Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/de6383-4ad5-457b-953c-a776fede9905/1/yWp0PFNfv_sE0N8dBffbXhMa6fk.roa
File: yWp0PFNfv_sE0N8dBffbXhMa6fk.roa (raw, json)
Hash identifier: 94EIlyH16kmUKUFTPYKjNarE92XlAXG9ltMPCWup7b0=
Subject key identifier: C9:6A:74:3C:53:5F:BF:FB:04:D0:DF:1D:05:F7:DB:5E:13:1A:E9:F9
Certificate issuer: /CN=53f3590809d187f7b361fb24cd43f93f664b20b3
Certificate serial: 0A031945
Authority key identifier: 53:F3:59:08:09:D1:87:F7:B3:61:FB:24:CD:43:F9:3F:66:4B:20:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_NZCAnRh_ezYfskzUP5P2ZLILM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/de6383-4ad5-457b-953c-a776fede9905/1/yWp0PFNfv_sE0N8dBffbXhMa6fk.roa
Signing time: Sat 01 Jan 2022 06:54:40 +0000
ROA not before: Sat 01 Jan 2022 06:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48355
IP address blocks: 185.1.137.0/24 maxlen: 24
2001:7f8:db::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167975237 (0xa031945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f3590809d187f7b361fb24cd43f93f664b20b3
Validity
Not Before: Jan 1 06:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c96a743c535fbffb04d0df1d05f7db5e131ae9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:01:62:40:41:a6:0b:0d:84:0c:64:c4:a6:9c:
59:92:02:5d:f6:19:b4:14:96:6f:4b:ac:6a:41:48:
d5:d2:c4:de:07:6d:2a:72:21:16:9f:16:71:15:42:
4d:9b:ff:b6:dc:00:5a:c6:0e:8b:f2:b9:de:3f:87:
f8:e0:f9:86:b9:19:03:fa:da:82:48:b9:af:16:6e:
05:4d:a4:19:7c:3d:e7:f9:93:4c:a2:8d:2c:cc:68:
b7:e8:8d:41:5a:b5:de:e8:cf:aa:a1:fa:27:ee:4d:
91:81:0d:02:32:30:2a:1f:db:01:d4:40:c4:c3:98:
91:90:b3:62:37:34:8e:99:8e:c2:e4:3d:67:2d:09:
93:f5:28:23:38:90:6c:d1:10:43:08:f3:d0:5e:a8:
b5:33:8c:d9:fd:61:da:aa:91:0a:0c:45:e6:ff:48:
d2:90:92:ef:da:14:b5:27:82:bc:98:bb:70:4c:34:
6d:f0:ad:d3:03:cd:d7:72:29:4c:b4:ce:4f:2d:50:
7d:ef:ea:c7:a6:18:c2:6d:f2:6c:06:e3:83:69:de:
6d:9d:96:98:0e:3a:be:4b:2b:15:2e:68:59:bf:c0:
25:9f:65:57:cd:78:3a:22:41:28:e2:30:33:e9:97:
59:a4:14:b9:8a:da:fd:7e:08:be:33:da:d8:70:b4:
d0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6A:74:3C:53:5F:BF:FB:04:D0:DF:1D:05:F7:DB:5E:13:1A:E9:F9
X509v3 Authority Key Identifier:
keyid:53:F3:59:08:09:D1:87:F7:B3:61:FB:24:CD:43:F9:3F:66:4B:20:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_NZCAnRh_ezYfskzUP5P2ZLILM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/de6383-4ad5-457b-953c-a776fede9905/1/yWp0PFNfv_sE0N8dBffbXhMa6fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/de6383-4ad5-457b-953c-a776fede9905/1/U_NZCAnRh_ezYfskzUP5P2ZLILM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.137.0/24
