Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/74228e-110c-46aa-8dea-0d145255fbb0/1/Y6zILXTtympO7ZjzGbSlmtqfVT4.roa
File: Y6zILXTtympO7ZjzGbSlmtqfVT4.roa (raw, json)
Hash identifier: X3D2GW5/hLp8ZIahsZxoBAI9Wst1sB+79sYssraUNhM=
Subject key identifier: 63:AC:C8:2D:74:ED:CA:6A:4E:ED:98:F3:19:B4:A5:9A:DA:9F:55:3E
Certificate issuer: /CN=877367fef9a2f86e45c642697230fc0ebad9b7a8
Certificate serial: 0D494FB2
Authority key identifier: 87:73:67:FE:F9:A2:F8:6E:45:C6:42:69:72:30:FC:0E:BA:D9:B7:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3Nn_vmi-G5FxkJpcjD8DrrZt6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/74228e-110c-46aa-8dea-0d145255fbb0/1/Y6zILXTtympO7ZjzGbSlmtqfVT4.roa
Signing time: Sat 01 Jan 2022 08:53:26 +0000
ROA not before: Sat 01 Jan 2022 08:53:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 185.229.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222908338 (0xd494fb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877367fef9a2f86e45c642697230fc0ebad9b7a8
Validity
Not Before: Jan 1 08:53:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63acc82d74edca6a4eed98f319b4a59ada9f553e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:26:bd:d1:13:c3:e0:78:fe:cd:bb:d4:c6:fa:
df:a2:88:cf:85:37:df:99:05:9c:c4:47:36:eb:bb:
3b:f9:b8:6e:ce:6f:63:75:d3:73:5d:d1:f4:fb:b6:
0c:1a:8b:64:df:8a:54:33:f4:92:a6:23:8d:53:40:
ef:b3:29:34:b6:50:51:e5:88:31:09:1c:1d:ed:58:
60:45:12:0d:cb:8c:9b:0b:2e:2e:fb:bc:2a:35:e3:
11:ce:23:f8:b7:6d:61:e8:71:21:6f:a8:14:5b:2c:
89:ec:37:17:98:1f:cd:54:dd:da:f0:22:e3:39:34:
6e:37:39:16:e2:c3:54:b9:48:c2:80:8f:31:cb:b7:
d8:a2:f7:5e:c6:de:8a:0a:e9:d3:e7:b4:20:f1:21:
03:53:24:30:ce:51:06:70:6b:f2:10:01:64:f4:00:
04:7c:f2:05:c1:69:c9:98:1f:3e:7e:9c:95:c0:8b:
67:7b:38:f3:70:25:e8:06:cb:da:70:fa:3b:b2:81:
ec:59:7e:23:f1:1b:6d:ee:55:3c:09:7d:a2:15:27:
5c:d2:71:49:4b:1b:6e:ff:8e:e7:15:17:fb:e4:30:
7d:19:79:d5:87:41:08:a8:a0:6d:6c:01:f0:8b:08:
16:a1:9a:53:c1:b2:d4:b8:13:7a:b0:65:01:7d:78:
7e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AC:C8:2D:74:ED:CA:6A:4E:ED:98:F3:19:B4:A5:9A:DA:9F:55:3E
X509v3 Authority Key Identifier:
keyid:87:73:67:FE:F9:A2:F8:6E:45:C6:42:69:72:30:FC:0E:BA:D9:B7:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3Nn_vmi-G5FxkJpcjD8DrrZt6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/74228e-110c-46aa-8dea-0d145255fbb0/1/Y6zILXTtympO7ZjzGbSlmtqfVT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/74228e-110c-46aa-8dea-0d145255fbb0/1/h3Nn_vmi-G5FxkJpcjD8DrrZt6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.160.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:35:3c:e5:b4:9a:d8:de:0b:8d:bc:89:f1:8e:f9:56:fc:d8:
8e:6f:69:ec:40:13:00:5b:6c:fc:aa:4a:b6:f0:c5:75:34:03:
6d:e5:19:44:6f:16:c8:31:7b:2d:8d:a0:2b:c7:ac:17:0d:78:
3e:94:3a:e2:85:73:dc:25:9a:54:98:4e:f8:72:1a:19:d3:a4:
c1:44:a0:c5:b5:2e:8d:12:34:18:4a:cc:dc:1c:31:34:a3:0d:
68:54:ff:a3:0b:05:56:bf:0b:f2:2c:ca:61:f8:af:84:41:eb:
41:45:aa:28:45:d0:f4:ce:1d:4d:26:c5:e0:de:51:2a:dc:2b:
c9:41:42:73:44:41:47:98:76:e1:4c:5b:0e:64:a6:5b:b5:7f:
94:9c:d4:21:6a:60:64:68:12:dd:f4:15:8c:23:b2:a2:fd:fd:
fe:3c:c7:24:38:9e:0f:b0:0d:01:23:62:45:c6:05:ee:0f:02:
7f:2c:b0:a5:ae:0b:76:44:bb:93:ef:30:f8:c1:24:e4:44:7b:
3e:49:9b:55:4a:77:6f:89:e1:8c:29:b2:58:e8:3b:28:af:62:
7f:10:15:58:65:f1:de:85:8c:b1:0f:ce:38:4e:76:71:a9:ea:
2a:4c:19:51:0e:67:61:f6:16:a0:49:7a:24:b0:1c:7b:de:e0:
41:f3:2b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:26 2024 by rpki-client on console-ams.rpki-client.org