Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/35f43b-087c-490b-9c03-1857e4268fbf/1/y1BcFoNxU9Jni8hOgnSpQajZPJs.roa
File: y1BcFoNxU9Jni8hOgnSpQajZPJs.roa (raw, json)
Hash identifier: VQTplLyJ1666YR3lY1WdpmnGXMwTs2rBA8W7GUrZ9D4=
Subject key identifier: CB:50:5C:16:83:71:53:D2:67:8B:C8:4E:82:74:A9:41:A8:D9:3C:9B
Certificate issuer: /CN=e8b65f1d5e970e6082d2cfd6f99ef9c8174a1440
Certificate serial: 0790AC3C
Authority key identifier: E8:B6:5F:1D:5E:97:0E:60:82:D2:CF:D6:F9:9E:F9:C8:17:4A:14:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LZfHV6XDmCC0s_W-Z75yBdKFEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/35f43b-087c-490b-9c03-1857e4268fbf/1/y1BcFoNxU9Jni8hOgnSpQajZPJs.roa
Signing time: Sat 01 Jan 2022 03:53:59 +0000
ROA not before: Sat 01 Jan 2022 03:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204731
IP address blocks: 185.241.224.0/22 maxlen: 23
2a0c:b381::/32 maxlen: 40
2a0c:b380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126921788 (0x790ac3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b65f1d5e970e6082d2cfd6f99ef9c8174a1440
Validity
Not Before: Jan 1 03:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb505c16837153d2678bc84e8274a941a8d93c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b3:52:0e:d6:6a:0e:92:50:d9:3e:d2:82:c6:
28:3c:72:e0:d1:de:e0:e3:45:fc:d9:f2:3a:0d:f9:
2b:79:2e:05:24:37:2b:9c:6f:36:ac:35:4d:cd:10:
11:2a:87:f1:50:4e:33:62:26:76:3b:a2:48:98:e7:
99:9b:2a:79:7a:25:72:65:e8:a0:18:12:9c:9e:01:
ac:71:0d:ed:87:33:16:25:78:ad:79:6f:39:ed:f5:
15:1b:52:e9:e2:cc:0e:65:22:ac:b7:e1:41:73:8f:
9c:b7:02:36:a1:0a:7c:e9:04:5c:54:80:2e:8c:e4:
95:3b:df:e6:0d:0a:9c:90:d1:d1:cf:88:cb:7c:dd:
bc:1c:ae:ba:40:66:2e:14:58:82:62:7c:32:37:26:
53:47:db:69:a1:8d:07:77:17:6f:33:5a:89:08:a5:
97:af:54:67:5b:42:04:6e:c3:0a:47:82:ed:32:66:
5e:9e:54:c2:79:e1:9b:2e:ba:4e:98:26:96:3d:a0:
75:8b:0c:be:78:35:95:0e:dc:ac:5b:b1:73:06:f9:
13:58:80:d3:1d:0d:a6:be:d9:96:e1:25:f3:06:26:
9d:97:01:e9:97:0a:d5:4b:b4:ec:e0:62:8b:24:b9:
ef:92:33:9c:fe:9b:5a:92:bf:f5:5d:16:3d:f3:cf:
f5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:50:5C:16:83:71:53:D2:67:8B:C8:4E:82:74:A9:41:A8:D9:3C:9B
X509v3 Authority Key Identifier:
keyid:E8:B6:5F:1D:5E:97:0E:60:82:D2:CF:D6:F9:9E:F9:C8:17:4A:14:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LZfHV6XDmCC0s_W-Z75yBdKFEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/35f43b-087c-490b-9c03-1857e4268fbf/1/y1BcFoNxU9Jni8hOgnSpQajZPJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/35f43b-087c-490b-9c03-1857e4268fbf/1/6LZfHV6XDmCC0s_W-Z75yBdKFEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.224.0/22
IPv6:
2a0c:b380::/29
Signature Algorithm: sha256WithRSAEncryption
4a:30:b0:f8:4a:f2:00:11:e1:08:65:52:11:dc:5b:e4:6f:4e:
ae:18:8b:90:e8:7b:e8:d2:ec:f6:c3:51:7a:ef:eb:08:f2:93:
49:b9:5c:4e:56:84:2f:d8:c9:26:45:43:d4:03:34:c7:f5:17:
f9:05:62:8d:7b:8d:31:00:74:aa:bc:2a:3e:a5:53:4a:4d:df:
53:f8:d3:72:4c:19:51:05:15:57:e5:85:08:83:4e:24:22:56:
9a:e8:38:b9:47:45:04:b4:dd:f6:f4:72:bb:ba:f1:52:0f:aa:
74:8a:0e:1d:10:3f:8c:7e:01:2b:28:d2:f4:23:0d:d6:67:19:
9e:b3:89:79:36:b0:fa:83:dd:73:39:26:13:07:47:f4:18:a6:
df:7b:62:45:89:d1:c4:b3:0d:7c:f7:da:90:4c:3e:86:02:82:
7a:d4:75:b0:18:ba:d2:23:aa:f5:75:30:2d:1c:d6:f7:8b:82:
77:24:c7:98:04:a7:35:1b:79:d4:41:f5:47:74:0f:b9:33:5d:
d2:83:fc:ac:0d:36:ea:ba:f5:dc:db:02:62:a5:46:39:17:dc:
fb:00:7b:d9:e0:33:48:96:1e:1b:b0:ec:4b:f0:5a:c7:06:c1:
34:2f:1f:5f:88:7a:e7:e9:c4:16:a2:57:8d:82:a4:a7:5a:6b:
f2:cc:93:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:11 2023 by rpki-client on console-fra.rpki-client.org