Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/ykR602xckQARKyHj-QrJooYjS2k.roa
File: ykR602xckQARKyHj-QrJooYjS2k.roa (raw, json)
Hash identifier: Z1L2oItzkyl/RTjBlHcHITXWjL6mrfCrWDBBGyv2h0M=
Subject key identifier: CA:44:7A:D3:6C:5C:91:00:11:2B:21:E3:F9:0A:C9:A2:86:23:4B:69
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 0181D7445506AA848FA228740A596A6ED542
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/ykR602xckQARKyHj-QrJooYjS2k.roa
Signing time: Thu 07 Jul 2022 06:06:28 +0000
ROA not before: Thu 07 Jul 2022 06:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210472
IP address blocks: 185.112.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:44:55:06:aa:84:8f:a2:28:74:0a:59:6a:6e:d5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Jul 7 06:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca447ad36c5c9100112b21e3f90ac9a286234b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:ea:51:d0:1d:e6:d2:8f:03:90:20:5c:d2:
2c:4d:3d:ce:c7:eb:f6:ba:74:97:78:f3:fd:b8:a1:
dc:e6:4b:ab:49:89:e8:de:84:ed:8a:ce:dc:aa:24:
9f:0d:37:df:8c:88:41:ef:02:8c:b0:99:be:ed:ee:
cc:8a:4b:05:dd:e7:a1:b1:8d:3f:a2:af:c7:62:f9:
11:48:67:b7:21:1d:69:f7:0b:a9:c4:60:e8:9c:6d:
d2:81:c9:25:72:1a:b8:72:2b:c1:f6:cd:a7:9b:fc:
25:8c:d8:c5:50:fb:34:57:23:af:a4:fc:c6:ed:09:
5f:27:00:56:09:43:27:95:8f:c9:74:d4:60:51:42:
55:aa:21:e8:da:22:11:60:3d:d4:11:96:94:9b:06:
eb:f7:04:7b:68:12:23:76:40:dd:43:96:1d:bf:18:
12:ff:53:ca:90:3e:fd:83:98:d0:9e:37:3d:de:df:
90:af:99:11:ff:ee:78:c0:df:ea:31:69:63:39:28:
8a:db:37:3c:7f:1d:7b:61:d0:ed:9a:24:76:e8:d0:
d0:76:4c:1d:be:88:b0:9e:7c:23:27:94:ff:70:8f:
93:12:b0:3b:06:f9:18:44:1e:58:c7:2e:55:46:20:
a6:0a:78:d7:4c:c7:93:a4:18:3b:5f:71:8d:9d:1b:
ac:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:44:7A:D3:6C:5C:91:00:11:2B:21:E3:F9:0A:C9:A2:86:23:4B:69
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/ykR602xckQARKyHj-QrJooYjS2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.0.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:4e:76:12:46:ef:d2:3e:71:17:13:72:6e:41:d3:63:70:c4:
5a:df:75:c6:03:bd:dc:2d:10:d4:17:ee:c7:2a:d5:c0:7d:24:
e4:17:d7:2a:10:48:ca:6d:f1:1a:01:1e:fb:a9:54:56:24:b6:
a8:6e:49:ee:b2:96:bc:38:3c:ed:54:ed:0d:43:18:d9:99:60:
7b:d8:7d:eb:d3:a8:91:8a:02:fe:ab:9b:8d:f9:40:53:e4:9f:
64:5c:0c:40:62:e4:72:d1:82:b9:b3:7a:70:ce:ed:80:dc:a0:
e9:cd:f6:00:39:6f:2d:a5:44:33:89:4d:b8:3f:f7:17:cf:9f:
dd:50:39:f7:98:9f:fb:34:4f:64:62:fd:fc:f6:90:3f:0f:20:
1a:74:11:44:ee:26:a1:b6:b0:a1:4e:a4:ac:80:11:46:50:57:
56:10:c4:e3:b1:d1:87:43:c8:85:95:46:f4:3d:fd:47:0b:b4:
8f:8a:c9:71:5e:22:1d:fe:3f:ca:21:9d:29:70:f8:3e:90:f3:
e3:47:ca:59:c0:39:39:93:d4:1e:36:a4:2e:19:e6:28:40:a6:
4b:e5:7a:69:1a:97:85:e7:5f:be:5a:51:cf:ff:a0:a8:e5:74:
d8:d1:18:91:45:27:31:9a:7c:3b:2a:bf:52:cb:f0:7c:0e:b6:
6b:e1:12:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:43 2024 by rpki-client on console-fra.rpki-client.org