Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/f_ya_988baP-ECiuwgvkkkVKQJI.roa
File: f_ya_988baP-ECiuwgvkkkVKQJI.roa (raw, json)
Hash identifier: LDTRy2Ij+W05/qJGQwxwsryegcJTOAGAL7KsSa36KAg=
Subject key identifier: 7F:FC:9A:FF:DF:3C:6D:A3:FE:10:28:AE:C2:0B:E4:92:45:4A:40:92
Certificate issuer: /CN=4b8d822165e7f01f722c973967f7554605240802
Certificate serial: 03E40DDA
Authority key identifier: 4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/f_ya_988baP-ECiuwgvkkkVKQJI.roa
Signing time: Sat 01 Jan 2022 16:11:14 +0000
ROA not before: Sat 01 Jan 2022 16:11:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 185.251.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65277402 (0x3e40dda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b8d822165e7f01f722c973967f7554605240802
Validity
Not Before: Jan 1 16:11:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ffc9affdf3c6da3fe1028aec20be492454a4092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:38:f9:fc:63:56:60:9f:30:df:d8:1a:49:69:
f1:5f:3e:11:16:9b:c5:05:91:30:b4:8e:fe:b5:be:
4f:c4:3e:bf:06:f7:08:92:27:18:be:03:e2:43:a7:
11:d5:ff:e7:3d:e5:a7:76:8f:86:9d:31:49:e0:90:
5c:a0:66:eb:c2:cc:09:3c:38:21:4d:aa:33:d0:ac:
5a:4f:72:70:55:49:5a:2d:55:cb:fc:60:90:9c:58:
58:b5:91:34:06:04:66:c3:b6:f8:cb:dd:7a:f3:88:
6b:b8:c4:bb:ed:dc:e0:81:8c:d7:69:40:7f:12:c0:
67:33:4a:da:d3:50:91:d2:bb:d7:d4:4a:06:49:57:
2d:f1:d8:ae:a7:77:0d:5e:99:2f:29:85:34:c3:d0:
1b:eb:a5:22:e1:8b:3d:3c:71:32:8f:1f:cc:fc:0e:
b7:ea:46:fb:2e:d3:c1:bc:6f:0a:78:28:b6:05:d3:
5e:69:6b:08:c1:7a:ce:83:77:2b:d8:20:5a:43:01:
e7:12:f2:9e:53:6d:dd:9b:6b:8e:a6:b7:78:ec:10:
6b:af:4d:ae:f3:a8:a9:2b:a2:53:0e:e2:93:c3:ea:
84:e6:2c:aa:cc:2b:18:4d:9e:09:fc:01:03:03:c5:
df:5f:1c:91:83:dd:62:50:79:02:83:23:51:7e:a7:
28:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FC:9A:FF:DF:3C:6D:A3:FE:10:28:AE:C2:0B:E4:92:45:4A:40:92
X509v3 Authority Key Identifier:
keyid:4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/f_ya_988baP-ECiuwgvkkkVKQJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/S42CIWXn8B9yLJc5Z_dVRgUkCAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.144.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:3b:9d:ac:21:84:b5:d9:1d:6b:f7:54:76:c2:c5:74:17:c8:
12:18:36:db:a8:3b:8b:cd:18:eb:8b:a1:de:01:02:76:c0:ca:
5f:0a:e7:de:e0:24:77:65:2b:35:fd:1a:b3:e4:19:35:43:30:
7d:80:f5:8a:9e:b3:8f:dd:3a:74:95:0f:d3:60:32:ec:0b:b3:
82:5a:20:3a:da:3b:4f:54:a3:ba:6d:1d:f6:74:90:f1:a2:82:
3c:f5:03:0e:01:be:7e:b8:e4:1f:76:7b:b9:94:b1:48:5c:59:
bb:fb:48:44:b5:69:5d:e5:cb:aa:5a:cc:aa:48:f5:ae:8f:42:
4b:8b:9a:e2:c6:df:1e:6e:0b:53:0d:78:ce:98:c2:0e:a7:e6:
8e:ef:59:5a:1a:72:a1:6f:d2:02:5c:f2:a2:57:95:5a:83:4a:
44:c0:90:ca:c1:22:29:2c:9b:38:ec:b5:9c:3a:c9:7b:6e:97:
7e:41:31:96:e7:4d:03:05:40:8a:8e:dc:f2:04:7e:93:a8:62:
fb:ab:4a:87:e0:0c:ee:82:09:c1:9e:ba:95:06:c8:ad:64:1c:
27:e2:80:2f:70:f4:fc:ec:9a:65:5f:d2:72:fd:23:37:81:04:
fa:3e:a5:c2:84:ea:3e:df:be:92:6f:9a:d8:e7:1f:9a:04:a8:
4f:b0:b4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:24 2023 by rpki-client on console-fra.rpki-client.org