Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/YT-SwRVxo61RfP6tAtZYoJBSh80.roa
File: YT-SwRVxo61RfP6tAtZYoJBSh80.roa (raw, json)
Hash identifier: axMJ4wEMHOPF/zUCDzFOtunuU2Buv2ui7R3hWN2LPzM=
Subject key identifier: 61:3F:92:C1:15:71:A3:AD:51:7C:FE:AD:02:D6:58:A0:90:52:87:CD
Certificate issuer: /CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Certificate serial: 087B3AD2
Authority key identifier: 8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/YT-SwRVxo61RfP6tAtZYoJBSh80.roa
Signing time: Sat 01 Jan 2022 07:52:55 +0000
ROA not before: Sat 01 Jan 2022 07:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8468
IP address blocks: 81.31.96.0/19 maxlen: 19
185.220.12.0/22 maxlen: 22
195.74.96.0/19 maxlen: 19
87.127.0.0/16 maxlen: 16
188.39.0.0/16 maxlen: 16
79.143.144.0/20 maxlen: 20
84.45.128.0/17 maxlen: 17
78.32.0.0/15 maxlen: 15
62.249.192.0/18 maxlen: 18
2001:4d48::/32 maxlen: 32
2001:4d48::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142293714 (0x87b3ad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Validity
Not Before: Jan 1 07:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=613f92c11571a3ad517cfead02d658a0905287cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:51:ff:6a:4b:a4:9e:08:f1:aa:4d:a0:dc:2e:
cc:db:e7:cc:75:ed:1c:07:1e:76:2c:99:c2:6c:ee:
8d:d3:35:d2:06:01:4a:5a:3e:73:54:e3:fc:cc:03:
1f:98:c0:08:f7:65:8d:3e:75:f7:9d:02:7e:b2:69:
b3:0f:ca:1e:2c:b4:2b:5b:73:a7:d3:0f:63:31:b7:
16:1f:e2:23:27:3e:fc:dc:3b:f3:fe:a1:4e:8d:6d:
3e:a4:4b:3b:48:24:45:7c:13:45:31:de:aa:02:6e:
91:94:c6:7b:99:aa:ec:25:7f:36:56:cf:87:8b:e0:
f5:62:cf:fe:49:6c:e5:ed:1a:ad:6a:53:64:26:5a:
5c:6e:49:8b:d9:02:1d:cb:35:d9:64:32:1f:b8:7c:
7c:c1:0f:24:01:b9:40:59:87:8d:8c:38:74:61:7b:
91:74:4b:f3:87:e9:7e:9b:ca:b4:4b:15:f5:00:c1:
29:1e:1f:0f:87:7b:e5:d4:d7:02:43:de:f7:df:61:
c3:99:88:1e:44:f4:96:9b:15:00:15:9d:cf:f7:d4:
ee:f4:d7:75:c8:49:c7:45:75:a8:d1:9e:94:50:48:
ba:5d:e0:35:66:15:94:86:5a:b4:71:5a:a7:99:fc:
bf:15:57:3a:25:f4:3b:21:12:aa:67:28:18:34:a2:
8d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3F:92:C1:15:71:A3:AD:51:7C:FE:AD:02:D6:58:A0:90:52:87:CD
X509v3 Authority Key Identifier:
keyid:8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/YT-SwRVxo61RfP6tAtZYoJBSh80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.249.192.0/18
78.32.0.0/15
79.143.144.0/20
81.31.96.0/19
84.45.128.0/17
87.127.0.0/16
185.220.12.0/22
188.39.0.0/16
195.74.96.0/19
IPv6:
2001:4d48::/29
Signature Algorithm: sha256WithRSAEncryption
1d:55:f8:2d:be:b0:69:bf:54:cb:da:d8:77:32:81:4d:7f:4f:
12:2c:16:ed:39:f6:0b:e9:0d:2f:5e:dd:6f:5d:dc:65:a0:c8:
08:ee:20:12:5f:9f:07:dc:af:ba:e3:2e:72:ea:15:2a:43:45:
a5:b2:60:31:2a:4d:f5:48:3a:aa:20:a9:4c:21:24:c1:88:74:
df:0a:25:f5:f4:2b:01:22:76:36:80:17:70:ec:c3:fa:9d:04:
37:53:d9:f3:55:60:71:ea:91:2a:a2:53:71:e8:8c:2c:84:70:
cb:6c:77:64:03:f6:8c:f0:dd:1c:6d:fd:aa:10:ef:93:1e:43:
b3:47:e8:52:42:fc:0e:f4:83:f6:d2:ab:e0:ff:e3:8d:c7:96:
44:bd:76:58:7b:b6:ab:6e:bb:89:36:72:6b:04:99:db:45:a4:
21:25:4b:55:08:90:91:63:e3:d6:17:e4:ff:ff:e2:38:4a:32:
84:cc:c7:17:c6:9d:45:1d:34:c5:10:60:a4:4a:fc:49:b8:c1:
0e:95:2c:b4:79:57:1f:cc:c9:f5:7d:38:35:bc:8d:46:7e:b2:
4a:ca:cf:7c:ae:45:b9:cb:a4:ff:dd:28:47:06:10:ee:64:ed:
6c:6e:9f:de:8f:fa:46:0e:16:e0:67:2d:3d:c7:b1:91:e3:ad:
f9:af:ad:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:44 2025 by rpki-client