Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ykwTn_L7bn440Wh4d4lcKI4bzC4.roa
File: ykwTn_L7bn440Wh4d4lcKI4bzC4.roa (raw, json)
Hash identifier: lBbAA5AEP9BEW7TsEPPkN1FdqD2RFWrVeJVn2uqO+e4=
Subject key identifier: CA:4C:13:9F:F2:FB:6E:7E:38:D1:68:78:77:89:5C:28:8E:1B:CC:2E
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018419950277611B73C2272FA34DBD8E7660
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ykwTn_L7bn440Wh4d4lcKI4bzC4.roa
Signing time: Thu 27 Oct 2022 13:15:06 +0000
ROA not before: Thu 27 Oct 2022 13:15:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12714
IP address blocks: 93.91.224.0/24 maxlen: 24
95.129.92.0/23 maxlen: 23
93.91.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:95:02:77:61:1b:73:c2:27:2f:a3:4d:bd:8e:76:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 27 13:15:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca4c139ff2fb6e7e38d1687877895c288e1bcc2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:54:24:7e:71:12:83:c5:ea:e3:7e:db:7e:19:
ae:d0:d4:c1:64:d4:0a:6d:00:05:02:44:7e:aa:48:
fe:7c:fa:89:26:9a:61:b2:f7:c3:3d:27:54:c6:f8:
46:6e:c9:a4:62:e4:2c:64:7f:27:7d:f2:03:d0:a6:
02:6e:7e:06:f6:77:e3:e5:95:3c:40:ff:e6:c6:1b:
21:0a:c5:88:e7:ee:56:d1:23:b6:03:4c:58:05:1b:
dc:cc:53:74:fa:ad:ab:a8:d4:3c:cd:6a:05:79:a4:
51:01:65:c9:51:ca:2b:c0:5f:6e:49:25:d7:b7:62:
99:ef:9d:4a:04:f0:c8:66:0a:c0:d1:5c:cc:96:33:
1b:20:4b:37:9b:5e:08:97:d9:72:17:a4:7d:93:c7:
3c:48:07:40:4b:f9:3f:77:fd:2a:88:16:f0:23:16:
07:cd:61:42:d4:9c:56:a4:fa:99:73:1d:3d:81:c2:
71:15:b9:f8:0b:54:2e:ab:00:2d:58:24:64:ee:ec:
0f:fc:99:14:87:60:1c:13:df:95:d1:c3:24:5e:e8:
26:3e:13:2b:4e:9b:41:b0:f0:c8:75:4c:ad:02:d2:
79:2f:66:f6:1c:09:b0:26:7e:12:d9:6d:e7:4b:c8:
35:aa:65:56:41:3b:19:bd:a5:37:9e:33:01:80:f0:
38:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4C:13:9F:F2:FB:6E:7E:38:D1:68:78:77:89:5C:28:8E:1B:CC:2E
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ykwTn_L7bn440Wh4d4lcKI4bzC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.91.224.0/24
93.91.232.0/23
95.129.92.0/23
Signature Algorithm: sha256WithRSAEncryption
93:ec:14:0e:cc:b7:7c:ee:24:b7:0b:74:94:45:52:b5:88:0d:
d8:94:6f:c9:51:f6:35:93:e9:6d:b9:86:50:9f:01:d7:22:82:
d1:3f:cf:83:d4:9c:ed:6a:96:52:1f:4b:5f:fa:03:0e:16:1c:
eb:18:08:44:8a:71:1e:8f:6c:cb:1a:7d:5f:97:ed:6f:27:52:
42:89:23:ec:ae:8e:8c:98:d6:ba:43:7e:2b:0e:e2:75:78:7a:
bf:07:36:6a:ef:74:ca:a8:7a:1f:b6:0b:32:f9:0a:86:ed:59:
05:b5:8c:4a:d7:a8:2b:12:26:11:bd:0b:ae:e6:7a:53:be:bd:
8a:08:67:59:41:2f:0a:8a:8f:31:39:40:9e:d8:da:05:69:f3:
1f:1b:23:55:5a:34:ed:83:39:4d:81:e6:5c:74:42:f2:15:90:
a5:6c:de:f5:30:18:b8:41:f3:23:4d:08:61:88:02:9f:ab:b3:
96:e9:b6:27:49:b2:c1:8d:52:c1:25:d7:42:b7:3d:5f:6c:51:
7c:4b:16:87:fc:05:66:8d:43:ed:5e:fd:86:92:ff:11:54:d7:
7e:1b:b1:39:74:2f:f2:bc:f6:34:ee:8c:1d:77:cd:45:41:08:
7a:c8:b9:63:22:8d:13:4a:29:3f:8e:94:c9:94:7e:16:73:89:
cb:b1:d8:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:38 2025 by rpki-client