Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/ypzsS0bFmdvI6VjJn_rc-j_yhf8.roa
File: ypzsS0bFmdvI6VjJn_rc-j_yhf8.roa (raw, json)
Hash identifier: A7LVr2p101b8T+6oVy/XukRLOsyQWVh7MuO6p5Wtx0I=
Subject key identifier: CA:9C:EC:4B:46:C5:99:DB:C8:E9:58:C9:9F:FA:DC:FA:3F:F2:85:FF
Certificate issuer: /CN=e6f1dedaf4dbda60da990d685650e68c888c6100
Certificate serial: 6B46DD
Authority key identifier: E6:F1:DE:DA:F4:DB:DA:60:DA:99:0D:68:56:50:E6:8C:88:8C:61:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vHe2vTb2mDamQ1oVlDmjIiMYQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/ypzsS0bFmdvI6VjJn_rc-j_yhf8.roa
Signing time: Sat 01 Jan 2022 02:53:00 +0000
ROA not before: Sat 01 Jan 2022 02:53:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 185.204.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7030493 (0x6b46dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6f1dedaf4dbda60da990d685650e68c888c6100
Validity
Not Before: Jan 1 02:53:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca9cec4b46c599dbc8e958c99ffadcfa3ff285ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d7:ae:0f:fb:f2:de:22:c3:5a:e5:e7:e3:e2:
af:27:d0:f2:db:34:e2:2a:6a:30:25:dc:25:60:1e:
e6:3a:33:5e:ae:31:f0:7f:b4:5e:77:de:47:e2:51:
b6:2a:cc:5a:b3:56:c3:32:07:d6:ff:9f:5d:19:26:
51:3c:c4:2f:ef:f8:a9:3e:22:0b:b8:f3:1b:88:5b:
47:be:8c:3b:e5:ab:6b:b3:96:46:dc:bf:5e:fc:78:
3f:e0:8b:2f:cc:4b:af:94:79:cd:73:fe:7a:05:50:
d6:9e:59:25:59:6d:0d:dc:fd:ab:f1:61:33:26:bb:
39:b1:60:11:c3:13:c5:c0:e4:86:dd:6d:9e:48:cc:
0d:84:39:fe:a8:43:f9:8d:07:ba:bc:2e:be:63:cd:
4e:fe:0d:7c:5f:55:36:6b:9b:f7:8f:26:da:b6:27:
72:73:b4:4e:38:cf:8f:5a:76:d7:9f:5a:17:46:5a:
cb:bb:1b:33:20:4c:58:69:f9:37:ac:38:89:95:11:
f7:28:3b:45:90:a2:f1:b9:44:10:2d:18:d5:e6:6a:
2c:b2:bd:14:ea:54:dc:dc:3a:8a:01:9b:24:f6:84:
ba:a1:3a:41:3b:96:c1:c1:e3:1b:57:f2:ed:4c:dc:
ec:04:ac:06:33:8b:1f:7f:c1:26:e7:6b:e9:3b:14:
5a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9C:EC:4B:46:C5:99:DB:C8:E9:58:C9:9F:FA:DC:FA:3F:F2:85:FF
X509v3 Authority Key Identifier:
keyid:E6:F1:DE:DA:F4:DB:DA:60:DA:99:0D:68:56:50:E6:8C:88:8C:61:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vHe2vTb2mDamQ1oVlDmjIiMYQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/ypzsS0bFmdvI6VjJn_rc-j_yhf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/23ba46-fc7a-4b97-8b4f-231657829ef5/1/5vHe2vTb2mDamQ1oVlDmjIiMYQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.92.0/24
Signature Algorithm: sha256WithRSAEncryption
