Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/Y8R2jKMpcemZrl7YdG8_2KlNYWE.roa
File: Y8R2jKMpcemZrl7YdG8_2KlNYWE.roa (raw, json)
Hash identifier: Rx2Z+2vWHXPAIKEiMInuX6T5eRlBvRoicsyH0MF+eoc=
Subject key identifier: 63:C4:76:8C:A3:29:71:E9:99:AE:5E:D8:74:6F:3F:D8:A9:4D:61:61
Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Certificate serial: 111C8BC6
Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/Y8R2jKMpcemZrl7YdG8_2KlNYWE.roa
Signing time: Sat 01 Jan 2022 11:58:36 +0000
ROA not before: Sat 01 Jan 2022 11:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206566
IP address blocks: 185.183.8.0/22 maxlen: 22
2a0a:ff80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287083462 (0x111c8bc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Validity
Not Before: Jan 1 11:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63c4768ca32971e999ae5ed8746f3fd8a94d6161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6e:f1:c2:8f:ba:26:a2:09:c5:df:ec:44:04:
a7:29:b5:30:ea:be:5f:32:61:a7:42:26:f9:60:ba:
9d:2e:b0:25:d6:8b:a1:98:90:40:c0:8e:d5:4e:cd:
ca:64:6f:d4:34:b7:ee:ef:ef:af:20:30:7e:46:be:
f3:a6:e6:d6:c6:4b:c3:51:b1:c5:31:40:dc:27:4a:
1b:f1:ae:a1:c6:5d:25:ba:86:40:61:ae:a8:eb:e5:
13:bd:73:fc:9f:02:8e:3b:96:73:50:82:c6:67:c8:
24:7e:d9:72:62:bf:cb:ab:1d:75:80:34:aa:12:5c:
f6:21:1c:f1:a0:72:fe:ce:88:ba:00:17:eb:2e:2f:
47:a7:f8:e2:d3:bd:39:db:09:6f:55:47:2a:34:22:
02:23:77:b5:4b:82:66:e3:38:f7:0f:6e:30:41:b0:
1b:c0:64:3e:61:ed:cf:dc:bf:8b:ae:32:e5:95:39:
47:7a:e5:67:df:f5:81:54:28:9e:cb:ff:15:0e:8e:
d7:30:85:71:41:70:80:b6:d8:d4:54:77:0c:68:5e:
26:ad:b3:e7:e1:70:f9:14:e7:bf:84:17:b8:96:12:
21:fb:a6:4c:5d:14:f6:3c:a8:8b:36:6f:2e:3d:51:
08:5b:67:88:71:9b:90:e5:62:38:e7:ef:96:a0:44:
68:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C4:76:8C:A3:29:71:E9:99:AE:5E:D8:74:6F:3F:D8:A9:4D:61:61
X509v3 Authority Key Identifier:
keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/Y8R2jKMpcemZrl7YdG8_2KlNYWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.8.0/22
IPv6:
2a0a:ff80::/32
Signature Algorithm: sha256WithRSAEncryption
90:72:79:0f:4d:2f:94:d6:26:0b:22:a4:88:5a:6e:b8:da:6f:
cc:bd:0c:00:2a:a6:19:f4:6f:5c:a1:d5:c7:b6:e5:13:19:da:
ea:c3:7f:3a:1e:73:12:7f:63:e6:2c:a4:66:4b:99:29:be:65:
00:50:70:33:4a:b6:60:59:31:ed:08:67:59:bc:2c:e4:26:1b:
1e:89:68:1b:77:2b:78:26:53:81:cd:29:5d:05:a0:5d:9e:67:
dd:0f:7d:51:5f:d3:ac:a0:6b:dc:cb:0d:8f:f5:7a:4b:36:bf:
96:6c:ca:8a:b1:b7:cd:ec:4e:6a:f4:4f:c1:77:52:13:a1:8c:
00:c7:b9:13:6d:53:c1:36:0f:e4:2e:e3:a3:75:f7:18:60:ea:
09:4e:55:ae:01:f8:2f:c8:90:9f:32:02:59:cf:20:62:be:85:
7d:7d:e7:02:ae:5d:df:36:f5:80:cb:14:c9:17:91:d1:0d:a8:
b0:c8:ab:12:31:64:39:35:ce:26:e7:d3:ec:28:af:fe:5f:b0:
0e:60:ba:56:95:16:d2:55:f3:1e:9d:94:93:cb:6b:44:b2:9a:
eb:58:d3:b1:8a:88:fd:b3:76:35:3a:f7:a4:f6:aa:65:b5:80:
44:a4:68:ee:d3:88:20:6d:7e:94:a5:57:17:e1:fe:0b:47:ae:
9d:6d:a9:58
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEERyLxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
N2ZiMDA0ZTM5N2RkZjA0ZTdkMDVmMzY0M2EwMzZmMjE4MzZmZjEwMB4XDTIyMDEw
MTExNTgzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjNjNDc2OGNhMzI5
NzFlOTk5YWU1ZWQ4NzQ2ZjNmZDhhOTRkNjE2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5u8cKPuiaiCcXf7EQEpym1MOq+XzJhp0Im+WC6nS6wJdaL
oZiQQMCO1U7NymRv1DS37u/vryAwfka+86bm1sZLw1GxxTFA3CdKG/GuocZdJbqG
QGGuqOvlE71z/J8CjjuWc1CCxmfIJH7ZcmK/y6sddYA0qhJc9iEc8aBy/s6IugAX
6y4vR6f44tO9OdsJb1VHKjQiAiN3tUuCZuM49w9uMEGwG8BkPmHtz9y/i64y5ZU5
R3rlZ9/1gVQonsv/FQ6O1zCFcUFwgLbY1FR3DGheJq2z5+Fw+RTnv4QXuJYSIfum
TF0U9jyoizZvLj1RCFtniHGbkOViOOfvlqBEaB8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRjxHaMoylx6ZmuXth0bz/YqU1hYTAfBgNVHSMEGDAWgBQ3+wBOOX3fBOfQ
XzZDoDbyGDb/EDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05fc0FUamw5M3dUbjBGODJRNkEyOGhnMl94QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvNzQyMjk5LWYzNDMtNDMyMS1iMzUxLWI1M2I2NGNmMGQ5NS8x
L1k4UjJqS01wY2VtWnJsN1lkRzhfMktsTllXRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
NzQyMjk5LWYzNDMtNDMyMS1iMzUxLWI1M2I2NGNmMGQ5NS8xL05fc0FUamw5M3dU
bjBGODJRNkEyOGhnMl94QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArm3CDANBAIAAjAHAwUAKgr/gDAN
BgkqhkiG9w0BAQsFAAOCAQEAkHJ5D00vlNYmCyKkiFpuuNpvzL0MACqmGfRvXKHV
x7blExna6sN/Oh5zEn9j5iykZkuZKb5lAFBwM0q2YFkx7QhnWbws5CYbHoloG3cr
eCZTgc0pXQWgXZ5n3Q99UV/TrKBr3MsNj/V6Sza/lmzKirG3zexOavRPwXdSE6GM
AMe5E21TwTYP5C7jo3X3GGDqCU5VrgH4L8iQnzICWc8gYr6FfX3nAq5d3zb1gMsU
yReR0Q2osMirEjFkOTXOJufT7Civ/l+wDmC6VpUW0lXzHp2Uk8trRLKa61jTsYqI
/bN2NTr3pPaqZbWARKRo7tOIIG1+lKVXF+H+C0eunW2pWA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:56 2024 by rpki-client on console-ams.rpki-client.org