Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/cea65f-eca1-4f80-874e-5bcfce5ca2c7/1/yS1-DUNdl2r98bs_A55uUCPEW38.roa
File: yS1-DUNdl2r98bs_A55uUCPEW38.roa (raw, json)
Hash identifier: hEvarAVYI3MdrjwlahY3oLzv5YIBFpga3MpvZV3hRRw=
Subject key identifier: C9:2D:7E:0D:43:5D:97:6A:FD:F1:BB:3F:03:9E:6E:50:23:C4:5B:7F
Certificate issuer: /CN=dead4c89f7aed8681d0202d22479d86e1462f889
Certificate serial: 0D94323E
Authority key identifier: DE:AD:4C:89:F7:AE:D8:68:1D:02:02:D2:24:79:D8:6E:14:62:F8:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3q1Mifeu2GgdAgLSJHnYbhRi-Ik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/cea65f-eca1-4f80-874e-5bcfce5ca2c7/1/yS1-DUNdl2r98bs_A55uUCPEW38.roa
Signing time: Sat 01 Jan 2022 10:54:56 +0000
ROA not before: Sat 01 Jan 2022 10:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25459
IP address blocks: 185.44.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227815998 (0xd94323e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dead4c89f7aed8681d0202d22479d86e1462f889
Validity
Not Before: Jan 1 10:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c92d7e0d435d976afdf1bb3f039e6e5023c45b7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5f:a9:51:4e:62:8f:14:b1:1e:4b:96:c8:d5:
8f:32:e7:20:f6:a4:64:f9:1b:68:54:5f:0d:c4:35:
3b:0c:ca:87:18:7d:b3:da:5e:20:e8:de:66:c0:7a:
2d:d6:96:8c:fb:f0:57:ca:14:f5:7e:23:8e:58:e4:
3a:78:23:04:34:5c:af:bf:ce:ce:b5:fc:e1:48:5c:
1e:b4:af:7a:f5:f6:a2:91:f0:a2:7c:82:fe:1a:f8:
0e:71:63:66:6b:cc:71:94:be:c1:ac:b8:76:9a:b4:
1b:a9:b5:14:2c:a6:85:b4:d6:cb:db:d9:af:d5:86:
82:40:32:cc:53:94:0d:aa:a3:47:b8:54:70:3f:79:
8f:e2:24:11:3c:5e:a4:b1:84:16:97:20:b5:b8:15:
13:43:b0:43:d2:40:d1:67:62:bc:dd:89:f0:4d:72:
c7:f1:18:eb:d3:5d:98:a1:ad:2c:cd:b2:8f:74:6a:
ad:a9:98:96:2e:e2:85:b9:e7:6f:3d:7d:d3:10:43:
6a:c0:90:de:ce:2d:c5:b3:29:39:59:33:30:5b:cf:
84:97:34:8a:9e:cc:45:66:4c:36:c4:d2:7c:71:44:
88:61:f6:ac:63:ab:7e:d5:70:6a:20:b0:19:49:b3:
53:b5:f3:b3:48:b7:1f:7f:11:4c:d3:28:6f:cd:89:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2D:7E:0D:43:5D:97:6A:FD:F1:BB:3F:03:9E:6E:50:23:C4:5B:7F
X509v3 Authority Key Identifier:
keyid:DE:AD:4C:89:F7:AE:D8:68:1D:02:02:D2:24:79:D8:6E:14:62:F8:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q1Mifeu2GgdAgLSJHnYbhRi-Ik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cea65f-eca1-4f80-874e-5bcfce5ca2c7/1/yS1-DUNdl2r98bs_A55uUCPEW38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cea65f-eca1-4f80-874e-5bcfce5ca2c7/1/3q1Mifeu2GgdAgLSJHnYbhRi-Ik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:e8:48:89:8a:58:a0:08:cc:80:dd:93:30:4a:8e:9b:26:3f:
2b:b6:9b:fe:2e:11:6c:6d:99:75:55:bb:c9:42:e0:d2:b6:f1:
6b:58:60:6d:6d:5b:62:50:f3:66:da:24:e8:6d:61:f3:13:31:
41:ea:1f:a4:3d:23:c2:d1:4c:73:88:ea:7f:2d:40:ad:57:70:
a9:e1:4a:2e:44:b7:97:be:11:e7:a0:d7:92:8d:4d:31:68:77:
ae:e6:fc:1b:37:64:a8:9a:46:c0:a8:e8:ba:10:a5:06:d9:d4:
1b:80:44:9a:1f:e8:8e:22:64:4d:c8:73:31:18:cb:3a:6b:9c:
a9:3c:37:2e:df:58:2e:63:87:19:d9:3f:d2:66:da:bf:e1:c3:
0e:c0:15:fd:6d:35:69:c5:4b:a8:0e:a3:14:a9:25:01:05:59:
69:f1:ee:c4:ca:ff:6e:86:79:cc:cf:0a:94:bc:12:18:a4:e4:
db:b5:4d:0f:ea:93:47:fc:c8:a3:bf:48:c5:b6:23:c1:f5:bb:
97:84:be:f4:20:35:fe:2d:17:18:cf:76:61:15:43:59:ed:88:
e9:03:39:19:e9:ac:b1:6a:f1:31:80:ce:54:d3:26:e2:b8:d7:
58:51:57:73:1d:00:ec:36:b0:be:ba:05:2f:49:56:85:fc:8c:
5e:38:43:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:34 2024 by rpki-client on console-ams.rpki-client.org