79:a9:ce:33:61:13:33:ab:de:96:b7:61:e8:30:20:54:ea:7e:
84:8a:01:39:6b:a6:a3:de:be:2d:48:df:b4:db:78:ed:06:07:
60:8f:5c:2a:59:84:84:16:bc:43:d2:ff:a1:be:32:dd:c9:50:
e2:1c:5f:46:25:05:1e:f8:db:08:49:7e:1a:15:19:2a:a9:ca:
88:be:51:5a:93:ad:c4:16:1d:a5:44:3e:62:26:cb:44:91:87:
07:8f:e9:75:90:a8:28:7c:0e:f3:95:c1:45:26:f3:bb:7d:a5:
83:6d:1f:bc:d7:d9:68:d4:ef:7f:1c:ee:5c:02:02:9d:a7:21:
aa:8d:96:95:e5:01:7f:30:b3:df:f6:1f:16:60:94:1e:5d:05:
3b:c1:ca:cd:03:ca:b5:1c:0a:54:62:b1:9e:cd:02:f2:18:08:
23:53:e0:3a:ce:04:a8:15:ba:25:07:47:13:24:61:25:2c:43:
39:da:83:09:32:df:ca:61:1c:71:35:d4:40:7c:2f:f9:cb:37:
a6:d0:9c:33:c5:58:62:58:ca:6d:88:c9:72:9e:61:08:58:10:
1d:1e:d6:0b:74:ed:64:80:07:f1:03:20:2c:f8:20:e5:4b:d4:
5e:8f:59:be:94:41:67:95:1b:e9:8f:f8:ad:8f:b9:6b:17:b2:
76:65:49:fe
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDa0bdMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGU2
ZjFkZWRhZjRkYmRhNjBkYTk5MGQ2ODU2NTBlNjhjODg4YzYxMDAwHhcNMjIwMTAx
MDI1MzAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhjYTljZWM0YjQ2YzU5
OWRiYzhlOTU4Yzk5ZmZhZGNmYTNmZjI4NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvteuD/vy3iLDWuXn4+KvJ9Dy2zTiKmowJdwlYB7mOjNerjHw
f7Red95H4lG2Ksxas1bDMgfW/59dGSZRPMQv7/ipPiILuPMbiFtHvow75atrs5ZG
3L9e/Hg/4IsvzEuvlHnNc/56BVDWnlklWW0N3P2r8WEzJrs5sWARwxPFwOSG3W2e
SMwNhDn+qEP5jQe6vC6+Y81O/g18X1U2a5v3jybatidyc7ROOM+PWnbXn1oXRlrL
uxszIExYafk3rDiJlRH3KDtFkKLxuUQQLRjV5mossr0U6lTc3DqKAZsk9oS6oTpB
O5bBweMbV/LtTNzsBKwGM4sff8Em52vpOxRalQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFMqc7EtGxZnbyOlYyZ/63Po/8oX/MB8GA1UdIwQYMBaAFObx3tr029pg2pkN
aFZQ5oyIjGEAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NXZIZTJ2VGIybURhbVExb1ZsRG1qSWlNWVFBLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kNS8yM2JhNDYtZmM3YS00Yjk3LThiNGYtMjMxNjU3ODI5ZWY1LzEv
eXB6c1MwYkZtZHZJNlZqSm5fcmMtal95aGY4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8y
M2JhNDYtZmM3YS00Yjk3LThiNGYtMjMxNjU3ODI5ZWY1LzEvNXZIZTJ2VGIybURh
bVExb1ZsRG1qSWlNWVFBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucxcMA0GCSqGSIb3DQEBCwUAA4IB
AQB5qc4zYRMzq96Wt2HoMCBU6n6EigE5a6aj3r4tSN+023jtBgdgj1wqWYSEFrxD
0v+hvjLdyVDiHF9GJQUe+NsISX4aFRkqqcqIvlFak63EFh2lRD5iJstEkYcHj+l1
kKgofA7zlcFFJvO7faWDbR+819lo1O9/HO5cAgKdpyGqjZaV5QF/MLPf9h8WYJQe
XQU7wcrNA8q1HApUYrGezQLyGAgjU+A6zgSoFbolB0cTJGElLEM52oMJMt/KYRxx
NdRAfC/5yzem0JwzxVhiWMptiMlynmEIWBAdHtYLdO1kgAfxAyAs+CDlS9Rej1m+
lEFnlRvpj/itj7lrF7J2ZUn+
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:33 2023 by rpki-client on console-fra.rpki-client.org