Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YdIyWSjrobUKSde73GFGpioQmP8.roa
File: YdIyWSjrobUKSde73GFGpioQmP8.roa (raw, json)
Hash identifier: y4YQEeiShUEEC0NsP5BXxfqeF6JWnWJHJs+ylQy7eqk=
Subject key identifier: 61:D2:32:59:28:EB:A1:B5:0A:49:D7:BB:DC:61:46:A6:2A:10:98:FF
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 044C7309
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YdIyWSjrobUKSde73GFGpioQmP8.roa
Signing time: Wed 23 Mar 2022 09:59:54 +0000
ROA not before: Wed 23 Mar 2022 09:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200740
IP address blocks: 185.94.164.0/24 maxlen: 24
185.200.190.0/24 maxlen: 24
185.94.164.0/23 maxlen: 23
185.94.165.0/24 maxlen: 24
185.103.252.0/24 maxlen: 24
185.117.116.0/24 maxlen: 24
185.103.253.0/24 maxlen: 24
185.103.252.0/23 maxlen: 23
45.9.72.0/24 maxlen: 24
91.217.76.0/24 maxlen: 24
185.103.254.0/24 maxlen: 24
185.117.119.0/24 maxlen: 24
185.103.255.0/24 maxlen: 24
185.103.254.0/23 maxlen: 23
194.36.178.0/23 maxlen: 23
46.17.105.0/24 maxlen: 24
2a04:5201:4::/48 maxlen: 48
2a04:5200:68::/48 maxlen: 48
2a04:5201:6::/48 maxlen: 48
2a04:5201:2::/48 maxlen: 48
2a04:5201:7::/48 maxlen: 48
2a04:5201:8018::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72119049 (0x44c7309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 23 09:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61d2325928eba1b50a49d7bbdc6146a62a1098ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fa:c6:7e:a2:04:54:dd:fa:28:bb:4e:82:97:
6a:1f:6e:01:66:6f:84:03:79:33:4d:6b:21:21:d7:
e4:55:c8:97:34:25:9d:78:6d:a7:9c:46:6e:83:4d:
04:98:81:59:9e:53:84:3f:45:65:f4:40:65:18:a7:
16:64:29:13:86:b1:bd:4d:bf:51:82:a8:5e:2c:d4:
a6:77:7e:3f:3a:8a:e9:a6:59:0d:73:a3:cd:5d:60:
80:a1:4a:88:1a:21:de:f5:ef:47:26:9f:85:27:18:
69:0b:84:62:d7:3d:c7:47:34:dd:97:0b:b9:be:f1:
f5:3f:ab:aa:d5:ab:6f:a5:ee:cc:6c:dc:e3:11:b9:
ce:1c:2a:ea:ee:d2:e7:92:5d:90:23:b2:99:ea:dc:
24:ae:8d:5e:8c:e0:1a:87:f8:ae:b6:e6:6f:10:d6:
4b:60:e5:cd:57:84:f7:c8:86:23:7a:dd:9c:57:2a:
93:f5:d1:c0:4c:8e:02:02:f2:c2:fd:fe:e1:6f:4c:
1f:c5:f5:0e:c5:83:5f:cd:67:ee:e2:3e:22:66:30:
9b:1a:ef:6c:73:48:32:59:fd:24:1b:25:9e:94:47:
6b:59:9c:75:c6:e6:b8:64:6b:83:32:4d:f7:74:fa:
13:6f:7b:31:4a:cc:b9:57:9e:37:66:d3:c8:89:51:
13:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D2:32:59:28:EB:A1:B5:0A:49:D7:BB:DC:61:46:A6:2A:10:98:FF
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YdIyWSjrobUKSde73GFGpioQmP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.72.0/24
46.17.105.0/24
91.217.76.0/24
185.94.164.0/23
185.103.252.0/22
185.117.116.0/24
185.117.119.0/24
185.200.190.0/24
194.36.178.0/23
IPv6:
2a04:5200:68::/48
2a04:5201:2::/48
2a04:5201:4::/48
2a04:5201:6::/47
2a04:5201:8018::/48
Signature Algorithm: sha256WithRSAEncryption
9a:e4:c3:b8:1d:bc:86:57:fa:cb:04:02:e3:40:43:a3:c2:f5:
f8:e4:5c:bb:a9:e0:7d:c3:5c:f6:be:8d:95:3d:b8:f6:36:f9:
67:b6:c3:b3:41:34:15:d8:03:df:21:03:bf:05:2f:16:1f:c5:
c1:29:09:8c:da:a8:c5:32:3c:a5:52:dd:e7:1a:9d:2b:bd:3a:
dd:d4:c2:f0:a0:59:db:e9:ab:9a:2b:c6:d5:82:0b:fc:16:bb:
db:07:84:32:c3:59:e2:bb:34:7d:73:e4:bb:3d:3b:cb:55:14:
25:5f:2d:d8:1a:aa:87:ab:2c:14:c8:08:d0:22:fe:e1:61:10:
99:67:8c:b1:41:50:d2:17:8c:73:51:fb:a9:f7:a2:af:13:e7:
4f:53:35:9c:a8:25:82:3e:5f:d3:6f:78:7b:2b:39:c9:48:69:
05:75:f7:5d:b2:cc:82:e7:d6:3d:4f:cc:23:8f:c1:88:c4:65:
db:e6:bd:33:6b:f6:30:02:97:9b:a1:90:fa:e2:9f:8a:fa:93:
f7:31:a7:bf:7e:31:e2:a3:17:a2:19:93:87:0d:c3:2a:89:e6:
3a:8a:59:8a:f0:0f:8e:9a:79:ad:91:2a:c2:31:0f:37:0b:97:
26:24:d2:7e:23:94:9d:25:34:1a:e0:13:7c:fc:f6:ce:d9:4d:
b5:15:74:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org