Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Yvbbus7FxRC02op61G1PH03juXI.roa
File: Yvbbus7FxRC02op61G1PH03juXI.roa (raw, json)
Hash identifier: 7tqFuL8COdBIr14noT8cOVdVAqxIuq/qz5sCK1uDz6o=
Subject key identifier: 62:F6:DB:BA:CE:C5:C5:10:B4:DA:8A:7A:D4:6D:4F:1F:4D:E3:B9:72
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0A671769
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Yvbbus7FxRC02op61G1PH03juXI.roa
Signing time: Wed 23 Feb 2022 06:10:07 +0000
ROA not before: Wed 23 Feb 2022 06:10:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60025
IP address blocks: 85.133.194.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.236.0/24 maxlen: 24
85.133.234.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.253.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174528361 (0xa671769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Feb 23 06:10:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62f6dbbacec5c510b4da8a7ad46d4f1f4de3b972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:98:32:69:f9:9c:90:f9:c3:cb:5e:a3:3a:74:
d7:76:f5:22:4c:f1:a2:18:76:1c:9c:9e:fb:bc:31:
8e:ce:c2:f1:ed:97:8c:51:9a:75:d2:da:c3:3e:2f:
f9:42:55:e8:14:d5:e7:9b:cd:c8:50:5b:31:be:7c:
74:65:07:ca:49:8d:80:5b:bf:0e:b9:75:51:5a:b3:
2f:24:1c:8e:86:58:c4:07:9d:1d:85:1e:16:7f:02:
d2:63:2e:f7:b1:f6:d7:90:f9:6a:87:f8:b1:09:3d:
81:21:cf:f8:85:20:fd:6a:11:52:c4:69:cb:9f:b5:
e4:7e:a6:bf:f0:d9:dd:62:77:05:ef:f4:7b:cc:ec:
d4:7e:41:71:04:57:f2:bc:df:a3:39:de:2c:56:2b:
46:5f:91:f5:a0:8c:1f:5f:f1:f2:a9:fc:2f:09:bd:
9b:ce:b6:23:8e:59:7b:9b:61:b0:c1:a0:e8:08:2b:
8a:81:2e:d3:aa:42:e0:a1:f8:27:c5:2b:bf:3d:89:
8f:8e:06:87:98:24:53:57:92:9f:43:f5:c0:e5:a6:
bb:68:57:15:38:71:58:58:20:87:14:81:58:5f:dd:
31:fa:70:a7:e8:14:95:52:ac:03:51:7f:02:28:41:
9e:a5:6a:ee:7b:5e:5f:5e:4b:6e:e9:06:0d:4e:e9:
71:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F6:DB:BA:CE:C5:C5:10:B4:DA:8A:7A:D4:6D:4F:1F:4D:E3:B9:72
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Yvbbus7FxRC02op61G1PH03juXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.136.0/23
85.133.165.0/24
85.133.194.0/24
85.133.217.0/24
85.133.234.0/24
85.133.236.0/24
85.133.253.0/24
Signature Algorithm: sha256WithRSAEncryption
87:bb:91:4b:c9:b4:b9:5d:6d:41:d3:58:ca:13:17:67:ea:ee:
86:4f:c5:c9:9e:81:fa:c9:ec:e9:93:0a:d6:00:bd:d1:56:13:
be:8e:86:d6:b2:fe:23:ce:6b:03:15:fd:62:b1:54:8e:8a:88:
