Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/a18cf1-a080-4945-8b21-05556959c455/1/ynx_Nn5tybsUlXmvHI6-OLplvCk.roa
File: ynx_Nn5tybsUlXmvHI6-OLplvCk.roa (raw, json)
Hash identifier: 9B3mn4yU4YpWgqCw3YQSAw2eGKhuextKiaR7UXW0hAc=
Subject key identifier: CA:7C:7F:36:7E:6D:C9:BB:14:95:79:AF:1C:8E:BE:38:BA:65:BC:29
Certificate issuer: /CN=e180ebbbca0f890de353891421a83dd5b653d940
Certificate serial: 16FB04E3
Authority key identifier: E1:80:EB:BB:CA:0F:89:0D:E3:53:89:14:21:A8:3D:D5:B6:53:D9:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4YDru8oPiQ3jU4kUIag91bZT2UA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/a18cf1-a080-4945-8b21-05556959c455/1/ynx_Nn5tybsUlXmvHI6-OLplvCk.roa
Signing time: Fri 15 Apr 2022 11:53:46 +0000
ROA not before: Fri 15 Apr 2022 11:53:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 185.182.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385549539 (0x16fb04e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e180ebbbca0f890de353891421a83dd5b653d940
Validity
Not Before: Apr 15 11:53:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca7c7f367e6dc9bb149579af1c8ebe38ba65bc29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3a:6e:b6:a4:a0:1c:03:8c:aa:f6:fe:5b:30:
e9:b9:1a:06:70:66:78:9d:48:7d:89:42:b0:3a:d4:
ad:45:63:5d:39:92:12:63:dd:fb:31:7d:e6:a4:6c:
b4:6c:98:e2:ce:61:4a:49:7f:8e:79:f6:74:b2:57:
62:96:0f:07:72:04:4c:b9:85:91:d1:86:55:13:3c:
35:84:c7:f1:64:73:8c:2f:d7:1b:60:a8:f9:e9:0e:
a6:eb:3c:ce:16:b8:83:3e:0f:1e:e3:54:40:9c:79:
09:1f:d2:70:e5:4b:b2:4e:3d:76:7b:4f:12:9a:dd:
b7:06:9b:9e:f5:df:98:1d:80:15:f3:f7:c5:d8:e6:
0e:a9:2e:13:f0:e2:8d:b2:cd:ae:d1:ea:d1:39:c2:
c5:8b:8d:86:ef:c0:2c:1c:2a:50:9b:4e:bd:86:0d:
52:fc:41:0d:78:dd:4d:7c:86:28:fa:2a:0f:3e:db:
d0:a3:86:c4:45:47:03:88:fe:3a:a1:e7:72:56:f9:
27:92:25:3e:73:f2:5b:3f:0b:9c:af:a8:ae:a1:d4:
ae:d0:f3:54:c5:9e:98:f3:cd:18:84:b9:bd:c3:a9:
a4:0b:46:12:5f:8c:c9:bd:cb:76:d6:4c:29:39:fb:
b6:28:54:1f:2f:c3:32:0c:ec:e3:bd:93:f0:f4:1d:
38:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7C:7F:36:7E:6D:C9:BB:14:95:79:AF:1C:8E:BE:38:BA:65:BC:29
X509v3 Authority Key Identifier:
keyid:E1:80:EB:BB:CA:0F:89:0D:E3:53:89:14:21:A8:3D:D5:B6:53:D9:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4YDru8oPiQ3jU4kUIag91bZT2UA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a18cf1-a080-4945-8b21-05556959c455/1/ynx_Nn5tybsUlXmvHI6-OLplvCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a18cf1-a080-4945-8b21-05556959c455/1/4YDru8oPiQ3jU4kUIag91bZT2UA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.108.0/24
