Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/yKv1_u6YHlmka2yAVVAjru0dHYk.roa
File: yKv1_u6YHlmka2yAVVAjru0dHYk.roa (raw, json)
Hash identifier: hHRfL1Ql4XKnth3ATnn5jtP4eecmVjBRncnhcJBqznQ=
Subject key identifier: C8:AB:F5:FE:EE:98:1E:59:A4:6B:6C:80:55:50:23:AE:ED:1D:1D:89
Certificate issuer: /CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Certificate serial: 018408C2239E31B9CC3C4F891149602D539F
Authority key identifier: 15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/yKv1_u6YHlmka2yAVVAjru0dHYk.roa
Signing time: Mon 24 Oct 2022 06:50:51 +0000
ROA not before: Mon 24 Oct 2022 06:50:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 185.150.216.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:08:c2:23:9e:31:b9:cc:3c:4f:89:11:49:60:2d:53:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Validity
Not Before: Oct 24 06:50:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8abf5feee981e59a46b6c80555023aeed1d1d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:75:5e:68:68:dc:18:9d:e1:59:63:82:69:0a:
df:f6:b5:20:f8:0c:25:7a:25:77:1a:d0:88:4f:68:
2f:c8:ee:eb:81:24:0f:19:e5:46:54:23:28:f7:52:
83:cf:9a:37:10:0f:57:91:8d:f7:72:8b:4d:0b:64:
b3:a3:36:10:5d:8e:80:48:5e:3f:93:80:e5:84:48:
45:13:40:29:a4:23:83:0d:96:f4:39:99:ce:6b:36:
c1:f1:02:18:af:4f:dd:57:b7:3c:30:48:9c:f6:12:
66:20:84:9c:12:45:98:2a:76:24:8f:bc:21:09:6c:
65:29:d3:1e:73:21:3d:d9:40:0a:4e:1a:3f:e8:5b:
65:2b:46:0c:8e:3b:a0:7c:97:a3:08:70:5e:bc:54:
a6:1d:68:0e:a3:f1:c9:98:32:1c:b2:18:d7:31:58:
60:a7:5e:57:89:e1:a2:2e:c1:f1:3c:43:86:3c:ff:
40:57:8e:88:1d:1f:0d:f4:a0:01:8c:a9:25:32:13:
07:9a:f6:1c:d1:0a:b1:88:c5:d5:3e:70:b4:94:41:
68:1f:4f:53:09:43:c2:1a:66:7a:f5:4d:ef:0d:3d:
cb:40:17:f3:76:41:e7:f8:26:4a:96:58:37:d7:7c:
79:4b:3e:49:fe:f0:cb:6c:e3:21:e8:75:bc:f1:b4:
74:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AB:F5:FE:EE:98:1E:59:A4:6B:6C:80:55:50:23:AE:ED:1D:1D:89
X509v3 Authority Key Identifier:
keyid:15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/yKv1_u6YHlmka2yAVVAjru0dHYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.216.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:29:35:34:f3:92:34:41:56:51:bc:76:f5:43:72:80:12:16:
1c:12:1f:83:74:6d:9e:de:91:2b:d7:b4:72:8a:64:c6:c8:7a:
5a:ef:f8:40:58:df:91:2e:89:1d:c8:2f:30:ec:b7:dd:b3:ee:
90:f5:c1:5a:fe:67:da:a5:9c:c8:39:dd:2a:d3:c7:6c:86:a7:
2e:8a:ad:55:75:d6:cc:03:2a:44:d9:03:6d:45:96:72:98:be:
0d:6f:86:e3:20:79:5b:9c:7f:c9:70:d6:89:b0:71:5e:f9:d8:
77:6c:ec:43:ee:f4:a8:6e:cc:4d:8e:23:90:5f:30:e2:43:5e:
d4:b5:60:c4:c5:9a:3f:73:68:9b:de:e6:ac:79:c0:3e:57:85:
37:03:ed:b6:f9:2a:ee:11:43:b9:6d:e5:4c:8a:1d:31:fa:2f:
ae:72:40:40:58:85:04:26:77:86:e7:b9:cd:6f:32:f0:86:93:
a9:05:10:c2:e8:8c:07:0f:e3:3c:3d:eb:8c:00:9a:96:0e:0d:
e1:ae:84:e8:27:d6:1d:fb:bf:e4:86:03:85:ba:0a:5e:7f:86:
05:8b:04:2e:15:9b:a1:81:c8:4f:dd:56:4c:e5:08:d5:c6:3f:
d4:43:40:f9:2f:17:65:e2:89:26:6f:d0:a5:ec:1f:74:0d:8e:
d1:ff:b0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:49 2023 by rpki-client on console-fra.rpki-client.org