Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/ypFK0getNfnmyVGCZfIwtZsKG00.roa
File: ypFK0getNfnmyVGCZfIwtZsKG00.roa (raw, json)
Hash identifier: 074/jvflIHGt/1FiL800PZUSsuQ1L3Ksn6wqqiByiW4=
Subject key identifier: CA:91:4A:D2:07:AD:35:F9:E6:C9:51:82:65:F2:30:B5:9B:0A:1B:4D
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 031ABBFB
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/ypFK0getNfnmyVGCZfIwtZsKG00.roa
Signing time: Thu 16 Jun 2022 06:17:43 +0000
ROA not before: Thu 16 Jun 2022 06:17:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62257
IP address blocks: 194.36.175.0/24 maxlen: 24
45.139.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52083707 (0x31abbfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jun 16 06:17:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca914ad207ad35f9e6c9518265f230b59b0a1b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:10:3d:9e:c4:bc:2d:0c:a5:d5:16:69:fd:2f:
40:47:07:6c:21:85:1f:72:d7:dc:36:fd:74:a2:e8:
20:95:ac:e8:58:78:af:16:eb:a2:e6:64:cf:14:73:
54:9f:ad:20:97:43:ea:77:34:2e:fa:c2:c1:49:86:
d2:a1:c5:45:05:d9:4a:ec:7e:e2:02:1a:69:b6:6c:
4f:eb:f8:c9:31:b6:82:d3:e2:38:ec:e7:e8:58:f3:
54:cb:31:4e:75:64:ea:16:9c:19:82:02:99:04:4e:
c7:fa:61:ad:3d:f4:e6:d3:a3:7f:e3:c7:b7:9f:4d:
ba:70:fb:3a:79:0e:1f:29:e0:bf:ec:53:d1:68:0b:
83:1d:97:2e:d3:c0:54:48:bd:6c:af:34:82:ac:32:
e2:31:67:f6:87:fa:f5:3e:9b:bd:7e:45:49:18:a4:
11:6f:c9:27:0d:a0:86:de:b2:8f:c5:bc:b9:c1:dc:
81:bf:90:9a:35:77:3e:c7:7b:e7:8e:40:79:40:d4:
1b:d2:14:af:89:4b:70:b6:f1:2c:ed:0a:52:01:17:
73:85:95:2b:e4:53:26:d2:c2:40:8d:00:b2:d0:ad:
ea:31:ef:40:a9:54:c8:10:f5:61:5d:c9:73:92:94:
a8:e7:ca:29:fe:de:70:75:f9:37:83:82:fe:38:7c:
bc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:91:4A:D2:07:AD:35:F9:E6:C9:51:82:65:F2:30:B5:9B:0A:1B:4D
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/ypFK0getNfnmyVGCZfIwtZsKG00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.8.0/22
194.36.175.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:73:6e:b0:37:d4:56:e1:ab:d4:b4:a1:b0:83:38:63:ce:99:
93:0d:c8:a4:f9:97:f0:08:b3:d1:27:d1:e9:51:d1:1f:fb:7d:
7c:42:47:a7:69:88:d4:ed:09:75:53:7a:66:f2:6e:8f:0a:bd:
0d:87:71:c9:fc:a7:a8:45:f4:a8:71:2d:71:ee:1c:0d:14:4d:
42:a5:a4:2c:83:01:91:85:2d:15:5f:c4:89:44:1c:46:16:11:
d9:de:1a:db:46:d0:b9:7b:41:36:7e:72:6c:74:cf:c8:75:a8:
cd:b9:b5:cf:f3:59:0a:3d:66:0f:af:fe:60:2d:90:a6:20:39:
a3:9b:40:37:21:36:9d:af:b2:4c:d6:98:37:34:0b:3f:3b:cd:
c2:44:f6:ec:3a:a3:5b:03:dd:b8:9b:f0:88:86:ce:16:44:29:
64:56:41:e5:c6:c1:93:4c:51:31:cf:38:38:fa:fc:9f:20:43:
40:b0:0b:15:f0:de:cc:fa:37:de:ce:52:00:e5:29:81:18:f5:
00:92:8f:05:34:c7:50:d0:e0:f1:f9:94:89:e7:50:ea:d3:a1:
46:47:10:8c:8e:a1:69:d1:3e:88:97:00:4d:cb:88:42:76:89:
3a:60:87:a8:4a:39:e5:42:3d:dc:c3:12:8a:d6:53:35:6b:56:
bd:fc:24:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org