Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a1bd16-84b4-4612-a7f0-9c76d10ec532/1/yoDbQBxRPYDMpjhHHNVqg57VnzQ.roa
File: yoDbQBxRPYDMpjhHHNVqg57VnzQ.roa (raw, json)
Hash identifier: OZSBQvRRn06TdJ0uXdg9/SxIXqis/6WtWjAsOyCy5OU=
Subject key identifier: CA:80:DB:40:1C:51:3D:80:CC:A6:38:47:1C:D5:6A:83:9E:D5:9F:34
Certificate issuer: /CN=6b7dfe4b68b20895ededf3a003232a979e17c38c
Certificate serial: 05011310
Authority key identifier: 6B:7D:FE:4B:68:B2:08:95:ED:ED:F3:A0:03:23:2A:97:9E:17:C3:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a33-S2iyCJXt7fOgAyMql54Xw4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a1bd16-84b4-4612-a7f0-9c76d10ec532/1/yoDbQBxRPYDMpjhHHNVqg57VnzQ.roa
Signing time: Sat 01 Jan 2022 16:06:11 +0000
ROA not before: Sat 01 Jan 2022 16:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212889
IP address blocks: 185.164.22.0/24 maxlen: 24
185.164.23.0/24 maxlen: 24
185.164.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83956496 (0x5011310)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7dfe4b68b20895ededf3a003232a979e17c38c
Validity
Not Before: Jan 1 16:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca80db401c513d80cca638471cd56a839ed59f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:84:56:8d:58:6b:c4:cb:28:d2:75:bc:78:dc:
25:75:0e:f5:d4:57:5c:79:08:ba:25:8b:3d:59:3e:
d1:81:51:19:d9:fd:4f:d6:ed:19:8b:12:77:97:1c:
d9:a5:f6:13:2b:e3:0a:29:18:de:25:d9:01:d0:7c:
55:8f:e9:fd:66:44:6f:9a:fc:4e:2e:07:9c:90:89:
58:64:7f:00:2c:9e:41:2b:65:ee:7b:5e:a5:7b:76:
9f:81:ab:72:79:db:83:ba:ab:78:20:41:1d:44:77:
f3:31:75:67:f2:28:61:21:4d:bb:97:7e:3f:3d:5d:
73:88:17:b7:69:6b:6b:95:66:32:a7:3f:ff:64:2b:
97:d6:09:f0:03:1e:6c:b5:f6:47:06:dc:08:02:cd:
39:74:33:2f:6d:79:05:0d:63:52:2d:f8:0b:c3:e1:
a6:57:bb:ff:95:0e:80:7f:63:6e:02:36:5c:05:b1:
d1:b2:d8:5a:51:f6:b8:0a:bd:bc:c1:94:97:37:a0:
ed:3a:4b:92:e7:a2:dc:3f:aa:1e:c0:a5:db:65:69:
1d:3a:33:21:d9:b4:df:2f:f4:8b:28:34:3b:ae:62:
15:f2:fd:73:2f:ca:2f:3b:ef:4a:62:71:24:40:2e:
6e:f0:f2:d8:03:e3:0a:a1:4d:ab:e0:7b:83:49:fc:
ff:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:80:DB:40:1C:51:3D:80:CC:A6:38:47:1C:D5:6A:83:9E:D5:9F:34
X509v3 Authority Key Identifier:
keyid:6B:7D:FE:4B:68:B2:08:95:ED:ED:F3:A0:03:23:2A:97:9E:17:C3:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a33-S2iyCJXt7fOgAyMql54Xw4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a1bd16-84b4-4612-a7f0-9c76d10ec532/1/yoDbQBxRPYDMpjhHHNVqg57VnzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a1bd16-84b4-4612-a7f0-9c76d10ec532/1/a33-S2iyCJXt7fOgAyMql54Xw4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.20.0/24
185.164.22.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:d8:9c:87:5f:17:00:79:a9:da:0b:c2:0d:8d:b8:72:63:0f:
4f:f8:42:7f:2f:5f:10:87:8a:85:43:71:b1:9d:a8:1e:f5:16:
c5:f4:07:ba:7b:ec:e4:d5:c4:a4:6b:a1:b7:c9:17:51:80:b5:
38:49:8f:74:a2:53:ee:11:4f:0a:8e:15:7b:75:d3:95:5c:69:
a9:23:ab:b5:73:c5:31:a9:ab:84:bc:fd:d4:a4:95:53:06:83:
4d:2e:ec:7b:16:a2:81:51:7c:39:f6:71:d4:6d:95:78:56:45:
9d:57:fd:05:03:ce:ca:2d:f6:74:a8:75:2f:6e:5f:22:94:bb:
6e:7a:a3:79:3f:a5:65:4d:57:d6:9e:5f:00:12:a3:52:d4:db:
07:34:95:40:14:8e:98:8d:57:36:21:f1:42:bd:78:cb:ea:7f:
2c:92:e3:4e:e1:83:78:b4:4b:c3:21:b0:4d:80:97:dd:2c:cc:
f9:9d:aa:5d:85:a3:a1:ad:c7:2d:f0:90:ca:14:d2:14:38:dd:
a7:3d:04:b4:f4:64:ec:16:05:f7:7f:47:90:0f:a4:8d:db:c5:
25:79:3b:e5:fc:45:d2:d9:5c:43:a7:b9:95:e8:e6:b0:c3:3e:
47:1d:e8:a1:65:e5:00:13:f8:ef:a1:b7:f7:cd:6c:0d:5a:33:
1d:38:e8:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:47 2024 by rpki-client on console-ams.rpki-client.org