f:4e:0f:96:ef:a2:3f:2d:38:
15:ea:83:77:98:26:8b:d9:67:58:42:30:ec:56:83:
5d:ea:22:c1:aa:24:40:be:e9:a9:18:2f:4a:4f:d4:
2e:a3:52:5d:ab:2a:bf:42:f8:d8:51:71:00:65:e3:
14:03:30:8a:b1:f2:f1:6f:9b:d1:a4:e4:5f:b1:7d:
2a:bc:38:f7:2c:06:d1:06:45:72:30:07:b0:46:76:
d8:b5:b1:bc:db:47:a6:bb:da:2c:e6:50:df:a5:bd:
b9:ab:7f:f4:50:94:24:d0:ca:5b:dc:93:15:d0:e0:
6b:c9:ce:02:a9:e4:eb:13:a9:aa:a0:01:bd:40:92:
a8:b6:fa:8c:0c:a0:56:8f:1c:8f:6a:66:aa:07:7c:
b4:40:fd:07:6b:f6:e4:73:5e:a1:f5:72:e2:c0:7d:
1b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F2:EF:F2:E7:FC:87:E3:7E:F0:CA:50:0B:89:FE:CC:B4:FD:EE:56
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/YPLv8uf8h-N-8MpQC4n-zLT97lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.195.0-83.147.209.255
83.147.218.0-83.147.221.255
83.147.224.0/21
83.147.236.0/22
94.241.144.0/21
94.241.188.0/22
178.253.0.0/21
178.253.17.0/24
178.253.20.0/23
178.253.24.0/23
178.253.30.0/24
178.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
79:05:87:92:43:af:3a:0a:fa:df:66:33:82:92:74:14:09:d1:
8f:77:ed:85:7f:08:f6:b1:56:ee:2e:36:55:5b:95:85:40:b3:
2c:bd:46:10:4b:48:9d:e9:ad:87:33:8f:2d:75:df:41:fb:10:
46:89:d2:a2:df:20:3e:64:df:f3:9f:c0:27:83:fd:e4:4c:14:
30:51:31:fb:6a:62:66:0a:66:11:1a:17:b4:d4:9f:1e:7c:34:
07:e7:af:10:8a:5e:6a:71:9a:df:8c:6f:7f:f1:21:cb:12:39:
d1:51:86:6a:6f:5b:37:dd:16:93:70:48:18:82:77:35:1c:39:
d0:86:3c:aa:db:d3:a2:64:43:a9:63:74:97:29:46:0a:04:c9:
a3:92:00:50:13:5c:08:df:5d:e1:9e:34:2a:74:55:e9:9c:0a:
d0:68:7e:13:cd:c0:06:d0:a2:11:87:49:33:fc:55:ed:05:b9:
3f:32:09:9a:a0:40:dc:24:03:f6:6f:e5:e8:87:31:4b:b0:c0:
c0:d5:cd:7d:eb:09:e0:67:e0:8d:b3:f9:3e:94:24:70:d5:22:
af:9a:92:64:73:13:27:4f:8f:3c:d7:f5:50:95:23:84:3c:1d:
96:9f:f8:5d:76:45:5b:3a:41:af:a4:0b:63:c7:16:82:0c:3c:
c6:38:98:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org