Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ypip9reyG826Pj-1Ziau57_eyvg.roa
File: Ypip9reyG826Pj-1Ziau57_eyvg.roa (raw, json)
Hash identifier: 8oOXcxSGJCOHu3X1yv5O9fp8KWfHvFaJUDQ7S6XTTvk=
Subject key identifier: 62:98:A9:F6:B7:B2:1B:CD:BA:3E:3F:B5:66:26:AE:E7:BF:DE:CA:F8
Certificate issuer: /CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Certificate serial: BD55C3
Authority key identifier: 2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ypip9reyG826Pj-1Ziau57_eyvg.roa
Signing time: Sat 01 Jan 2022 13:54:35 +0000
ROA not before: Sat 01 Jan 2022 13:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210657
IP address blocks: 194.62.61.0/24 maxlen: 24
194.62.62.0/24 maxlen: 24
194.62.63.0/24 maxlen: 24
194.62.60.0/24 maxlen: 24
2a0c:fcc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12408259 (0xbd55c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Validity
Not Before: Jan 1 13:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6298a9f6b7b21bcdba3e3fb56626aee7bfdecaf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ff:75:23:cd:d2:1a:82:6e:85:9b:07:35:7c:
26:80:5d:f5:6b:ed:d8:94:b8:b3:2e:24:35:4a:70:
1c:d0:c7:4c:55:0b:0b:d7:42:6d:e1:01:2d:5b:6f:
9a:6d:3f:c1:db:42:f1:9b:57:7e:15:4d:23:fb:45:
10:f9:0d:51:60:14:b6:44:be:fb:d6:64:35:20:a6:
5f:bc:ed:59:1e:b6:b4:9d:3b:ff:28:66:e3:ef:65:
23:b1:14:90:3b:74:c2:cd:b5:19:46:04:c7:8d:7c:
6a:0a:84:41:d3:02:98:f1:27:d3:45:e7:d9:f8:88:
15:bd:0a:58:53:92:ef:fa:aa:0f:22:2c:b7:fd:51:
eb:54:94:5b:e8:4e:c8:29:92:21:d8:b8:ea:47:9d:
e8:6b:72:a8:a3:8d:a0:de:55:a6:59:04:3a:af:ac:
f7:a0:6b:af:fc:04:55:b2:d1:d7:dd:03:22:5a:46:
ba:5c:f9:41:18:70:d7:cd:58:24:13:e3:13:88:aa:
68:96:20:c2:2d:b5:8d:26:e9:44:7f:e0:fb:b4:96:
88:1c:54:6d:f0:d6:7c:4b:0e:b7:a7:2d:1f:81:ff:
87:3a:fa:94:9d:72:09:9a:85:97:7d:e1:f1:df:01:
1d:5e:99:03:1e:f1:fa:4a:bd:db:34:da:15:6b:99:
f8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:98:A9:F6:B7:B2:1B:CD:BA:3E:3F:B5:66:26:AE:E7:BF:DE:CA:F8
X509v3 Authority Key Identifier:
keyid:2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ypip9reyG826Pj-1Ziau57_eyvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.60.0/22
IPv6:
2a0c:fcc0::/32
Signature Algorithm: sha256WithRSAEncryption
8f:f3:18:e1:f4:f6:f9:8b:63:90:1a:57:59:d2:90:b3:40:c0:
b5:bc:dc:15:7c:11:a8:e7:d7:98:7b:6a:24:2d:ec:6f:c7:e9:
4f:05:62:95:10:e8:df:b9:df:d9:5f:01:4d:1c:0c:45:69:40:
dc:55:35:04:c6:d8:11:82:7e:28:df:7c:93:ff:d6:f9:75:99:
8f:36:e6:eb:b5:d5:5a:4a:79:28:f7:be:b4:ee:1e:35:23:f2:
f8:7e:58:49:ee:ba:49:ed:1f:c2:23:67:37:ac:a9:d0:d6:52:
e5:21:62:aa:d9:5b:14:bc:7f:ca:e8:55:62:7e:47:fd:24:00:
13:83:fa:72:2b:13:46:cc:49:eb:d1:f0:ce:ea:bf:5e:ea:80:
07:94:42:20:82:8a:92:ff:49:70:76:ad:33:10:d7:f5:cb:0b:
a3:d1:25:8c:0e:a1:40:18:c7:8a:e1:78:f2:8a:43:38:49:36:
7d:79:9f:0b:9c:4a:9a:f4:51:0e:0a:e4:eb:e7:08:f8:3e:9e:
bc:4a:8e:2c:c9:49:5e:f9:15:20:61:f9:7c:44:f3:aa:2e:30:
54:ce:db:d1:18:e2:83:e1:a3:60:40:1f:de:7f:77:fc:b8:8f:
5e:1e:06:5b:92:b0:89:d9:a2:44:31:b0:6a:0a:bb:eb:33:df:
0f:84:cd:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:16:06 2025 by rpki-client