Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/Y5t6BMsZJi_thAUReUTGwfK1UL8.roa
File: Y5t6BMsZJi_thAUReUTGwfK1UL8.roa (raw, json)
Hash identifier: 6iJCNxjWTnwvO0vKo7tJeqaWdxt/3iTvw4E1rQPjw6Y=
Subject key identifier: 63:9B:7A:04:CB:19:26:2F:ED:84:05:11:79:44:C6:C1:F2:B5:50:BF
Certificate issuer: /CN=ecf42776be532bd0575332855d8c42c4952ed931
Certificate serial: 340DBAA7
Authority key identifier: EC:F4:27:76:BE:53:2B:D0:57:53:32:85:5D:8C:42:C4:95:2E:D9:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PQndr5TK9BXUzKFXYxCxJUu2TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/Y5t6BMsZJi_thAUReUTGwfK1UL8.roa
Signing time: Thu 05 May 2022 09:36:30 +0000
ROA not before: Thu 05 May 2022 09:36:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210742
IP address blocks: 185.210.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 873314983 (0x340dbaa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf42776be532bd0575332855d8c42c4952ed931
Validity
Not Before: May 5 09:36:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=639b7a04cb19262fed8405117944c6c1f2b550bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:47:f4:c3:d8:19:ce:ec:3f:04:a2:23:2d:02:
19:62:a7:2b:70:64:b5:b4:49:de:5d:42:fa:3e:3b:
75:91:a3:5f:67:ed:d9:9d:c6:f0:07:3f:fb:95:2b:
b5:ae:7b:1c:3c:73:10:f2:fd:78:fe:d5:ec:f0:cc:
ec:f4:73:3f:1e:8a:6a:10:d3:17:de:11:ba:d8:ba:
87:19:c4:76:84:26:ef:0e:0f:ba:b8:0a:b3:80:e0:
ea:a9:31:c5:f2:8c:fb:51:cf:92:12:4b:2c:9e:2c:
58:c8:0c:bc:fd:61:13:8f:c0:46:f6:2e:f6:50:f8:
cc:37:00:7b:fc:75:04:a7:fa:ae:e8:8f:18:e9:62:
63:24:45:92:bc:36:52:ff:00:c3:6c:b1:d3:8d:92:
49:de:79:8a:dc:c4:37:dc:01:30:dd:62:0b:95:61:
ea:89:a5:a0:2f:5e:b1:ae:5a:a0:45:f5:7f:c1:a7:
2c:e8:4d:74:82:ae:6b:df:3e:4f:d2:b4:21:e2:f1:
ff:de:fc:c6:e4:b7:fe:59:72:d1:3a:02:20:be:fe:
08:c7:f0:2c:6a:45:fd:a3:ea:7d:fe:46:01:5c:fc:
a8:a5:de:6d:9a:c7:3e:aa:38:0f:03:ad:8f:9a:e5:
47:74:b7:e2:93:20:e0:ca:83:04:91:40:ea:ff:d8:
14:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9B:7A:04:CB:19:26:2F:ED:84:05:11:79:44:C6:C1:F2:B5:50:BF
X509v3 Authority Key Identifier:
keyid:EC:F4:27:76:BE:53:2B:D0:57:53:32:85:5D:8C:42:C4:95:2E:D9:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PQndr5TK9BXUzKFXYxCxJUu2TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/Y5t6BMsZJi_thAUReUTGwfK1UL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/7PQndr5TK9BXUzKFXYxCxJUu2TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.32.0/22
Signature Algorithm: sha256WithRSAEncryption
06:35:7f:4f:28:ec:17:6e:88:10:47:b3:49:1f:17:c1:e5:27:
ff:6a:01:15:6a:49:94:90:59:3b:e1:6e:2a:fb:b9:af:fa:80:
d3:96:f7:fd:94:fe:bf:cf:04:92:3f:f7:a6:9e:c0:0f:93:a4:
56:2c:4d:75:31:dc:14:28:c7:ed:ac:db:8c:45:73:6d:04:f0:
3f:b0:5b:b0:29:77:73:e1:8f:88:b8:32:2d:ea:09:79:f2:60:
df:73:e7:c3:52:03:a3:6f:5e:3b:8b:2c:14:26:b0:01:1f:d5:
d6:ed:33:8c:a2:e3:71:39:84:1c:ef:df:6e:f3:35:90:55:d9:
b1:8e:d8:a7:6e:dd:60:bc:97:43:26:58:22:1e:4e:7e:2f:b9:
4e:d4:69:3f:a1:d6:8d:6e:3f:2b:d1:7d:a1:1b:e5:e4:b2:97:
f6:40:4e:90:e7:2a:31:52:7d:b7:0d:3b:70:ec:af:04:d6:76:
2d:95:31:e8:58:2e:8c:9d:67:f9:a8:e7:b9:0f:a4:94:9f:12:
ff:1e:d8:2f:51:b0:36:89:b8:e5:40:5a:a4:5f:99:f6:75:1d:
9b:b9:ed:87:6a:ae:c5:a5:a2:98:1f:a0:0d:4e:72:50:11:c7:
f5:fc:6f:eb:76:0a:04:18:76:0d:b0:4c:5a:4c:d5:92:ab:45:
59:5d:6b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:34 2023 by rpki-client on console-ams.rpki-client.org