Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/YeZdozpIM18yuTYUNFAH6pykHSA.roa
File: YeZdozpIM18yuTYUNFAH6pykHSA.roa (raw, json)
Hash identifier: d2eK6x6agjVCRhyromwXiSePdvIZiq+VvL7rRZMzjbs=
Subject key identifier: 61:E6:5D:A3:3A:48:33:5F:32:B9:36:14:34:50:07:EA:9C:A4:1D:20
Certificate issuer: /CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Certificate serial: 018BAF44B403370EE232B707A104748F5B3E
Authority key identifier: 95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/YeZdozpIM18yuTYUNFAH6pykHSA.roa
Signing time: Wed 08 Nov 2023 14:09:57 +0000
ROA not before: Wed 08 Nov 2023 14:09:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39421
IP address blocks: 203.55.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:af:44:b4:03:37:0e:e2:32:b7:07:a1:04:74:8f:5b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9522ab67922ce0275e8c61abfa82d2a754af6dc4
Validity
Not Before: Nov 8 14:09:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61e65da33a48335f32b93614345007ea9ca41d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:38:c1:41:db:ce:ad:c1:fc:d5:81:f3:0e:bb:
22:6a:a8:19:72:d9:cd:2d:61:e1:d2:ad:85:01:ed:
ac:eb:55:63:ec:20:14:2f:80:95:50:3d:8d:a7:11:
67:d3:23:89:ff:70:ac:5f:6d:6a:4a:a5:d4:92:10:
e7:5c:94:7a:67:72:96:4d:41:35:ee:f6:56:36:a5:
4e:f3:a5:d2:0a:63:bc:14:4b:02:01:07:dd:76:93:
41:06:67:a9:3b:ee:e9:3c:5e:d8:e2:d6:1a:61:e5:
d7:52:e1:68:e2:00:22:6c:8d:71:3a:69:6e:fe:0a:
ce:d1:7d:8f:38:e6:1a:85:45:5a:11:49:f1:4f:8d:
86:f2:7a:87:77:6e:2b:23:5d:ab:ba:e5:fd:36:72:
e6:68:bf:c3:6b:0e:b8:6a:bc:c8:45:0d:f0:f2:67:
19:86:be:5e:59:fe:e5:1e:82:69:3c:99:3c:d8:19:
a7:62:ad:a3:13:a4:d8:e0:a7:65:f9:0b:94:fd:44:
92:3c:da:35:45:03:d3:60:d7:66:9a:71:f1:99:ef:
6e:99:3f:f2:96:0e:26:f2:90:d8:d8:6f:b6:82:be:
d4:b2:45:e0:05:ad:91:9e:55:15:f0:bf:59:ff:71:
e8:4a:59:4a:af:9e:00:8c:82:f1:0b:91:04:10:a1:
13:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E6:5D:A3:3A:48:33:5F:32:B9:36:14:34:50:07:EA:9C:A4:1D:20
X509v3 Authority Key Identifier:
keyid:95:22:AB:67:92:2C:E0:27:5E:8C:61:AB:FA:82:D2:A7:54:AF:6D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/YeZdozpIM18yuTYUNFAH6pykHSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68918e-e9da-406b-9931-e526a9409fb8/1/lSKrZ5Is4CdejGGr-oLSp1SvbcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.55.81.0/24
Signature Algorithm: sha256WithRSAEncryption
80:aa:f4:aa:96:ef:46:2f:49:d7:b7:a3:a0:0b:c5:79:70:d9:
ca:1d:ca:3a:ed:cc:65:bc:94:00:c1:3a:51:b9:13:4f:b1:b7:
01:20:a0:c9:a8:3d:76:cf:52:92:f0:95:b5:eb:94:50:bf:3a:
81:8a:f4:bb:28:41:af:e3:25:75:3c:d3:5b:7b:81:6e:c0:b2:
cc:c8:a1:ba:6c:44:00:b0:05:2b:e7:d3:25:87:84:56:04:b1:
e8:63:02:68:0a:da:44:63:77:02:d8:e5:cf:35:b6:bf:e7:79:
00:2c:10:d7:4e:0a:fb:78:12:82:95:f5:16:4f:fa:28:38:e5:
eb:90:14:39:0b:d5:65:b8:39:65:cf:be:e8:c1:a4:c6:df:6d:
90:98:2f:25:33:22:02:4f:bc:3b:bd:09:d6:ee:a7:fc:d5:11:
df:03:2e:61:62:c5:dc:78:d2:5d:22:b8:33:f8:04:7e:21:10:
cb:3c:b0:a3:c7:76:b9:09:1b:40:4c:2b:bd:c4:4b:68:65:03:
83:06:6d:26:c9:67:19:4d:7b:c2:ab:57:e1:4f:7e:36:c4:1d:
eb:3c:21:72:2c:67:bb:f5:05:5c:ac:00:d0:ca:59:9e:ed:f7:
dd:ca:a2:f1:58:c8:f6:84:30:45:ea:93:54:f4:32:a7:f2:5a:
6e:e6:f7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 07:20:42 2025 by rpki-client