Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/yAtRhEaxxzOHZmSgduCXU-AeQe4.roa
File: yAtRhEaxxzOHZmSgduCXU-AeQe4.roa (raw, json)
Hash identifier: xijLScth9rmnGpw2IsLPHKFaSMdgRJQ7JcaFHXl3Yno=
Subject key identifier: C8:0B:51:84:46:B1:C7:33:87:66:64:A0:76:E0:97:53:E0:1E:41:EE
Certificate issuer: /CN=01e7c30459356a900dc63369764a754c5c1f3319
Certificate serial: 02FF616C
Authority key identifier: 01:E7:C3:04:59:35:6A:90:0D:C6:33:69:76:4A:75:4C:5C:1F:33:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AefDBFk1apANxjNpdkp1TFwfMxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/yAtRhEaxxzOHZmSgduCXU-AeQe4.roa
Signing time: Sat 01 Jan 2022 03:53:14 +0000
ROA not before: Sat 01 Jan 2022 03:53:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203349
IP address blocks: 185.135.236.0/22 maxlen: 22
2a07:980::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50291052 (0x2ff616c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01e7c30459356a900dc63369764a754c5c1f3319
Validity
Not Before: Jan 1 03:53:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c80b518446b1c733876664a076e09753e01e41ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:28:9b:7c:e7:40:57:b6:43:13:44:6e:bd:f6:
18:14:d3:d7:e6:84:72:2f:e7:4b:c7:3f:7b:f6:29:
c0:36:d8:34:d0:18:35:bd:c8:c8:b3:ab:a2:d9:19:
01:fb:8f:05:5e:c2:07:27:69:26:e7:9f:ac:cb:61:
bd:51:b8:a0:a9:39:7f:8b:7a:3e:83:8c:f0:fb:62:
7b:8d:5f:6a:89:dc:56:bd:55:27:61:12:dc:69:af:
d3:c1:7b:55:94:1d:c8:99:3c:cd:b5:9c:76:33:8e:
97:f3:f7:92:a1:99:b0:3c:90:81:30:1b:ab:55:91:
87:5a:e3:cf:93:73:96:48:8e:eb:d4:a9:4c:93:00:
c9:6c:51:1e:6f:8c:41:69:50:63:ec:d2:0c:89:88:
69:50:3b:70:a3:e5:97:29:ba:df:c3:8f:03:86:91:
33:dd:9c:03:2c:bc:dc:a0:9e:ab:c3:1d:1c:48:8b:
ca:89:4a:1e:5b:9a:8c:99:f8:85:dc:e0:88:a2:00:
13:61:b0:cd:db:cd:c3:86:e8:56:ae:5e:22:d9:18:
39:34:54:d7:44:a8:28:ce:3e:f9:b0:f2:46:a2:d2:
6f:71:7d:c5:20:8e:a2:cc:e5:b4:c5:ab:45:dc:d5:
af:fa:29:9b:94:42:77:9f:82:9f:4c:18:34:90:91:
50:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:0B:51:84:46:B1:C7:33:87:66:64:A0:76:E0:97:53:E0:1E:41:EE
X509v3 Authority Key Identifier:
keyid:01:E7:C3:04:59:35:6A:90:0D:C6:33:69:76:4A:75:4C:5C:1F:33:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AefDBFk1apANxjNpdkp1TFwfMxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/yAtRhEaxxzOHZmSgduCXU-AeQe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/19c164-eae7-46bd-a1de-bf29c4188d7e/1/AefDBFk1apANxjNpdkp1TFwfMxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.236.0/22
IPv6:
2a07:980::/29
Signature Algorithm: sha256WithRSAEncryption
1a:6d:b9:07:14:64:5e:13:b9:4a:74:1b:02:83:ba:a3:96:81:
5c:56:62:ea:41:eb:97:90:26:b9:4b:38:20:ff:ee:35:33:2c:
1b:9a:f6:8a:6e:cc:ee:3e:a4:06:e8:85:c0:a9:c9:16:12:a1:
cf:42:ba:1f:f2:67:23:08:04:8c:d9:78:82:f7:5e:2b:4a:f3:
56:f5:4b:72:89:0b:42:1d:6a:6f:e7:a2:31:fc:9e:10:2b:ea:
fb:a3:22:33:14:62:3a:25:62:dc:ae:2d:d4:69:b1:4c:08:5a:
17:9b:69:58:32:07:09:52:94:08:72:a6:aa:26:92:aa:f0:17:
85:c5:a6:6f:98:de:cb:36:d2:be:52:32:92:89:7f:35:c7:cd:
c5:83:af:48:70:11:e6:94:8f:0a:58:08:60:09:d5:df:76:2c:
89:4c:2e:38:43:ef:e3:58:3a:ae:08:87:16:ce:83:fa:e3:24:
79:8b:dc:79:a0:06:3b:8b:91:fd:7b:11:71:16:c4:51:a9:66:
88:bd:bd:7d:9a:0a:64:70:be:40:37:42:56:5f:9c:dc:b5:de:
46:f6:9e:89:86:5c:36:32:51:2f:bf:1e:38:43:bd:ea:01:95:
ab:de:ca:35:cb:24:31:28:0d:1e:ab:a7:20:bc:54:0e:15:8a:
78:28:9b:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:14 2023 by rpki-client on console-fra.rpki-client.org