Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Yhqbdi_iZPvEeeA54wb8dkQ8FBo.roa
File: Yhqbdi_iZPvEeeA54wb8dkQ8FBo.roa (raw, json)
Hash identifier: xpqQkvndZoG8WmqSxKXaCjbzHnULl21/GvAnc3m/8Y0=
Subject key identifier: 62:1A:9B:76:2F:E2:64:FB:C4:79:E0:39:E3:06:FC:76:44:3C:14:1A
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0DF0EF4C
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Yhqbdi_iZPvEeeA54wb8dkQ8FBo.roa
Signing time: Sat 01 Jan 2022 10:54:15 +0000
ROA not before: Sat 01 Jan 2022 10:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212560
IP address blocks: 185.101.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233893708 (0xdf0ef4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 10:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=621a9b762fe264fbc479e039e306fc76443c141a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0e:4e:81:cf:4d:b0:87:7b:a5:6c:78:2d:29:
3f:8c:26:3b:d3:15:b9:67:2b:25:09:fd:e3:51:15:
92:e8:1f:0f:b9:b8:47:74:05:52:9b:e3:4a:16:60:
f6:6e:f1:78:78:a4:e6:8b:77:dc:ea:4b:e9:33:68:
d4:2e:bb:d2:84:a5:70:01:24:17:74:e6:1f:5c:56:
29:98:35:d4:2e:a3:5c:ed:38:84:46:26:d0:6e:1e:
89:a4:e0:f1:d6:64:70:a7:0e:39:be:eb:8c:0e:3a:
1f:8c:61:07:76:a6:c0:d3:9d:ce:8d:52:17:e2:3f:
fe:8c:40:b3:61:a4:a1:f7:7c:50:ff:93:a6:92:03:
9d:2d:52:7f:4a:38:61:a1:39:8c:48:25:61:9f:c7:
57:70:e2:73:a6:91:be:a8:29:6a:af:f0:e9:9f:a7:
ab:80:7e:84:6d:8f:c1:45:75:16:76:c6:3f:37:61:
7e:28:06:e0:3d:e6:81:4d:d0:5c:5c:c8:7f:52:67:
f0:00:66:31:0a:57:69:26:93:e5:86:32:02:94:56:
b4:ce:c5:3c:6e:f5:e1:53:1b:69:13:3d:14:14:6e:
cb:2d:ef:f8:c0:9c:07:b1:9b:7c:8d:f5:ed:3f:6c:
9a:34:40:37:0a:1e:d1:0c:28:b9:f0:a0:97:70:65:
1d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1A:9B:76:2F:E2:64:FB:C4:79:E0:39:E3:06:FC:76:44:3C:14:1A
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/Yhqbdi_iZPvEeeA54wb8dkQ8FBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.245.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:5c:85:45:6b:61:41:42:2d:e0:92:bb:83:37:4d:fe:08:a5:
e3:0e:6c:fb:37:30:8c:b3:e9:1a:24:be:ce:a7:69:5d:b7:e6:
ee:1c:d1:d2:84:c1:dd:af:35:72:d8:aa:44:a7:ca:5f:71:e4:
17:22:82:8d:79:24:96:47:ef:57:df:78:4b:ff:6c:bf:e9:ad:
2b:0e:4a:49:2d:a5:ac:2d:2a:52:01:53:ef:0f:6a:95:ce:e1:
d7:e0:79:24:81:44:28:a5:bd:ff:59:d9:50:63:47:6b:11:d7:
a1:c9:92:f5:c4:1e:c1:0f:aa:c9:1d:b7:d1:38:27:83:37:f8:
dc:1e:15:16:c1:61:94:20:d2:1d:be:99:7c:94:c6:3e:5c:07:
0a:0c:a0:e4:1d:69:97:eb:4a:a2:2f:ac:0f:dd:2e:0a:6c:f0:
bf:7e:fe:93:1b:98:6c:e3:6c:40:8d:32:47:6b:3b:71:68:6d:
8b:07:d3:ce:73:a7:a6:00:1e:db:43:6a:69:b5:58:16:b5:d7:
0f:4b:b0:be:92:ab:aa:6b:19:e5:42:4e:67:c1:dd:28:65:24:
e5:47:8c:34:a5:7e:7d:28:27:3a:48:a7:a6:de:ec:2f:71:48:
b9:85:c1:74:f7:35:75:c5:da:1e:e3:a5:6a:bc:43:92:c8:ea:
81:31:03:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:37 2023 by rpki-client on console-ams.rpki-client.org