Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/1YUAKRP2JmCMtmUDEwSHwGBTGgc.roa
File: 1YUAKRP2JmCMtmUDEwSHwGBTGgc.roa (raw, json)
Hash identifier: Pruiowx6aL3oGdQrFnXZ2axzeVMdgr55J5fomGfGtXk=
Subject key identifier: D5:85:00:29:13:F6:26:60:8C:B6:65:03:13:04:87:C0:60:53:1A:07
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A20FA76
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/1YUAKRP2JmCMtmUDEwSHwGBTGgc.roa
Signing time: Thu 28 Apr 2022 07:53:07 +0000
ROA not before: Thu 28 Apr 2022 07:53:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61301
IP address blocks: 89.252.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169933430 (0xa20fa76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d585002913f626608cb66503130487c060531a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:13:6e:b3:fc:8a:f7:c1:cd:fe:2c:22:76:d7:
7c:4d:20:06:15:29:fc:25:63:da:c0:97:17:49:ea:
ad:e4:9e:91:96:19:4d:c2:c3:a2:80:b5:53:0d:fc:
4c:fb:03:ed:e9:66:29:d6:17:0b:d8:66:9d:07:39:
c4:9d:51:b3:bc:16:9f:c2:f8:af:78:82:0d:82:78:
72:5e:8e:3d:96:1d:15:f6:47:3c:64:e6:4f:eb:6c:
0f:31:9f:4b:70:d6:1c:9f:8f:90:57:85:d8:29:a7:
41:c4:26:11:3d:bd:d1:b5:94:3a:b4:06:02:02:22:
42:31:6d:0b:75:e1:42:c4:0a:42:a2:e1:67:b4:bd:
23:85:3a:f4:0a:2a:e1:cb:d1:75:90:85:ec:49:d6:
f5:88:a8:59:1c:f8:f8:bb:04:61:07:e1:60:bc:dd:
f7:83:1f:b2:e8:45:50:55:45:b7:3b:8d:bb:96:0c:
ad:6f:d2:86:70:a7:fd:5b:3e:7b:e7:1f:be:2b:fa:
f8:c3:06:31:a6:95:3a:4e:f9:21:af:b7:5c:3c:6b:
40:d3:f0:ce:67:ba:61:09:40:77:b5:34:2d:39:38:
25:14:18:15:ae:5f:32:75:77:7a:c5:5a:3f:e3:1c:
7a:39:65:0e:f9:68:db:28:5e:f9:b3:c0:e9:c5:29:
aa:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:85:00:29:13:F6:26:60:8C:B6:65:03:13:04:87:C0:60:53:1A:07
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/1YUAKRP2JmCMtmUDEwSHwGBTGgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.201.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:30:71:9b:f1:0f:d0:9f:5a:b3:24:c0:8a:9e:d3:91:70:20:
8d:25:21:78:71:c5:00:f9:8c:c1:42:bc:78:5e:ab:a5:1b:92:
f2:e1:fe:74:f0:26:bb:a8:4c:ac:38:b1:b7:61:bd:4d:36:17:
1c:7c:74:1b:3f:70:b5:a0:32:c7:8a:12:ea:bc:f0:15:67:36:
73:25:cb:16:d9:b6:5d:db:34:a9:2b:33:e9:45:6a:da:1a:b4:
ab:07:e7:74:a0:6b:e5:9d:3d:ff:42:68:0e:ea:e0:b5:60:2e:
5a:3f:be:58:64:04:6a:09:65:7e:95:17:29:46:fd:9a:04:92:
fd:c6:9d:a6:2d:59:bd:bd:40:01:a6:f5:ec:1b:5c:9d:36:72:
d5:98:11:f1:8d:0d:cf:b9:9d:09:85:77:85:d1:16:9b:e0:c3:
b1:cc:cf:fa:0e:d7:b2:c2:37:71:43:f5:28:df:b0:d2:01:6f:
f4:c6:d6:64:91:4f:23:0e:36:0e:03:76:af:f1:f1:12:7e:ca:
5b:a9:82:4b:2f:0d:01:4e:c1:8e:9f:d3:e0:a7:85:8a:07:d2:
55:21:b5:40:df:b0:1d:4a:99:c3:8a:38:de:4a:e7:c9:05:c2:
fe:21:42:88:52:09:9f:da:93:93:f0:02:4c:ce:0c:27:5a:09:
95:4d:92:01
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECiD6djANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTA0YTQwODIxYzQxNzZjYzQyZTI1NWVmNmMxNzI3NDczYzNmMDBhMB4XDTIyMDQy
ODA3NTMwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDU4NTAwMjkxM2Y2
MjY2MDhjYjY2NTAzMTMwNDg3YzA2MDUzMWEwNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANETbrP8ivfBzf4sInbXfE0gBhUp/CVj2sCXF0nqreSekZYZ
TcLDooC1Uw38TPsD7elmKdYXC9hmnQc5xJ1Rs7wWn8L4r3iCDYJ4cl6OPZYdFfZH
PGTmT+tsDzGfS3DWHJ+PkFeF2CmnQcQmET290bWUOrQGAgIiQjFtC3XhQsQKQqLh
Z7S9I4U69Aoq4cvRdZCF7EnW9YioWRz4+LsEYQfhYLzd94MfsuhFUFVFtzuNu5YM
rW/ShnCn/Vs+e+cfviv6+MMGMaaVOk75Ia+3XDxrQNPwzme6YQlAd7U0LTk4JRQY
Fa5fMnV3esVaP+McejllDvlo2yhe+bPA6cUpqjcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTVhQApE/YmYIy2ZQMTBIfAYFMaBzAfBgNVHSMEGDAWgBRBBKQIIcQXbMQu
JV72wXJ0c8PwCjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FRU2tDQ0hFRjJ6RUxpVmU5c0Z5ZEhQRDhBby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2EvOTY5OTYyLTEyZDMtNDFiMi1hYjQzLWIyN2Q2ZTI3OGUxOC8x
LzFZVUFLUlAySm1DTXRtVURFd1NId0dCVEdnYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Ev
OTY5OTYyLTEyZDMtNDFiMi1hYjQzLWIyN2Q2ZTI3OGUxOC8xL1FRU2tDQ0hFRjJ6
RUxpVmU5c0Z5ZEhQRDhBby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFn8yTANBgkqhkiG9w0BAQsFAAOC
AQEAuzBxm/EP0J9asyTAip7TkXAgjSUheHHFAPmMwUK8eF6rpRuS8uH+dPAmu6hM
rDixt2G9TTYXHHx0Gz9wtaAyx4oS6rzwFWc2cyXLFtm2Xds0qSsz6UVq2hq0qwfn
dKBr5Z09/0JoDurgtWAuWj++WGQEagllfpUXKUb9mgSS/cadpi1Zvb1AAab17Btc
nTZy1ZgR8Y0Nz7mdCYV3hdEWm+DDsczP+g7XssI3cUP1KN+w0gFv9MbWZJFPIw42
DgN2r/HxEn7KW6mCSy8NAU7Bjp/T4KeFigfSVSG1QN+wHUqZw4o43krnyQXC/iFC
iFIJn9qTk/ACTM4MJ1oJlU2SAQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:18 2024 by rpki-client on console-ams.rpki-client.org