IPv6:
2001:7f8:db::/48
Signature Algorithm: sha256WithRSAEncryption
71:12:9a:27:d2:f8:cc:23:3f:b9:79:44:c9:5f:a3:c2:40:c7:
a8:cc:64:5c:22:a2:dd:d5:c1:f8:ef:bf:20:46:59:3b:eb:9a:
40:20:73:a0:99:86:6b:9f:1a:44:7d:83:45:a8:0a:aa:48:04:
6c:c3:57:26:03:31:20:6a:31:07:8b:fb:70:a0:95:71:cc:d6:
36:e6:35:b9:82:ef:6c:dd:f9:8b:19:f4:91:40:af:c6:c1:47:
ef:71:5c:70:19:4c:06:75:fc:e5:90:49:3b:7d:0d:6d:31:b9:
25:b9:04:ca:cb:72:f5:86:dd:12:90:29:83:20:ed:42:f4:1f:
af:20:f9:e1:d7:e8:56:4a:ca:75:f5:21:e0:bf:e4:2e:ea:3c:
a9:26:5a:95:7e:ba:e8:44:e4:8d:1f:58:35:f1:a4:b5:be:a5:
53:7b:eb:82:c9:51:ca:a3:f6:f4:83:1b:dc:00:d4:e6:bd:ec:
36:a9:ba:46:f9:7d:ca:52:65:78:8f:27:26:42:65:f1:ce:66:
00:73:d3:26:d2:14:75:1f:4c:d3:44:15:ef:5b:ca:e7:c2:6f:
24:d9:3e:3f:f6:11:52:ed:1f:48:23:af:13:14:61:86:a5:53:
43:22:90:c9:c6:27:91:64:b9:70:e6:25:1e:82:5c:4e:f6:5a:
55:99:2e:5c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECgMZRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
M2YzNTkwODA5ZDE4N2Y3YjM2MWZiMjRjZDQzZjkzZjY2NGIyMGIzMB4XDTIyMDEw
MTA2NTQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzk2YTc0M2M1MzVm
YmZmYjA0ZDBkZjFkMDVmN2RiNWUxMzFhZTlmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOABYkBBpgsNhAxkxKacWZICXfYZtBSWb0usakFI1dLE3gdt
KnIhFp8WcRVCTZv/ttwAWsYOi/K53j+H+OD5hrkZA/ragki5rxZuBU2kGXw95/mT
TKKNLMxot+iNQVq13ujPqqH6J+5NkYENAjIwKh/bAdRAxMOYkZCzYjc0jpmOwuQ9
Zy0Jk/UoIziQbNEQQwjz0F6otTOM2f1h2qqRCgxF5v9I0pCS79oUtSeCvJi7cEw0
bfCt0wPN13IpTLTOTy1Qfe/qx6YYwm3ybAbjg2nebZ2WmA46vksrFS5oWb/AJZ9l
V814OiJBKOIwM+mXWaQUuYra/X4IvjPa2HC00IMCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBTJanQ8U1+/+wTQ3x0F99teExrp+TAfBgNVHSMEGDAWgBRT81kICdGH97Nh
+yTNQ/k/ZksgszAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VfTlpDQW5SaF9lellmc2t6VVA1UDJaTElMTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvZGU2MzgzLTRhZDUtNDU3Yi05NTNjLWE3NzZmZWRlOTkwNS8x
L3lXcDBQRk5mdl9zRTBOOGRCZmZiWGhNYTZmay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
ZGU2MzgzLTRhZDUtNDU3Yi05NTNjLWE3NzZmZWRlOTkwNS8xL1VfTlpDQW5SaF9l
ellmc2t6VVA1UDJaTElMTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALkBiTAPBAIAAjAJAwcAIAEH+ADb
MA0GCSqGSIb3DQEBCwUAA4IBAQBxEpon0vjMIz+5eUTJX6PCQMeozGRcIqLd1cH4
778gRlk765pAIHOgmYZrnxpEfYNFqAqqSARsw1cmAzEgajEHi/twoJVxzNY25jW5
gu9s3fmLGfSRQK/GwUfvcVxwGUwGdfzlkEk7fQ1tMbkluQTKy3L1ht0SkCmDIO1C
9B+vIPnh1+hWSsp19SHgv+Qu6jypJlqVfrroROSNH1g18aS1vqVTe+uCyVHKo/b0
gxvcANTmvew2qbpG+X3KUmV4jycmQmXxzmYAc9Mm0hR1H0zTRBXvW8rnwm8k2T4/
9hFS7R9II68TFGGGpVNDIpDJxieRZLlw5iUeglxO9lpVmS5c
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:50 2024 by rpki-client on console-ams.rpki-client.org