Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/Ylo3XJDjgmrIBta_BmfgDk6xnXA.roa
File: Ylo3XJDjgmrIBta_BmfgDk6xnXA.roa (raw, json)
Hash identifier: MbL+zeRwOUuEqqk1KNtYOpr2LLP9LXdSUeRAKFaxIBQ=
Subject key identifier: 62:5A:37:5C:90:E3:82:6A:C8:06:D6:BF:06:67:E0:0E:4E:B1:9D:70
Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Certificate serial: 2FDC8B94
Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/Ylo3XJDjgmrIBta_BmfgDk6xnXA.roa
Signing time: Sat 01 Jan 2022 10:53:54 +0000
ROA not before: Sat 01 Jan 2022 10:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38916
IP address blocks: 185.237.18.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 802982804 (0x2fdc8b94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Validity
Not Before: Jan 1 10:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=625a375c90e3826ac806d6bf0667e00e4eb19d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:00:2e:60:60:dd:51:5a:22:c7:5b:cd:28:d5:
05:d2:04:16:16:3c:3f:7d:5b:3b:35:a1:9e:cd:b2:
52:0a:55:8e:5e:3c:c3:63:51:9a:db:b6:97:4b:cf:
c0:c6:86:ce:eb:46:90:86:e3:25:ab:39:cc:68:3c:
30:21:fa:59:3a:4c:6c:f4:25:4c:83:39:7a:0b:67:
c1:7a:22:eb:34:05:45:3c:0a:ad:f2:fe:80:b6:f8:
f0:0d:2a:8a:11:e3:12:fc:17:86:50:72:ca:a4:45:
3f:68:2e:e0:1a:e9:86:5c:98:fc:26:2b:39:dc:95:
99:df:d0:0e:a4:cf:d3:1b:b4:ff:75:23:1f:71:ed:
58:9b:48:61:a6:ab:1b:15:24:5a:48:e6:8f:a8:c5:
d7:ee:99:25:0f:5c:1d:c2:90:e4:64:37:4d:a5:1f:
b4:48:35:95:9d:f6:6a:fd:7d:31:a6:70:7d:65:be:
cd:ef:6a:35:2c:7b:c7:f8:90:e7:30:ec:03:15:c6:
1a:43:e6:5a:09:00:58:ee:96:9a:b9:6f:3a:6d:59:
3e:d6:03:01:47:09:10:39:85:8e:d4:3a:d4:32:03:
89:c8:67:44:66:57:3d:20:34:a6:17:03:15:43:ef:
f7:b0:b6:40:93:be:8f:b3:24:ac:18:74:15:dc:dc:
6e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:5A:37:5C:90:E3:82:6A:C8:06:D6:BF:06:67:E0:0E:4E:B1:9D:70
X509v3 Authority Key Identifier:
keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/Ylo3XJDjgmrIBta_BmfgDk6xnXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.18.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:76:3c:9a:a2:5c:5b:08:53:e0:51:5f:e1:65:cb:eb:0d:1c:
da:96:a5:db:7d:56:14:46:c5:bf:19:f1:b4:34:09:7b:6e:21:
b5:f7:69:f4:99:0c:19:c6:5d:33:21:f3:80:e8:13:4f:37:5b:
e5:3d:81:4f:04:b7:1e:a5:74:4c:13:2d:92:ce:8d:43:83:ae:
74:b7:0d:eb:c1:4e:25:e1:e2:77:aa:c2:83:3c:4f:81:dd:71:
be:a9:f7:ef:a0:e6:7c:8e:7e:2d:99:c2:cd:cf:fa:c0:22:7c:
bd:9b:8b:df:4b:fc:3f:34:5d:67:42:0e:c6:90:ae:e3:69:ed:
16:c2:42:fe:05:a2:e9:6e:c1:95:b6:80:5c:f8:65:43:b4:04:
8b:3a:61:72:b0:d9:30:b9:df:5e:25:cb:8f:9d:84:a1:1a:21:
44:f7:80:bf:75:6e:5f:bd:b3:05:d3:cf:b8:0c:c2:04:cf:2c:
6e:0f:4f:de:aa:1e:e4:f1:a7:6c:2d:0d:26:e6:0f:41:c9:ac:
f3:21:0a:65:6b:6c:75:f5:f1:52:f6:bd:af:b1:eb:8d:17:d0:
18:ea:f5:a2:95:78:7f:6f:f7:c9:2a:e4:f6:64:bd:d5:3a:a2:
dd:df:20:09:d9:eb:76:f8:db:1c:28:66:3a:52:62:5b:2f:d5:
1e:bc:0a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:42 2024 by rpki-client on console-ams.rpki-client.org