Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/e5a814-16a5-403b-93f3-cf32a0d92825/1/y8E0DN7ltpS0F_i_qF2xPCgh9xI.roa
File: y8E0DN7ltpS0F_i_qF2xPCgh9xI.roa (raw, json)
Hash identifier: j8UYAe2evrYovmD/e+XJIp2mElJR3WEAwkc/FIijrP4=
Subject key identifier: CB:C1:34:0C:DE:E5:B6:94:B4:17:F8:BF:A8:5D:B1:3C:28:21:F7:12
Certificate issuer: /CN=c256d25f1fdd00dc80dd6d225b21119bf2121e89
Certificate serial: 0989DB55
Authority key identifier: C2:56:D2:5F:1F:DD:00:DC:80:DD:6D:22:5B:21:11:9B:F2:12:1E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wlbSXx_dANyA3W0iWyERm_ISHok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/e5a814-16a5-403b-93f3-cf32a0d92825/1/y8E0DN7ltpS0F_i_qF2xPCgh9xI.roa
Signing time: Sat 01 Jan 2022 09:58:59 +0000
ROA not before: Sat 01 Jan 2022 09:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202757
IP address blocks: 185.255.217.0/24 maxlen: 24
185.255.216.0/24 maxlen: 24
185.255.219.0/24 maxlen: 24
185.255.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160029525 (0x989db55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c256d25f1fdd00dc80dd6d225b21119bf2121e89
Validity
Not Before: Jan 1 09:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbc1340cdee5b694b417f8bfa85db13c2821f712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e4:5a:8a:e7:cd:0a:58:00:7f:59:bf:a1:0a:
03:80:38:5d:8e:d2:8f:d5:34:65:70:39:68:fc:09:
26:79:72:24:68:00:32:95:9f:10:ad:6e:d8:cb:01:
59:69:14:86:9a:ad:5e:e2:51:8d:c4:94:c9:b7:0c:
4f:40:5e:ba:a1:82:44:9a:45:f9:bd:3d:82:c9:29:
f3:20:c6:04:92:82:34:20:bb:eb:ef:56:5d:61:2b:
2f:d3:2e:20:8a:02:18:bb:e4:41:7a:d4:b6:22:b4:
b4:03:23:91:1b:6a:47:39:a7:b6:cc:78:93:ca:9e:
6b:63:fa:b3:59:5b:6d:26:b4:68:bc:bd:b9:26:c2:
3d:55:d1:c3:0e:42:04:bd:d7:4f:36:34:72:ff:2a:
1c:b6:9c:7f:48:f8:ca:57:f1:21:6a:37:a8:0f:9f:
9b:c8:29:08:d7:be:49:6d:f7:50:53:ac:ae:3a:f1:
25:f0:f8:88:85:1c:fb:0e:e3:25:2a:c6:01:c7:6f:
bf:c0:ab:40:db:34:73:1a:ec:71:3b:57:42:85:d4:
06:d3:68:57:bd:f2:e4:b1:e1:ff:12:37:8c:85:27:
29:4c:23:e2:73:bf:f9:5e:0d:27:60:3f:25:9f:b2:
c9:0f:dc:5d:76:74:4c:2f:84:d3:fb:f6:ee:00:a7:
52:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C1:34:0C:DE:E5:B6:94:B4:17:F8:BF:A8:5D:B1:3C:28:21:F7:12
X509v3 Authority Key Identifier:
keyid:C2:56:D2:5F:1F:DD:00:DC:80:DD:6D:22:5B:21:11:9B:F2:12:1E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wlbSXx_dANyA3W0iWyERm_ISHok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e5a814-16a5-403b-93f3-cf32a0d92825/1/y8E0DN7ltpS0F_i_qF2xPCgh9xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e5a814-16a5-403b-93f3-cf32a0d92825/1/wlbSXx_dANyA3W0iWyERm_ISHok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.216.0/22
Signature Algorithm: sha256WithRSAEncryption
20:ec:ed:82:e7:54:da:78:01:1c:a0:7f:96:5e:d3:b2:c9:5f:
f4:c7:41:ce:72:2f:23:04:e4:25:c0:67:14:06:6b:23:90:47:
59:5f:28:3b:9a:b6:63:6f:f2:1c:f8:21:12:cc:0b:ae:31:f3:
b4:cf:c1:ce:eb:3f:5a:38:34:48:9a:e2:29:4a:f5:f6:b3:76:
95:65:9b:cd:d5:9b:b1:8f:3e:ad:93:4f:dd:26:58:7c:99:24:
f9:62:26:e8:3c:fa:29:0d:c6:d1:0a:ba:67:94:c7:02:9d:32:
86:ea:98:fb:2a:7e:4d:94:7d:43:a8:ed:e9:98:32:c4:4c:0a:
1b:40:2a:70:42:20:2e:4d:40:d8:18:d4:b1:76:2a:ba:b6:65:
f2:83:41:75:e0:9b:6b:98:7a:87:cf:89:da:e8:1d:c2:c4:4a:
64:57:c8:f2:b9:bd:81:38:0e:f7:15:c4:c5:77:11:22:4d:e7:
b7:35:e7:3c:ee:d8:b2:51:87:45:d1:af:a2:b1:3c:74:5a:b6:
70:03:e9:99:14:52:bb:ed:22:05:12:89:ca:de:41:fe:a7:0f:
95:02:ee:bb:68:be:66:1b:9a:9b:1b:5f:ca:1b:02:d7:00:32:
86:54:d9:54:8e:c3:e0:64:62:5c:be:9f:39:6a:6c:28:16:46:
96:f4:96:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:07 2024 by rpki-client on console-fra.rpki-client.org