Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/iy65rp25TtE8HhfRj3oL3P2PqqI.roa
File: iy65rp25TtE8HhfRj3oL3P2PqqI.roa (raw, json)
Hash identifier: ysODZEaXEAItpJTyuXQhHYpp9PxpakF6qCzGDNMfaow=
Subject key identifier: 8B:2E:B9:AE:9D:B9:4E:D1:3C:1E:17:D1:8F:7A:0B:DC:FD:8F:AA:A2
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 1456AA
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/iy65rp25TtE8HhfRj3oL3P2PqqI.roa
Signing time: Tue 15 Feb 2022 10:07:46 +0000
ROA not before: Tue 15 Feb 2022 10:07:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20765
IP address blocks: 185.84.216.0/22 maxlen: 24
193.96.96.0/21 maxlen: 24
2a05:a880:de10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1332906 (0x1456aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Feb 15 10:07:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b2eb9ae9db94ed13c1e17d18f7a0bdcfd8faaa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c7:20:0b:5f:17:52:54:d6:65:42:ec:c8:16:
4b:3c:17:85:79:14:ec:a1:30:8b:9d:9f:3d:5f:d5:
fd:53:03:d4:11:4a:2b:d9:8a:10:2c:9e:6e:a1:21:
66:68:94:5d:72:15:42:5d:fc:3d:ca:23:91:bb:e5:
fd:1e:6c:69:2f:20:93:5a:c3:c4:3e:ca:c6:ec:8c:
18:39:55:5d:6b:c3:bd:6b:d2:95:34:62:38:e9:58:
f8:fa:19:65:83:7a:1a:cf:eb:9b:cc:0d:6b:d3:06:
01:dc:8e:fc:db:8b:33:9b:38:e1:44:37:54:7c:7b:
2a:6e:6f:d9:ef:44:9f:46:0a:21:36:c9:5e:f3:3a:
68:84:87:fc:04:02:7d:27:18:3e:bb:26:d5:d7:4e:
7e:91:38:4b:fc:09:22:17:56:82:be:9e:d7:2d:4a:
2d:95:e3:53:9e:d7:e7:58:ba:88:f8:b3:da:1d:87:
84:f2:d5:2d:ba:fc:b6:e9:ec:eb:e6:2a:f2:f7:ad:
4a:ce:66:08:f3:2e:27:15:0e:2d:0b:d8:04:1c:89:
cc:f8:1c:33:61:b4:bd:90:23:70:4e:de:4c:f5:e0:
1e:34:6a:0f:0e:9d:2d:77:7b:49:96:a0:9a:bc:88:
02:ec:d1:c9:95:74:b0:df:47:1b:ee:59:57:ca:75:
b3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2E:B9:AE:9D:B9:4E:D1:3C:1E:17:D1:8F:7A:0B:DC:FD:8F:AA:A2
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/iy65rp25TtE8HhfRj3oL3P2PqqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.216.0/22
193.96.96.0/21
IPv6:
2a05:a880:de10::/48
Signature Algorithm: sha256WithRSAEncryption
58:08:34:85:47:e6:2b:15:49:60:64:6c:c1:13:9d:f0:0f:fc:
bd:6d:7f:2a:72:71:8f:54:43:56:68:61:33:58:a4:c2:67:ab:
cd:0c:ce:1c:ba:95:bc:85:0e:65:1e:c6:5e:8f:32:a7:7c:50:
3e:25:5f:47:50:6d:fc:d6:9e:b4:5f:22:e7:a4:24:e9:df:76:
41:ea:1c:ae:14:eb:c4:e5:6c:07:a1:ce:e5:a2:45:ac:f1:cb:
6b:ff:5b:ab:54:da:87:e6:56:da:1b:31:9d:de:5d:ae:46:15:
ab:ae:17:c7:c8:bf:52:67:f3:6e:8c:e5:25:80:23:06:24:40:
8d:60:55:98:0b:ec:73:92:6f:2d:58:a5:1d:4b:62:90:db:f9:
9a:37:d5:2f:6b:93:d0:0f:1e:ef:6c:f6:6f:7c:8c:02:f9:b6:
31:04:df:ae:ab:c4:26:66:42:a8:68:2e:30:a3:91:07:57:4e:
7e:71:bc:c3:78:21:b6:b7:50:79:cb:2a:a0:17:d2:65:48:21:
ae:ed:35:d2:43:28:76:95:cc:40:00:c3:f7:e4:98:0c:ec:4b:
bd:d0:e9:05:21:bf:88:66:0d:34:3b:2a:32:65:22:69:e5:d3:
03:ea:1f:06:8a:3b:2e:2d:f1:a8:25:e2:ff:b5:32:4b:0b:f7:
a9:68:e3:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:56 2024 by rpki-client on console-ams.rpki-client.org