Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/YGpe7BVVPZZJCzVnpXN3Ydq7UgE.roa
File: YGpe7BVVPZZJCzVnpXN3Ydq7UgE.roa (raw, json)
Hash identifier: I364ZQyqPC1jEcSkaEDpB8TwaaU8iWEXwMGOtfmTaic=
Subject key identifier: 60:6A:5E:EC:15:55:3D:96:49:0B:35:67:A5:73:77:61:DA:BB:52:01
Certificate issuer: /CN=ff80b7710b139844275c9de9c8e764eb642e18c3
Certificate serial: 02CD969D
Authority key identifier: FF:80:B7:71:0B:13:98:44:27:5C:9D:E9:C8:E7:64:EB:64:2E:18:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4C3cQsTmEQnXJ3pyOdk62QuGMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/YGpe7BVVPZZJCzVnpXN3Ydq7UgE.roa
Signing time: Sat 01 Jan 2022 05:04:31 +0000
ROA not before: Sat 01 Jan 2022 05:04:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205718
IP address blocks: 185.229.156.0/22 maxlen: 22
2a09:eb40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47027869 (0x2cd969d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff80b7710b139844275c9de9c8e764eb642e18c3
Validity
Not Before: Jan 1 05:04:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=606a5eec15553d96490b3567a5737761dabb5201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:69:d0:37:6e:56:c2:71:d6:48:c4:03:bb:fc:
42:20:fa:35:cb:61:75:44:d7:b8:e8:d5:85:c0:a1:
1d:00:92:d5:39:62:4d:9b:b3:01:fc:bc:b4:cb:6a:
a5:83:91:ba:ff:97:a9:e7:4d:49:69:a4:55:e8:9b:
44:45:51:5e:a8:70:3d:7f:7d:f9:02:f2:92:30:f1:
76:22:06:17:16:02:f0:01:3c:c7:18:58:26:75:b3:
4a:c3:d6:59:42:1b:2b:f4:6d:22:7c:30:fe:3f:90:
bc:a8:12:a5:7b:bf:5c:01:4c:40:b0:3d:30:80:8a:
2a:e7:6d:88:57:4c:09:41:46:c8:51:74:0e:0a:9a:
36:a6:85:2c:11:b1:53:f2:dc:5a:26:ea:54:8e:5e:
2c:f6:45:b1:e8:5f:9c:04:ee:bd:a6:e6:9b:6f:d8:
dd:ba:78:9a:af:8b:ab:6c:41:42:09:58:40:dc:a0:
9e:f0:2b:a2:fb:24:f3:02:e1:70:bb:ed:6d:6c:d5:
00:da:77:37:77:06:bf:c2:ff:3c:08:de:ba:3b:91:
b1:80:c3:9e:5f:1b:06:52:a0:c3:83:21:84:c9:2e:
6a:91:55:e3:21:89:8c:c1:e9:11:1a:55:ba:61:35:
dc:ce:8f:e0:7b:4a:a2:40:49:17:ab:ff:d5:0f:e4:
96:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:6A:5E:EC:15:55:3D:96:49:0B:35:67:A5:73:77:61:DA:BB:52:01
X509v3 Authority Key Identifier:
keyid:FF:80:B7:71:0B:13:98:44:27:5C:9D:E9:C8:E7:64:EB:64:2E:18:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4C3cQsTmEQnXJ3pyOdk62QuGMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/YGpe7BVVPZZJCzVnpXN3Ydq7UgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/_4C3cQsTmEQnXJ3pyOdk62QuGMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.156.0/22
IPv6:
2a09:eb40::/32
Signature Algorithm: sha256WithRSAEncryption