1c:ce:e2:e0:8f:42:4c:c0:37:dc:91:19:62:37:61:bc:4a:0e:
13:8b:db:97:15:b7:4b:b0:ba:c7:38:21:75:4e:42:b3:77:ff:
8e:af:f8:e7:eb:90:54:cf:4c:52:76:8f:3f:dc:70:69:a9:4b:
c4:ec:15:c4:f1:94:88:9a:1c:7f:4e:45:51:8c:0b:9d:ab:0b:
17:38:95:2f:2f:60:70:63:65:7a:f6:fb:8c:b6:6f:03:1a:e1:
18:66:39:a2:02:0b:47:34:06:22:d1:34:af:22:83:df:4d:cd:
4b:b8:18:ae:8a:2e:2f:af:a9:9f:c3:9e:da:a2:cf:37:d0:06:
93:75:2c:18:10:39:c3:4e:d2:4e:1d:28:c7:46:c6:f0:db:02:
5e:67:49:2c:dc:1f:c3:e5:fd:28:f6:32:94:b2:bf:1e:79:9b:
dc:d7:db:eb:c4:a3:26:f8:e8:c9:40:97:ae:ec:1a:4f:7d:56:
f8:a3:4a:f0:9b:51:42:05:86:84:ce:61:dd:a4:75:17:df:e2:
2b:5f:1c:4c
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIECmcXaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDVlMzk2NThhM2VmNmYxM2NhMjFjYzExYTRlMzNlYmNkOTQ2NzAyMB4XDTIyMDIy
MzA2MTAwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjJmNmRiYmFjZWM1
YzUxMGI0ZGE4YTdhZDQ2ZDRmMWY0ZGUzYjk3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKyYMmn5nJD5w8teozp013b1Ikzxohh2HJye+7wxjs7C8e2X
jFGaddLawz4v+UJV6BTV55vNyFBbMb58dGUHykmNgFu/Drl1UVqzLyQcjoZYxAed
HYUeFn8C0mMu97H215D5aof4sQk9gSHP+IUg/WoRUsRpy5+15H6mv/DZ3WJ3Be/0
e8zs1H5BcQRX8rzfozneLFYrRl+R9aCMH1/x8qn8Lwm9m862I45Ze5thsMGg6Agr
ioEu06pC4KH4J8Urvz2Jj44Gh5gkU1eSn0P1wOWmu2hXFThxWFgghxSBWF/dMfpw
p+gUlVKsA1F/AihBnqVq7nteX15LbukGDU7pcQcCAwEAAaOCAi0wggIpMB0GA1Ud
DgQWBBRi9tu6zsXFELTainrUbU8fTeO5cjAfBgNVHSMEGDAWgBTNXjllij728Tyi
HMEaTjPrzZRnAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pWNDVaWW8tOXZFOG9oekJHazR6NjgyVVp3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvZWY1MzZjLTAzZDMtNGFjNS1iMTI1LTVkMWZhNjZjMzYzYi8x
L1l2YmJ1czdGeFJDMDJvcDYxRzFQSDAzanVYSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
ZWY1MzZjLTAzZDMtNGFjNS1iMTI1LTVkMWZhNjZjMzYzYi8xL3pWNDVaWW8tOXZF
OG9oekJHazR6NjgyVVp3SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBD
BggrBgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEAVWFiAMEAFWFpQMEAFWFwgMEAFWF
2QMEAFWF6gMEAFWF7AMEAFWF/TANBgkqhkiG9w0BAQsFAAOCAQEAh7uRS8m0uV1t
QdNYyhMXZ+ruhk/FyZ6B+sns6ZMK1gC90VYTvo6G1rL+I85rAxX9YrFUjoqIHM7i
4I9CTMA33JEZYjdhvEoOE4vblxW3S7C6xzghdU5Cs3f/jq/45+uQVM9MUnaPP9xw
aalLxOwVxPGUiJocf05FUYwLnasLFziVLy9gcGNlevb7jLZvAxrhGGY5ogILRzQG
ItE0ryKD303NS7gYroouL6+pn8Oe2qLPN9AGk3UsGBA5w07STh0ox0bG8NsCXmdJ
LNwfw+X9KPYylLK/Hnmb3Nfb68SjJvjoyUCXruwaT31W+KNK8JtRQgWGhM5h3aR1
F9/iK18cTA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org