Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/yl-KoxRN1KETaIs7LR_NCWzkC5E.roa
File: yl-KoxRN1KETaIs7LR_NCWzkC5E.roa (raw, json)
Hash identifier: OTdld/G2YEgpKx70exzzWhBRxDJ8z12IYz7I1mRvlt0=
Subject key identifier: CA:5F:8A:A3:14:4D:D4:A1:13:68:8B:3B:2D:1F:CD:09:6C:E4:0B:91
Certificate issuer: /CN=2d5894923bb002a434128810607dfb526722004f
Certificate serial: 0754DE73
Authority key identifier: 2D:58:94:92:3B:B0:02:A4:34:12:88:10:60:7D:FB:52:67:22:00:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LViUkjuwAqQ0EogQYH37UmciAE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/yl-KoxRN1KETaIs7LR_NCWzkC5E.roa
Signing time: Sat 01 Jan 2022 03:54:39 +0000
ROA not before: Sat 01 Jan 2022 03:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 193.34.16.0/22 maxlen: 24
2001:678:b64::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123002483 (0x754de73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d5894923bb002a434128810607dfb526722004f
Validity
Not Before: Jan 1 03:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca5f8aa3144dd4a113688b3b2d1fcd096ce40b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7c:6f:ce:cf:48:b8:37:8e:42:ee:a8:f2:94:
cb:29:b7:f2:c2:c5:2e:bf:d1:bc:42:8d:c8:ea:33:
5d:98:39:63:0a:95:93:15:8f:c4:67:56:65:bc:79:
f5:0f:c6:9a:78:0d:5a:40:ba:39:eb:1b:99:97:e7:
b1:66:86:66:8c:45:b2:17:12:e9:7d:7b:68:86:d2:
22:8e:2b:c7:34:fa:bd:82:d9:d8:b1:3f:2e:50:a5:
18:05:c5:97:96:43:c5:32:6f:a9:9d:e3:39:d9:43:
96:7e:8c:5d:1d:1d:07:fb:72:fd:c1:7f:b1:98:a1:
b3:71:cd:4d:99:41:30:c8:45:67:76:20:f6:1a:bc:
5e:98:43:3f:04:b4:72:ed:06:7a:e1:27:30:9a:b9:
58:c5:f3:7d:08:fc:8b:90:49:f4:1e:f8:73:ee:69:
9c:4d:e4:51:f1:bc:03:f9:43:d0:a1:54:3f:5d:de:
b3:2f:14:84:67:2b:70:2c:39:aa:68:f8:31:55:a8:
ee:50:a8:36:40:c0:70:58:b0:4f:5c:93:58:8c:55:
5d:74:74:41:cb:a1:f8:e5:31:68:18:48:61:62:4a:
7c:d8:7d:38:20:6e:b5:36:6d:fb:a5:ec:63:7b:e7:
fc:dd:04:f2:d8:72:ad:f9:a6:95:fb:d6:1a:8e:8f:
e0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:5F:8A:A3:14:4D:D4:A1:13:68:8B:3B:2D:1F:CD:09:6C:E4:0B:91
X509v3 Authority Key Identifier:
keyid:2D:58:94:92:3B:B0:02:A4:34:12:88:10:60:7D:FB:52:67:22:00:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LViUkjuwAqQ0EogQYH37UmciAE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/yl-KoxRN1KETaIs7LR_NCWzkC5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/LViUkjuwAqQ0EogQYH37UmciAE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.16.0/22
IPv6:
2001:678:b64::/48
Signature Algorithm: sha256WithRSAEncryption
ad:da:0c:a9:11:60:84:65:b2:8f:00:1e:2b:f4:07:1b:c2:74:
c4:c1:0d:12:87:cd:41:9f:61:14:a3:0b:3d:30:e1:84:cf:55:
e2:a8:97:a2:79:51:37:1e:35:29:9f:f4:d5:88:f2:93:8a:70:
a1:7f:1b:11:7c:cb:70:4f:b7:cc:da:f6:1e:90:59:9e:12:ee:
ea:f0:ff:be:27:c8:66:f8:35:7d:5f:f9:55:49:3c:3c:3f:2d:
29:18:2b:20:f2:7a:35:a3:cf:b9:5b:3f:5d:8a:fa:93:dc:b2:
c3:e5:32:74:a1:76:36:79:eb:a8:78:4f:4a:06:09:c9:c5:6c:
f9:14:63:3f:17:02:23:dd:91:ad:01:d0:37:44:35:b2:89:d2:
2b:b2:b3:48:ec:60:3f:51:12:ba:70:e2:f4:3f:40:c3:62:f2:
e8:ef:34:e3:c4:8c:26:34:78:ae:16:e0:c4:5f:8c:26:71:f1:
73:5f:31:dc:b3:9c:f7:d0:7c:27:b3:05:7d:af:5b:ef:18:4f:
50:59:6b:0c:f2:92:4a:fe:84:a9:87:6f:3b:64:44:18:e5:d2:
26:8f:8c:86:5b:3e:60:68:10:51:f6:90:4b:49:d5:1d:2e:5f:
52:21:42:d0:42:d2:49:ce:1b:8b:88:75:05:58:f4:cb:de:04:
c4:33:82:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:39 2023 by rpki-client on console-ams.rpki-client.org