Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/yyL6ZoaCDM0sfi8O1Dm79JqXwh0.roa
File: yyL6ZoaCDM0sfi8O1Dm79JqXwh0.roa (raw, json)
Hash identifier: 7eR5nIX8woOqwZJZxlBtNOH+3AbPjFirQPzqKbMphhA=
Subject key identifier: CB:22:FA:66:86:82:0C:CD:2C:7E:2F:0E:D4:39:BB:F4:9A:97:C2:1D
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 03C001FA
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/yyL6ZoaCDM0sfi8O1Dm79JqXwh0.roa
Signing time: Sat 01 Jan 2022 03:53:21 +0000
ROA not before: Sat 01 Jan 2022 03:53:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8339
IP address blocks: 185.92.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62915066 (0x3c001fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jan 1 03:53:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb22fa6686820ccd2c7e2f0ed439bbf49a97c21d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:15:b5:06:0b:a1:24:9e:08:71:ad:74:1d:3b:
81:e5:a5:ef:d4:8f:54:23:d0:34:9a:60:65:43:4c:
e0:32:b9:48:7c:c2:12:5f:0d:3e:75:4e:42:68:35:
68:ba:17:c6:97:88:8c:38:ed:0e:50:44:13:0e:62:
c3:d4:d5:28:2e:ba:77:8d:ad:93:f4:55:c7:6a:26:
b5:d6:8c:ab:74:76:50:a0:dc:7a:45:50:e0:c4:97:
17:8c:50:06:d0:ad:1e:c1:ae:e3:15:27:f4:1d:e9:
fc:72:40:57:7b:08:5a:55:1f:73:d7:70:69:8b:24:
be:37:55:9a:2a:0e:69:eb:9b:fa:46:14:e6:c0:d9:
23:e8:06:2f:6b:26:c5:72:0d:06:58:61:b1:65:86:
4f:a0:f6:a3:ab:ee:4f:70:01:d8:67:0e:f9:49:ee:
3c:2c:b3:d8:98:6c:0e:85:c6:c1:1b:98:dd:82:36:
4a:be:2f:e1:18:42:3f:71:c7:1a:29:ed:b7:ae:f0:
27:d8:89:db:d9:fd:2f:45:fc:46:60:c6:8a:98:a6:
44:c9:7a:49:df:6b:de:31:a0:d7:60:6e:85:c7:40:
12:a2:f0:ca:fd:5b:2d:dc:f3:69:4b:ff:3c:52:f7:
21:16:38:a9:50:da:1d:be:58:be:95:ee:90:35:9a:
0b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:22:FA:66:86:82:0C:CD:2C:7E:2F:0E:D4:39:BB:F4:9A:97:C2:1D
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/yyL6ZoaCDM0sfi8O1Dm79JqXwh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.164.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:d7:91:68:47:83:3a:13:09:bb:18:2f:19:f8:3b:d2:e9:76:
7e:18:54:72:73:d2:ce:a4:e7:fb:81:dc:02:a1:c6:07:41:59:
b1:67:f7:e8:f7:33:64:e8:e1:a8:8f:f5:5b:15:4f:9a:29:d5:
e5:f7:1f:32:86:14:ef:19:a2:1e:19:ba:95:2a:95:b1:dc:f0:
2a:98:66:32:85:20:98:87:eb:0e:aa:94:d3:13:39:bd:ee:93:
69:4c:fd:d6:d0:ad:91:b6:65:f7:f4:3d:2b:5a:e8:a5:bc:46:
3d:56:20:d1:4d:f2:e7:03:7f:8f:f8:b5:86:db:25:f3:b9:41:
66:7e:25:08:27:4c:24:b7:b6:a3:89:d0:07:c6:8d:8c:e5:cc:
ec:4d:70:d2:f8:f2:41:b2:a2:53:73:61:ae:23:97:76:3a:8d:
e9:8e:35:db:31:ee:83:81:5a:f0:f7:65:d1:d3:08:6b:0b:e9:
5a:74:17:13:df:24:5a:3f:da:2a:73:27:87:18:28:82:e6:11:
1d:43:74:d6:1d:db:22:be:fa:b4:6b:03:2a:49:1d:2c:51:74:
ac:b5:6c:bb:a7:5e:94:38:86:af:0c:7d:d8:59:35:11:45:9b:
45:68:6e:ec:a7:4e:b3:2d:d9:03:4f:3a:9e:84:fc:c0:57:8a:
8b:ce:f3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:41 2024 by rpki-client on console-ams.rpki-client.org