Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ee9f74-f12a-46a6-8447-1cbe0cce11a7/1/Y19QDtlZpa_Y2Jw_562Fdzpt5eM.roa
File: Y19QDtlZpa_Y2Jw_562Fdzpt5eM.roa (raw, json)
Hash identifier: RrV4QLBg6iazl7On593aRmZFWRc8v84xqhuRjeqy8NE=
Subject key identifier: 63:5F:50:0E:D9:59:A5:AF:D8:D8:9C:3F:E7:AD:85:77:3A:6D:E5:E3
Certificate issuer: /CN=beb221926f757ab069fe752d38c068a48964f88b
Certificate serial: 13E30494
Authority key identifier: BE:B2:21:92:6F:75:7A:B0:69:FE:75:2D:38:C0:68:A4:89:64:F8:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrIhkm91erBp_nUtOMBopIlk-Is.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ee9f74-f12a-46a6-8447-1cbe0cce11a7/1/Y19QDtlZpa_Y2Jw_562Fdzpt5eM.roa
Signing time: Sat 01 Jan 2022 06:57:00 +0000
ROA not before: Sat 01 Jan 2022 06:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201038
IP address blocks: 185.87.216.0/22 maxlen: 24
2a03:7c60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333644948 (0x13e30494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beb221926f757ab069fe752d38c068a48964f88b
Validity
Not Before: Jan 1 06:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=635f500ed959a5afd8d89c3fe7ad85773a6de5e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:92:18:10:46:17:24:f1:0f:8e:97:62:45:fe:
d2:02:59:c1:3e:7b:ba:f0:ca:65:0e:c2:1f:30:a3:
31:f8:28:ab:54:59:63:a7:c6:4b:d5:bc:09:32:74:
1d:c0:dc:fb:25:a8:0e:7f:54:11:40:78:76:57:de:
a3:e2:80:fe:38:cd:2e:65:ba:58:f9:bf:b3:28:24:
92:50:ef:4a:54:af:16:b5:f9:54:9f:88:6a:5f:df:
d4:79:e3:cd:4c:dc:0c:90:d1:0d:f6:a4:01:3a:80:
34:ef:ae:64:99:d1:4c:ff:13:26:db:e9:1c:bc:88:
e1:0e:c3:2c:d5:d3:b6:bc:c7:83:44:08:69:6b:f8:
07:ec:37:ea:7f:27:3b:58:3c:39:ea:22:e2:86:a2:
35:d2:b5:82:0a:2b:df:22:bd:6f:35:94:79:cd:e8:
6c:00:ad:cf:57:c2:80:8d:b5:07:71:7f:8f:a8:5a:
14:2c:84:2f:09:f2:32:6b:6d:a1:25:51:97:44:7f:
4e:cc:77:8e:83:0e:60:77:e0:c7:2d:05:04:6e:0c:
2d:f8:2e:75:55:ef:5b:17:50:5b:e3:91:f5:06:ec:
85:2b:08:78:09:ef:1f:46:eb:47:8e:40:c3:25:4d:
fa:33:c6:e2:6e:23:5a:75:12:3d:45:f0:12:7d:27:
88:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:5F:50:0E:D9:59:A5:AF:D8:D8:9C:3F:E7:AD:85:77:3A:6D:E5:E3
X509v3 Authority Key Identifier:
keyid:BE:B2:21:92:6F:75:7A:B0:69:FE:75:2D:38:C0:68:A4:89:64:F8:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrIhkm91erBp_nUtOMBopIlk-Is.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ee9f74-f12a-46a6-8447-1cbe0cce11a7/1/Y19QDtlZpa_Y2Jw_562Fdzpt5eM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ee9f74-f12a-46a6-8447-1cbe0cce11a7/1/vrIhkm91erBp_nUtOMBopIlk-Is.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.216.0/22
IPv6:
2a03:7c60::/32
Signature Algorithm: sha256WithRSAEncryption
76:59:f4:e2:b0:72:04:84:6f:0f:8d:fb:d9:b8:95:e3:ae:16:
1e:ae:c0:af:28:57:f2:93:a5:d7:e8:a8:60:2d:4c:3e:d3:25:
17:c6:91:74:0a:5f:8c:be:36:20:f7:ab:a6:3f:07:d4:91:f6:
29:06:26:b5:a4:2b:49:a6:37:4f:b6:c3:c1:c7:a5:db:41:b2:
c7:ac:da:e3:42:e2:59:e2:4a:9c:31:bb:cd:b8:99:08:d2:55:
6c:a2:ad:d2:71:2b:ad:b8:2f:74:b3:83:e9:53:f9:67:9e:5c:
2f:55:da:11:de:12:05:f4:f8:bb:da:24:20:12:fb:95:77:ec:
5b:2f:2b:58:6c:bd:ab:b2:c9:ad:d4:4c:fb:d1:85:df:06:61:
cd:85:2d:d3:b7:ef:fe:22:9e:41:d3:73:04:39:cb:d2:c6:2e:
01:31:63:4d:09:d6:7b:c4:e2:f7:cb:da:a5:63:4e:f9:57:78:
11:d7:bb:59:08:fb:7f:b2:4f:ed:c0:a2:17:b8:e2:e7:d9:48:
fd:d9:4b:26:f3:33:87:e9:ea:73:cf:75:04:a3:1c:8d:4b:8e:
e5:fd:56:95:d7:65:e1:dc:af:c2:45:a8:30:85:e3:7b:8f:8b:
ef:c6:3a:39:0f:dc:38:9a:77:61:2d:23:7f:95:dc:ef:d8:0f:
94:cb:7e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:11 2023 by rpki-client on console-ams.rpki-client.org