Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/f5ac46-4c59-4b3e-b71e-becf12862497/1/0Yh8i-Koi5ri_3w6ueg-S9WmFCE.roa
File: 0Yh8i-Koi5ri_3w6ueg-S9WmFCE.roa (raw, json)
Hash identifier: PTYXfy0M849SQ3AsYrhWSuB0uZK9hCAT0wM3fLlY+yE=
Subject key identifier: D1:88:7C:8B:E2:A8:8B:9A:E2:FF:7C:3A:B9:E8:3E:4B:D5:A6:14:21
Certificate issuer: /CN=c088b56bd9e016f9bc521af4dc249e6d1256b1df
Certificate serial: 0F333E7B
Authority key identifier: C0:88:B5:6B:D9:E0:16:F9:BC:52:1A:F4:DC:24:9E:6D:12:56:B1:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIi1a9ngFvm8Uhr03CSebRJWsd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/f5ac46-4c59-4b3e-b71e-becf12862497/1/0Yh8i-Koi5ri_3w6ueg-S9WmFCE.roa
Signing time: Sat 01 Jan 2022 15:58:50 +0000
ROA not before: Sat 01 Jan 2022 15:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15388
IP address blocks: 185.62.64.0/22 maxlen: 22
212.77.224.0/19 maxlen: 19
2a02:2800::/32 maxlen: 32
2a02:2800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255016571 (0xf333e7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c088b56bd9e016f9bc521af4dc249e6d1256b1df
Validity
Not Before: Jan 1 15:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1887c8be2a88b9ae2ff7c3ab9e83e4bd5a61421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:96:d3:d6:26:ff:69:9c:07:42:11:cd:57:6a:
ab:f0:8c:d5:c2:00:ee:45:32:68:66:8c:3d:0d:be:
e9:5c:0e:c9:5d:5b:0d:d1:ea:79:23:d3:9a:ab:4c:
bc:b0:db:43:37:a9:64:19:d7:f0:90:28:37:99:ad:
76:af:98:e5:65:9e:2c:1c:7a:44:db:fe:2b:8d:54:
eb:0f:6a:1d:0c:b9:d0:a3:9b:27:be:46:18:0f:60:
71:15:74:3b:cf:3b:59:b2:ee:48:84:3e:96:16:c1:
32:36:1f:45:6d:13:fa:6d:c6:48:f2:ba:4d:85:90:
71:d8:d4:4b:cb:24:03:2f:42:93:7d:7a:8a:74:34:
5f:d2:c4:14:3d:06:7a:cd:25:9b:50:ae:08:c6:4b:
a4:03:bf:6a:5e:8d:b4:fd:64:9a:99:71:96:d0:76:
a8:ae:8e:f2:1b:ac:2a:ab:7c:6b:56:e6:3a:56:7b:
02:97:ef:a8:61:80:c6:0e:52:f0:23:6d:db:f9:74:
eb:b3:c7:4f:b0:24:fb:53:ff:30:91:49:f6:64:9b:
7f:9c:6d:a1:b9:27:d5:eb:f6:cf:59:ef:3f:27:15:
9e:c2:59:0b:23:ba:be:d1:df:56:4a:00:d0:49:48:
53:61:bd:ed:fb:63:42:9a:38:02:c0:1a:ae:06:6e:
eb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:88:7C:8B:E2:A8:8B:9A:E2:FF:7C:3A:B9:E8:3E:4B:D5:A6:14:21
X509v3 Authority Key Identifier:
keyid:C0:88:B5:6B:D9:E0:16:F9:BC:52:1A:F4:DC:24:9E:6D:12:56:B1:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIi1a9ngFvm8Uhr03CSebRJWsd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f5ac46-4c59-4b3e-b71e-becf12862497/1/0Yh8i-Koi5ri_3w6ueg-S9WmFCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f5ac46-4c59-4b3e-b71e-becf12862497/1/wIi1a9ngFvm8Uhr03CSebRJWsd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.64.0/22
212.77.224.0/19
IPv6:
2a02:2800::/29
Signature Algorithm: sha256WithRSAEncryption
63:1c:85:f8:50:f5:d0:30:b0:18:4a:ca:1d:0b:a4:ac:01:8e:
33:c1:99:dc:47:f3:15:dc:e4:98:56:61:d3:a2:b1:15:d2:a7:
2b:81:9e:2c:28:ea:96:93:d0:95:a3:38:c4:35:e1:06:c9:b7:
91:0a:de:a6:ac:0c:c9:6c:ae:a6:aa:4d:ca:e8:01:c0:38:e4:
3b:cf:4a:48:e3:9d:d9:ce:7a:d1:6a:28:1f:c8:07:fd:a6:15:
b0:38:79:cf:02:cc:72:c6:1f:f8:13:4c:b0:c4:6c:59:7e:55:
72:50:24:ad:74:db:0f:eb:6d:d9:de:97:1b:3b:ec:55:4a:c5:
85:4f:88:11:e2:4a:9f:16:cb:b1:94:8f:f8:9b:b1:93:e1:a6:
76:c9:8a:de:bd:f0:00:29:3d:13:38:7d:dc:10:34:69:4b:11:
9d:f9:c2:cf:e1:70:20:1e:c7:84:e4:dc:c7:c0:94:46:bb:83:
0f:36:62:ee:a0:6a:ef:bb:37:36:77:b7:4a:b0:9a:09:7b:4a:
c3:88:36:9b:85:4b:9b:b4:b6:54:8a:75:12:54:03:a6:70:f5:
7d:29:e6:14:ba:26:08:e7:9f:a5:b0:4c:35:cc:70:61:4b:4e:
ac:df:de:7f:e5:81:d7:a9:ae:61:f7:97:9d:e9:d3:a7:ed:1b:
d8:a1:2d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:01 2023 by rpki-client on console-ams.rpki-client.org