34:11:c1:c6:89:8c:f9:cb:63:9f:e7:b0:b0:a5:dc:8b:37:5a:
fb:bb:f3:37:c9:d8:77:7a:fb:c0:ae:62:39:45:9a:dd:b8:b6:
1c:f1:91:33:c2:71:0d:a5:bb:0b:16:77:5c:1f:7c:46:85:8c:
4a:d3:67:33:2c:8a:6f:03:48:9c:5e:0d:8d:8c:b9:62:55:78:
05:80:07:d8:f3:f9:0f:e1:3b:63:26:79:fd:6e:b0:fc:52:b2:
56:a8:a8:f8:fa:e1:22:d1:28:d2:dc:09:b7:8c:cf:e3:2a:7c:
0d:28:4d:93:7c:3a:14:92:24:18:9a:75:c1:84:04:a6:d3:5c:
b0:4c:99:6e:f4:1d:d4:f5:8b:d0:df:66:0d:a2:b3:65:a7:9b:
85:95:1d:b6:74:aa:95:fe:f7:dc:b3:a5:b7:dc:6c:84:ae:03:
39:2a:48:88:8e:86:36:d0:b2:4a:87:33:fd:17:8f:5b:bc:d2:
57:cd:6e:0b:54:b0:18:c5:3f:a6:fc:20:7f:8e:26:cf:b3:27:
aa:10:c7:7e:c7:be:47:ad:13:94:1e:98:fa:4e:9d:29:ee:91:
90:3e:1e:d9:32:9f:d2:a7:a4:54:0c:94:8c:3f:c3:c9:9f:b5:
6f:ed:3f:eb:a9:19:71:d9:fc:b3:31:7c:22:d5:bd:c0:a0:02:
a5:2b:10:ef
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAs2WnTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZjgwYjc3MTBiMTM5ODQ0Mjc1YzlkZTljOGU3NjRlYjY0MmUxOGMzMB4XDTIyMDEw
MTA1MDQzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjA2YTVlZWMxNTU1
M2Q5NjQ5MGIzNTY3YTU3Mzc3NjFkYWJiNTIwMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlp0DduVsJx1kjEA7v8QiD6NcthdUTXuOjVhcChHQCS1Tli
TZuzAfy8tMtqpYORuv+XqedNSWmkVeibREVRXqhwPX99+QLykjDxdiIGFxYC8AE8
xxhYJnWzSsPWWUIbK/RtInww/j+QvKgSpXu/XAFMQLA9MICKKudtiFdMCUFGyFF0
DgqaNqaFLBGxU/LcWibqVI5eLPZFsehfnATuvabmm2/Y3bp4mq+Lq2xBQglYQNyg
nvArovsk8wLhcLvtbWzVANp3N3cGv8L/PAjeujuRsYDDnl8bBlKgw4MhhMkuapFV
4yGJjMHpERpVumE13M6P4HtKokBJF6v/1Q/kls8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRgal7sFVU9lkkLNWelc3dh2rtSATAfBgNVHSMEGDAWgBT/gLdxCxOYRCdc
nenI52TrZC4YwzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L180QzNjUXNUbUVRblhKM3B5T2RrNjJRdUdNTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjEvZjhhMGE1LWIxODUtNDlhNS04NWFkLTEzM2VmZjc4NDQyYi8x
L1lHcGU3QlZWUFpaSkN6Vm5wWE4zWWRxN1VnRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEv
ZjhhMGE1LWIxODUtNDlhNS04NWFkLTEzM2VmZjc4NDQyYi8xL180QzNjUXNUbUVR
blhKM3B5T2RrNjJRdUdNTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArnlnDANBAIAAjAHAwUAKgnrQDAN
BgkqhkiG9w0BAQsFAAOCAQEANBHBxomM+ctjn+ewsKXcizda+7vzN8nYd3r7wK5i
OUWa3bi2HPGRM8JxDaW7CxZ3XB98RoWMStNnMyyKbwNInF4NjYy5YlV4BYAH2PP5
D+E7YyZ5/W6w/FKyVqio+PrhItEo0twJt4zP4yp8DShNk3w6FJIkGJp1wYQEptNc
sEyZbvQd1PWL0N9mDaKzZaebhZUdtnSqlf733LOlt9xshK4DOSpIiI6GNtCySocz
/RePW7zSV81uC1SwGMU/pvwgf44mz7MnqhDHfse+R60TlB6Y+k6dKe6RkD4e2TKf
0qekVAyUjD/DyZ+1b+0/66kZcdn8szF8ItW9wKACpSsQ7w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:41 2023 by rpki-client on console-ams.rpki-client.org