Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/YmLUh1pLEB0PJnC17GxdQajXG3o.roa
File: YmLUh1pLEB0PJnC17GxdQajXG3o.roa (raw, json)
Hash identifier: fk8T6raSjSmUI4faPaJ0vKzM02KB8BLQys9ZS7DtADM=
Subject key identifier: 62:62:D4:87:5A:4B:10:1D:0F:26:70:B5:EC:6C:5D:41:A8:D7:1B:7A
Certificate issuer: /CN=706b7fea8ad35111ca687a9cd00a49f9a4f0459b
Certificate serial: 05D5D1CB
Authority key identifier: 70:6B:7F:EA:8A:D3:51:11:CA:68:7A:9C:D0:0A:49:F9:A4:F0:45:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cGt_6orTURHKaHqc0ApJ-aTwRZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/YmLUh1pLEB0PJnC17GxdQajXG3o.roa
Signing time: Sat 01 Jan 2022 05:03:07 +0000
ROA not before: Sat 01 Jan 2022 05:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210676
IP address blocks: 185.87.170.0/24 maxlen: 24
185.87.168.0/24 maxlen: 24
185.87.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97898955 (0x5d5d1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706b7fea8ad35111ca687a9cd00a49f9a4f0459b
Validity
Not Before: Jan 1 05:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6262d4875a4b101d0f2670b5ec6c5d41a8d71b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:18:3e:7d:7c:8a:52:7a:b9:06:ed:ba:8c:e1:
07:96:24:44:28:5b:63:d6:3e:c1:ca:9f:a6:92:c2:
d4:5e:ec:1f:0c:92:00:07:38:0b:75:bd:eb:d2:e4:
8a:db:56:7f:20:c6:6c:e6:49:f6:dd:65:c0:f4:cf:
49:45:9a:3f:8c:b7:b6:fb:26:39:43:05:12:1b:f2:
5a:99:c2:4e:4d:12:56:15:6b:c1:a5:be:9d:35:92:
a5:e6:e6:5a:bc:a6:37:e5:f7:f4:37:26:9b:78:79:
40:9c:c9:6f:37:54:a4:f6:3b:09:b5:b5:44:c7:51:
47:d9:28:a3:04:19:8b:7f:c7:fd:98:6c:65:19:02:
81:99:6d:22:51:ba:5c:8f:69:23:cf:5b:19:f8:14:
7e:e1:65:68:90:e8:fa:dc:33:d0:d9:88:c8:15:37:
90:55:ff:dc:d2:be:ad:2f:e1:70:87:fb:22:fb:09:
5d:7c:1f:45:81:20:12:3e:96:f9:c2:91:99:79:21:
3f:6b:7d:1b:a7:ff:db:2d:af:2e:85:7f:8b:93:ee:
c2:ac:c3:3b:4c:06:fc:bd:49:81:da:ed:26:26:96:
64:35:58:1d:55:c6:fe:1e:89:0f:5d:d7:20:7f:67:
ef:52:f1:c5:2a:0f:6e:f2:e6:f3:6e:49:7b:70:9a:
5b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:62:D4:87:5A:4B:10:1D:0F:26:70:B5:EC:6C:5D:41:A8:D7:1B:7A
X509v3 Authority Key Identifier:
keyid:70:6B:7F:EA:8A:D3:51:11:CA:68:7A:9C:D0:0A:49:F9:A4:F0:45:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cGt_6orTURHKaHqc0ApJ-aTwRZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/YmLUh1pLEB0PJnC17GxdQajXG3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d2974f-7efa-4611-8827-260c377a314a/1/cGt_6orTURHKaHqc0ApJ-aTwRZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.168.0-185.87.170.255
Signature Algorithm: sha256WithRSAEncryption
34:4c:a8:ad:69:cc:71:fb:48:84:f3:e7:f8:ac:e6:a4:c3:ef:
df:7a:71:20:76:9c:01:f3:e7:ca:3e:69:38:e8:10:9e:16:48:
1c:41:44:8f:bf:ff:8f:41:82:e5:13:67:63:77:4c:f3:42:ba:
71:fa:72:d7:33:dc:a7:30:09:dd:15:1b:07:14:f5:a9:af:17:
c6:16:4e:ef:5a:62:c5:ad:91:2e:78:01:12:a8:0f:12:da:c7:
5e:f9:8e:82:40:19:0e:3d:b0:ba:eb:0a:77:1f:fe:39:14:e3:
78:35:8c:be:b7:df:86:f1:19:51:98:da:f4:53:e4:ae:55:b8:
c0:2e:6b:ff:30:99:33:83:46:f9:a9:1a:42:9d:c6:e7:74:af:
ef:f0:4d:a2:77:f9:39:1b:79:98:92:38:3d:c0:fd:72:fa:1e:
f3:d0:41:61:d5:28:b9:ea:47:2b:d4:11:9b:62:6a:83:c6:70:
61:1f:d7:d0:1d:1d:a9:6e:96:b2:3d:00:38:52:2f:f4:f5:3c:
29:69:49:ce:09:eb:21:2d:f0:50:54:18:0e:83:06:d2:9a:cb:
c4:73:c1:61:28:b4:39:15:d8:f8:5e:ca:a9:e6:67:29:17:58:
89:a2:e4:e4:03:5d:9d:d2:4a:ac:fa:bb:47:98:c6:eb:46:a6:
3e:e3:8a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:15 2024 by rpki-client on console-ams.rpki-client.org