Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/rylOEGWEs8C6w1stzcgUTxeR-AQ.roa
File: rylOEGWEs8C6w1stzcgUTxeR-AQ.roa (raw, json)
Hash identifier: MXRhAKE9rm+PNI3PrmLMoC5EK2vvrxpSMJ2ctXVn4mE=
Subject key identifier: AF:29:4E:10:65:84:B3:C0:BA:C3:5B:2D:CD:C8:14:4F:17:91:F8:04
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 169F27FF
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/rylOEGWEs8C6w1stzcgUTxeR-AQ.roa
Signing time: Thu 03 Feb 2022 11:21:41 +0000
ROA not before: Thu 03 Feb 2022 11:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210365
IP address blocks: 185.62.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379529215 (0x169f27ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Feb 3 11:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af294e106584b3c0bac35b2dcdc8144f1791f804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:86:0f:50:89:c2:1c:17:6a:18:c7:04:dc:cd:
0e:dc:f7:fe:9d:51:10:80:5e:6b:be:7b:e3:62:86:
1b:6a:60:c8:d6:18:83:b1:3f:d4:2a:e8:36:ac:2a:
f5:3c:9b:04:fc:c7:1e:46:54:e3:fd:f8:34:ba:24:
86:ed:5a:ac:d0:5d:90:e7:9a:08:83:ac:3e:2b:dd:
3d:c3:50:59:a4:f1:69:e5:c3:7d:d0:56:4e:6f:88:
12:90:ab:58:f8:88:6f:91:5a:db:c0:28:df:31:04:
42:6a:89:0c:47:8d:ce:8c:11:64:63:30:15:81:40:
2a:8a:fd:6a:fc:13:5f:00:97:28:ee:17:13:e5:a0:
3e:86:7d:b6:c7:b2:47:ff:f2:69:4f:08:a7:1e:a2:
6e:21:97:b7:67:cc:9d:c9:2b:7a:37:df:20:14:8a:
19:7c:7d:17:74:99:51:7e:cf:97:48:9b:76:aa:88:
d1:89:f4:33:e5:53:7c:c3:53:26:f1:4c:bd:6e:72:
63:27:a6:08:20:9e:9d:ee:25:6e:fe:c2:78:3e:24:
2e:f5:37:86:2c:fd:60:ff:c9:3b:ad:59:22:64:a3:
83:43:83:d3:5a:0a:66:c7:15:e5:15:48:60:80:49:
10:a5:52:ae:c5:70:99:07:59:2b:c8:b1:df:68:b3:
d5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:29:4E:10:65:84:B3:C0:BA:C3:5B:2D:CD:C8:14:4F:17:91:F8:04
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/rylOEGWEs8C6w1stzcgUTxeR-AQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.206.0/24
Signature Algorithm: sha256WithRSAEncryption
93:5d:78:d4:d8:c7:95:70:8b:18:f6:20:d1:49:1d:3e:6c:0d:
e2:fa:a3:36:8c:90:b3:c0:86:8a:1d:cd:5f:0f:df:01:95:1f:
bd:16:0c:73:2e:98:68:51:45:51:94:1a:3f:56:cf:e0:69:8a:
92:6b:93:ea:6b:23:ff:06:69:4f:cf:ef:e0:8b:e2:fd:48:28:
46:ee:a1:4b:93:88:8e:45:8b:ee:86:32:4c:a9:ec:0c:ba:54:
d5:a5:37:01:b9:28:58:80:cb:fc:7e:4d:1c:e3:b3:8e:f6:41:
b4:f9:77:ef:3f:e6:6f:eb:8d:99:f3:00:3c:44:76:49:19:2a:
15:59:16:67:04:5a:1c:84:aa:8c:1d:f1:ac:31:de:52:a2:d1:
be:33:12:f5:e7:ad:43:91:de:34:d1:25:30:a2:9c:05:f5:02:
27:bf:2d:16:f0:a4:13:eb:c9:ac:fa:9a:5f:11:f0:d1:f4:8a:
7d:cd:6e:9d:fa:82:d9:39:08:45:28:5f:e7:6e:e8:1d:8f:38:
3e:3b:dd:08:da:62:28:1c:10:2a:fa:66:81:15:da:52:91:fa:
29:7b:8a:0c:fd:c6:35:33:79:b6:72:10:86:31:e6:68:f6:55:
b5:d0:c5:e4:7d:40:c9:5a:e7:ff:4e:22:a4:38:56:ae:c3:0a:
5a:ad:99:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org