Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/py-CfKeYWkwpJsZPMFzolAa8SjM.roa
File: py-CfKeYWkwpJsZPMFzolAa8SjM.roa (raw, json)
Hash identifier: O+VniJaUot7ywVObArgG2UZTRtDCUtbS1Rr1yny9m20=
Subject key identifier: A7:2F:82:7C:A7:98:5A:4C:29:26:C6:4F:30:5C:E8:94:06:BC:4A:33
Certificate issuer: /CN=1659eb6040193df0681350905e639d0e58d5f9df
Certificate serial: 04B13E12
Authority key identifier: 16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/py-CfKeYWkwpJsZPMFzolAa8SjM.roa
Signing time: Sat 01 Jan 2022 06:58:59 +0000
ROA not before: Sat 01 Jan 2022 06:58:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14413
IP address blocks: 185.154.80.0/22 maxlen: 24
2a05:f506::/32 maxlen: 48
2a05:f505::/32 maxlen: 48
2a05:f504::/32 maxlen: 48
2a05:f500::/30 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78724626 (0x4b13e12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1659eb6040193df0681350905e639d0e58d5f9df
Validity
Not Before: Jan 1 06:58:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a72f827ca7985a4c2926c64f305ce89406bc4a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a2:69:2a:c5:4d:fd:0e:9f:e5:17:bc:5a:08:
fe:ba:bb:3b:c4:9b:bf:67:5b:97:98:a7:19:15:71:
9a:da:c5:6c:df:19:85:1d:49:87:dc:ef:0f:ac:b0:
23:9b:48:db:ff:1d:53:35:30:63:96:21:9e:21:8a:
29:57:d3:43:cd:93:7d:1b:17:7f:cb:da:1c:52:3d:
40:69:1b:f2:eb:61:19:79:c5:97:d5:43:8e:62:e1:
b6:ed:de:79:d0:3a:59:8e:77:89:cc:31:59:3c:82:
f3:18:b0:19:6a:c7:2d:a3:12:45:5b:4d:03:6f:2b:
8e:7c:3d:67:22:dd:3d:37:ac:fc:34:cf:97:37:e8:
be:3d:35:ca:8e:71:ea:ea:8f:9c:ec:ab:f9:2f:bc:
50:dc:d5:68:b7:99:2c:8d:97:01:5a:1e:2d:81:57:
0d:7e:aa:8c:90:38:8f:db:75:01:a1:e2:ec:2e:73:
06:95:bb:6a:a3:8a:0b:35:a6:b5:f3:ca:eb:79:74:
9d:1a:08:ec:d2:b1:5d:48:2d:88:14:a8:48:4b:3a:
c9:6d:ad:b5:3a:5c:f3:fc:99:60:f0:fe:11:3a:6b:
fd:be:7a:e9:30:e3:b0:a2:e7:d6:77:34:8b:1b:5f:
2c:52:ba:06:79:9c:e7:02:57:df:67:17:1d:7b:f3:
af:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2F:82:7C:A7:98:5A:4C:29:26:C6:4F:30:5C:E8:94:06:BC:4A:33
X509v3 Authority Key Identifier:
keyid:16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/py-CfKeYWkwpJsZPMFzolAa8SjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/FlnrYEAZPfBoE1CQXmOdDljV-d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.80.0/22
IPv6:
2a05:f500::-2a05:f506:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
58:b1:17:76:35:12:4c:d5:61:f0:8a:9c:6f:a9:05:f6:29:ed:
82:89:13:b7:0a:d4:48:ae:95:5f:8c:d0:ec:e3:e1:72:c0:cd:
c4:2d:44:ff:67:af:49:c1:18:78:1a:db:b6:d9:08:fe:f4:dd:
6e:04:39:cf:ae:a6:04:47:3c:57:6c:18:73:bb:7e:f5:eb:6e:
f1:b2:40:00:3b:8a:71:12:01:df:85:c8:8a:e9:05:e0:f2:66:
28:55:3d:0d:af:6e:11:94:be:87:6b:f3:0b:13:64:5e:fc:b0:
85:5f:6b:8d:21:ac:4e:ae:4b:51:ef:09:0e:df:73:df:f2:09:
75:13:40:c3:61:f5:4c:7d:01:00:cc:44:9d:8d:63:bb:0b:ae:
14:38:d1:c9:37:73:60:c4:64:18:c7:35:61:b0:af:3b:27:d2:
c2:26:28:f7:b8:89:bf:d7:4a:80:5c:f2:47:b3:31:ad:0a:d0:
15:4b:f5:29:39:b2:81:4b:19:ee:3d:e5:6b:08:97:ad:df:4e:
d2:e9:ff:79:b5:b8:9c:73:c8:0f:ed:c0:44:3e:d0:28:c2:32:
bb:19:15:ea:62:98:fc:89:3f:60:ed:de:9f:34:9a:cf:8a:e4:
3c:8b:03:b5:53:bd:cf:7e:6e:63:02:f8:1c:97:43:8a:da:b1:
42:72:30:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:18 2023 by rpki-client on console-ams.rpki-client.org