Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/1YcFYEMB5NI9Bav_vxXU9qQVOcM.roa
File: 1YcFYEMB5NI9Bav_vxXU9qQVOcM.roa (raw, json)
Hash identifier: G45NdURQGReBasdRI9dMyLGQa3n83tz6OZvaQN06VAU=
Subject key identifier: D5:87:05:60:43:01:E4:D2:3D:05:AB:FF:BF:15:D4:F6:A4:15:39:C3
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 024C3658
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/1YcFYEMB5NI9Bav_vxXU9qQVOcM.roa
Signing time: Tue 01 Feb 2022 11:18:45 +0000
ROA not before: Tue 01 Feb 2022 11:18:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.132.187.0/24 maxlen: 24
185.212.206.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38549080 (0x24c3658)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Feb 1 11:18:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d58705604301e4d23d05abffbf15d4f6a41539c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:02:45:b9:c5:65:b9:f7:cf:e5:9c:1e:57:07:
6c:93:1e:bf:64:7e:d9:73:74:d4:0b:50:e2:95:01:
c9:a7:8e:18:cd:f9:9e:c1:bd:82:2b:3d:3f:07:d0:
06:3d:11:e6:75:d5:4e:4d:6c:55:04:ae:dd:96:56:
3a:8c:1b:62:1e:f7:53:83:56:21:af:05:93:58:27:
07:87:7a:66:f2:6d:13:d6:bb:a4:7d:c4:21:c4:60:
3b:5e:9a:ca:f9:d4:98:55:5d:41:99:64:ae:be:c8:
88:87:e9:b1:b8:c8:15:43:de:d1:de:01:49:ba:0a:
1f:a4:6f:ed:72:a3:6f:54:08:c8:4b:66:f8:95:a8:
7f:39:50:fe:b8:57:27:f9:82:99:71:cb:37:d8:52:
8a:c2:0e:69:0b:bb:40:c6:fa:40:80:01:1e:ba:21:
03:62:5a:ff:76:8f:d3:db:19:6e:3e:d6:cf:d8:e7:
2d:5b:69:fc:6a:35:99:88:0b:e0:97:9a:2d:2f:e9:
65:98:00:7b:67:e9:be:11:99:80:5e:ba:6a:68:28:
60:3d:1c:3d:fd:fb:da:d6:6c:6c:15:84:e3:22:90:
04:3b:88:4b:be:09:1d:05:40:d7:cd:56:33:d4:3e:
ef:c4:87:da:bf:55:6c:26:88:37:fe:9b:df:7a:1e:
d2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:87:05:60:43:01:E4:D2:3D:05:AB:FF:BF:15:D4:F6:A4:15:39:C3
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/1YcFYEMB5NI9Bav_vxXU9qQVOcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.187.0/24
185.212.206.0/23
Signature Algorithm: sha256WithRSAEncryption
61:ee:6d:fd:c1:b4:2a:c4:57:67:44:ab:12:70:72:5e:52:18:
fc:7e:2b:8e:66:6b:6e:85:b6:72:bc:d3:4d:07:c1:7e:f7:df:
1d:c4:db:5a:cc:b3:74:16:bd:f3:5e:58:76:61:92:39:c5:74:
44:24:7a:8d:81:a3:b8:1f:e6:25:70:62:2b:ab:9f:70:60:d5:
a9:91:83:14:d8:90:94:76:8f:10:ba:c9:4b:e6:4f:31:46:d1:
fb:66:28:f0:15:b9:48:be:8f:7d:ca:02:51:7a:db:1b:e8:86:
e2:51:f9:cc:1c:e0:5f:43:8e:25:4e:eb:1a:90:f4:48:18:35:
7d:3f:bc:ea:93:34:a0:4f:12:aa:23:b2:80:be:60:c1:6a:3c:
8a:2e:f2:5d:b3:28:0c:cc:dc:16:0b:b0:c5:9e:a3:7b:d5:d8:
5a:43:6f:f7:b7:57:b7:7b:13:86:33:47:ee:59:0d:9e:35:82:
57:cc:ba:5a:75:af:c8:c8:e8:4c:e0:c4:e1:a9:6f:d6:61:a6:
85:9d:c1:d5:eb:d3:d2:0d:99:38:47:57:cc:84:b0:be:08:d0:
05:a0:7e:2e:5f:e9:2c:3b:20:04:bc:cb:e1:38:6f:6d:1f:14:
2d:0c:83:67:50:02:ad:18:12:4e:a5:60:5a:ab:1f:0e:c0:a9:
82:b3:42:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:39 2023 by rpki-client on console-ams.rpki-client.org