Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/79a64e-069f-499d-a631-8cd42cede220/1/TY5hhfNBZoL2sPUYTwfHFbpyXhQ.roa
File: TY5hhfNBZoL2sPUYTwfHFbpyXhQ.roa (raw, json)
Hash identifier: OKVjqzSEo8gfxYPB/ia0j1h9rWq+PFS2lrhlid4QK78=
Subject key identifier: 4D:8E:61:85:F3:41:66:82:F6:B0:F5:18:4F:07:C7:15:BA:72:5E:14
Certificate issuer: /CN=1594f00471e248abe394d521e96cba9630d8520e
Certificate serial: 0BBD4185
Authority key identifier: 15:94:F0:04:71:E2:48:AB:E3:94:D5:21:E9:6C:BA:96:30:D8:52:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZTwBHHiSKvjlNUh6Wy6ljDYUg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/79a64e-069f-499d-a631-8cd42cede220/1/TY5hhfNBZoL2sPUYTwfHFbpyXhQ.roa
Signing time: Sat 01 Jan 2022 06:06:16 +0000
ROA not before: Sat 01 Jan 2022 06:06:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49619
IP address blocks: 185.252.128.0/22 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196952453 (0xbbd4185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1594f00471e248abe394d521e96cba9630d8520e
Validity
Not Before: Jan 1 06:06:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d8e6185f3416682f6b0f5184f07c715ba725e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:dc:e2:ad:61:34:9e:49:5d:39:1b:86:13:
99:bf:4d:21:86:80:72:f6:6b:33:ff:98:e5:39:e2:
de:44:e5:c1:3c:f0:5c:5d:53:ea:d4:73:24:9e:ca:
78:44:e2:00:6e:75:81:3b:23:c5:8d:8d:4a:2f:8d:
0d:69:0b:4a:26:d7:83:0f:ee:93:47:1f:09:c4:87:
26:4d:80:61:73:52:50:70:c9:d4:1c:e3:28:37:ca:
ed:59:27:3a:88:88:e2:82:9f:53:76:1f:df:bb:c1:
62:ee:0b:17:71:46:e2:ae:16:45:61:22:b0:b8:0f:
73:1f:bc:29:80:4c:57:f5:b4:40:dd:4a:d0:4b:28:
8d:7a:0e:e1:1b:30:75:72:8f:d3:80:77:41:fc:99:
57:1e:11:1b:0c:af:91:f9:8f:a0:e1:9d:df:20:b5:
56:b4:7d:bf:2b:1c:ec:c0:e2:cb:36:86:74:60:db:
d6:48:d2:ce:a0:9c:27:56:8b:e6:92:77:35:7c:7f:
fe:ab:6f:01:0c:08:3f:7b:e6:fe:ce:cd:c4:d6:1b:
44:39:ba:dd:8f:cb:3d:6e:5c:43:1b:40:1b:79:23:
1e:b3:e2:5c:0e:82:30:6d:af:b8:9c:d6:8b:c7:74:
1d:5d:53:fc:0f:93:05:63:12:4c:43:ea:0c:59:67:
e9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8E:61:85:F3:41:66:82:F6:B0:F5:18:4F:07:C7:15:BA:72:5E:14
X509v3 Authority Key Identifier:
keyid:15:94:F0:04:71:E2:48:AB:E3:94:D5:21:E9:6C:BA:96:30:D8:52:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZTwBHHiSKvjlNUh6Wy6ljDYUg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/79a64e-069f-499d-a631-8cd42cede220/1/TY5hhfNBZoL2sPUYTwfHFbpyXhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/79a64e-069f-499d-a631-8cd42cede220/1/FZTwBHHiSKvjlNUh6Wy6ljDYUg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.128.0/22
Signature Algorithm: sha256WithRSAEncryption
31:9f:15:93:67:b3:0e:ae:9c:00:aa:02:0e:80:17:ec:ff:01:
bb:49:87:47:6c:72:89:4c:de:08:ae:0b:4a:30:d4:b9:93:ef:
0c:10:98:91:fa:41:74:19:30:44:c0:ee:eb:a3:6f:4f:ca:98:
a5:75:14:db:6e:63:bb:64:a6:fb:a4:86:d6:1f:ab:23:57:a1:
f6:ef:be:e2:53:72:17:d2:a3:90:3d:07:27:a8:1d:13:30:f8:
1a:5b:26:1e:72:89:2f:b8:bc:d1:8a:4e:7a:7b:80:85:0d:2f:
82:f4:6c:42:a5:d8:b3:63:eb:4d:b4:26:38:ba:e2:62:32:20:
a2:e8:90:ee:95:1a:0a:1f:bb:70:fb:51:43:26:d3:74:59:fa:
12:4d:74:ee:00:e7:c4:ac:8f:b1:e9:35:4e:e9:d3:ca:8b:b5:
a9:16:94:dd:d7:13:2f:2a:84:f7:6a:61:eb:db:a6:f1:fe:39:
3e:22:40:05:60:fc:3c:da:fd:ca:f4:dc:9f:ed:53:fe:88:17:
a3:7f:5e:39:dd:c9:0a:13:f3:57:c3:21:14:90:73:16:79:74:
60:59:59:e8:a6:bb:7f:cc:fd:1e:87:1a:3e:07:31:80:31:ae:
7b:8b:97:d8:0f:33:ac:56:0e:c7:a2:03:c0:5c:03:90:2d:d9:
f0:84:e2:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:19 2023 by rpki-client on console-ams.rpki-client.org