Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/YksMldf6eQQ3f4N-9dAWJPOYRJ4.roa
File: YksMldf6eQQ3f4N-9dAWJPOYRJ4.roa (raw, json)
Hash identifier: bAjeT6oj4Y7qLOOFwp4CSR0VYIXgmVgXikZYILvu/UY=
Subject key identifier: 62:4B:0C:95:D7:FA:79:04:37:7F:83:7E:F5:D0:16:24:F3:98:44:9E
Certificate issuer: /CN=be40b3c2be7835d7b37b5826102f8746a5199d49
Certificate serial: 4F3E6A
Authority key identifier: BE:40:B3:C2:BE:78:35:D7:B3:7B:58:26:10:2F:87:46:A5:19:9D:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkCzwr54Ndeze1gmEC-HRqUZnUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/YksMldf6eQQ3f4N-9dAWJPOYRJ4.roa
Signing time: Sat 01 Jan 2022 02:57:44 +0000
ROA not before: Sat 01 Jan 2022 02:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50352
IP address blocks: 91.242.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5193322 (0x4f3e6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be40b3c2be7835d7b37b5826102f8746a5199d49
Validity
Not Before: Jan 1 02:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=624b0c95d7fa7904377f837ef5d01624f398449e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e2:9c:41:f7:1f:a0:c6:e6:e6:f1:a3:11:e7:
90:d2:c2:c9:2b:6e:9d:3b:ed:44:e6:88:ab:93:56:
fb:49:f9:e3:d2:14:58:3c:6b:d2:20:31:14:58:b5:
f6:be:1f:d4:2b:9d:2f:bd:dd:a0:0a:80:d8:95:07:
54:a4:84:d9:27:8d:c8:0b:a6:d1:8a:67:d2:a9:31:
fe:a0:85:c0:1e:77:14:f1:f5:46:93:95:a5:d0:11:
30:a5:45:df:e6:8e:ee:11:95:02:9c:34:05:18:5f:
3d:de:90:df:2f:27:0f:a7:90:04:00:b0:61:95:46:
7d:8a:6d:ee:b1:de:e0:f1:c8:d2:69:13:03:5f:65:
e9:47:96:72:51:89:27:86:eb:8a:71:8b:36:fa:65:
bb:6e:9c:d7:a1:37:85:d9:00:74:52:61:d8:e2:d8:
94:62:5d:10:65:ad:a2:19:ca:36:fd:0b:f6:bf:95:
91:9e:9f:41:ec:c4:da:c2:44:10:2c:b6:6e:44:48:
79:a9:37:44:7e:c8:1f:ed:a6:7b:5f:b3:36:fd:1e:
8a:2c:a1:2c:b2:2a:66:8c:48:e1:34:40:ed:ff:4f:
a8:32:f8:82:f9:d2:88:6b:d1:dd:a1:85:23:70:37:
6d:ee:34:86:8f:73:26:af:90:96:c1:52:0e:fa:5b:
cc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:4B:0C:95:D7:FA:79:04:37:7F:83:7E:F5:D0:16:24:F3:98:44:9E
X509v3 Authority Key Identifier:
keyid:BE:40:B3:C2:BE:78:35:D7:B3:7B:58:26:10:2F:87:46:A5:19:9D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkCzwr54Ndeze1gmEC-HRqUZnUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/YksMldf6eQQ3f4N-9dAWJPOYRJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/vkCzwr54Ndeze1gmEC-HRqUZnUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.250.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:f7:d8:4e:7c:ab:5a:8b:47:95:18:0b:e9:bb:1d:43:87:aa:
68:9b:f2:04:4a:64:5a:6a:1f:45:0d:82:eb:75:3f:af:c8:4e:
7f:81:31:b2:fa:1f:b8:18:79:fe:52:16:5a:c8:dd:8d:60:ca:
52:43:1e:11:a5:ca:de:2c:8c:75:f6:e0:4f:d2:4e:58:2f:e1:
de:b4:d9:3a:10:15:12:ec:a4:a1:d0:10:32:e8:53:de:c1:92:
67:b9:18:28:76:c2:b2:50:78:82:99:ee:9a:41:43:ab:d7:d5:
f6:df:5f:73:b2:bc:15:0c:09:f2:a0:59:41:ac:d6:90:f8:1e:
82:61:bf:55:73:85:9f:de:d5:16:99:f1:d0:77:be:ac:c9:f8:
7a:2e:17:48:7e:ae:20:c1:8a:b4:dc:80:44:62:0e:3b:ac:e0:
f7:bb:ce:33:96:a5:ea:a9:20:07:2e:b1:8b:95:2e:4c:87:90:
17:55:f4:c5:a8:84:97:9e:de:3b:37:27:b2:71:21:34:8c:c6:
e5:82:cd:37:9c:1b:b3:41:a6:88:66:34:ed:64:05:51:eb:3f:
a4:9b:4a:ca:f9:de:df:a2:35:59:c9:32:45:f3:e8:0b:36:08:
d9:dd:5e:46:11:60:fe:41:1c:3e:a9:16:fd:aa:99:ea:f4:fe:
e0:9c:8e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net