Signature Algorithm: sha256WithRSAEncryption
14:1a:14:0a:10:62:b3:a4:55:f7:bc:4e:1d:2d:a1:c0:60:ce:
79:6b:30:69:3c:89:01:a4:a3:02:55:89:7c:3d:46:d9:fb:3f:
ed:a8:30:6d:74:86:42:5d:71:2d:11:8c:a3:f9:ec:cc:89:7a:
ae:e4:95:b7:6f:6b:ac:d5:96:f7:a0:e2:f2:9d:44:41:8f:b6:
c7:29:69:a6:bb:53:f8:d0:29:83:6a:1a:65:af:51:0b:aa:79:
f5:97:11:a9:38:0c:a1:cd:33:84:e0:39:59:c3:c1:70:c0:ea:
bd:fd:51:12:79:5b:3d:29:2b:d3:56:3d:27:a3:4d:02:25:3c:
4b:8f:71:f6:51:87:b0:8d:fd:5e:a6:a1:7d:e6:1d:c7:48:07:
96:ed:8f:33:22:13:91:f4:cf:d1:10:b3:25:51:e2:24:0f:96:
38:79:e6:69:b0:a6:4d:22:95:56:92:a6:62:8b:b0:71:71:1f:
a5:ae:e8:aa:ab:f3:72:b9:46:5a:70:51:d1:ee:85:ce:5e:ce:
ac:54:59:86:03:23:83:bd:56:60:42:5a:93:f7:4d:49:c9:60:
ed:22:9e:22:51:7d:67:e7:57:86:77:6f:f8:fb:8d:a4:02:05:
65:1c:34:fc:dc:32:a4:0f:42:22:c7:ff:fb:ee:39:60:66:64:
e8:77:9e:f4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFvsE4zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTgwZWJiYmNhMGY4OTBkZTM1Mzg5MTQyMWE4M2RkNWI2NTNkOTQwMB4XDTIyMDQx
NTExNTM0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2E3YzdmMzY3ZTZk
YzliYjE0OTU3OWFmMWM4ZWJlMzhiYTY1YmMyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOo6brakoBwDjKr2/lsw6bkaBnBmeJ1IfYlCsDrUrUVjXTmS
EmPd+zF95qRstGyY4s5hSkl/jnn2dLJXYpYPB3IETLmFkdGGVRM8NYTH8WRzjC/X
G2Co+ekOpus8zha4gz4PHuNUQJx5CR/ScOVLsk49dntPEprdtwabnvXfmB2AFfP3
xdjmDqkuE/DijbLNrtHq0TnCxYuNhu/ALBwqUJtOvYYNUvxBDXjdTXyGKPoqDz7b
0KOGxEVHA4j+OqHnclb5J5IlPnPyWz8LnK+orqHUrtDzVMWemPPNGIS5vcOppAtG
El+Myb3LdtZMKTn7tihUHy/DMgzs472T8PQdOLsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTKfH82fm3JuxSVea8cjr44umW8KTAfBgNVHSMEGDAWgBThgOu7yg+JDeNT
iRQhqD3VtlPZQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRZRHJ1OG9QaVEzalU0a1VJYWc5MWJaVDJVQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjgvYTE4Y2YxLWEwODAtNDk0NS04YjIxLTA1NTU2OTU5YzQ1NS8x
L3lueF9ObjV0eWJzVWxYbXZISTYtT0xwbHZDay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjgv
YTE4Y2YxLWEwODAtNDk0NS04YjIxLTA1NTU2OTU5YzQ1NS8xLzRZRHJ1OG9QaVEz
alU0a1VJYWc5MWJaVDJVQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALm2bDANBgkqhkiG9w0BAQsFAAOC
AQEAFBoUChBis6RV97xOHS2hwGDOeWswaTyJAaSjAlWJfD1G2fs/7agwbXSGQl1x
LRGMo/nszIl6ruSVt29rrNWW96Di8p1EQY+2xylpprtT+NApg2oaZa9RC6p59ZcR
qTgMoc0zhOA5WcPBcMDqvf1REnlbPSkr01Y9J6NNAiU8S49x9lGHsI39XqahfeYd
x0gHlu2PMyITkfTP0RCzJVHiJA+WOHnmabCmTSKVVpKmYouwcXEfpa7oqqvzcrlG
WnBR0e6Fzl7OrFRZhgMjg71WYEJak/dNSclg7SKeIlF9Z+dXhndv+PuNpAIFZRw0
/NwypA9CIsf/++45YGZk6Hee9A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org