Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/yN1YFM5-niGIez2FtvLopki2dPY.roa
File: yN1YFM5-niGIez2FtvLopki2dPY.roa (raw, json)
Hash identifier: ih1jVm6fUXOyQ8v8oHJqs06WN7qI71MgwSHcE24mIt8=
Subject key identifier: C8:DD:58:14:CE:7E:9E:21:88:7B:3D:85:B6:F2:E8:A6:48:B6:74:F6
Certificate issuer: /CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Certificate serial: 3688DBE4
Authority key identifier: AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/yN1YFM5-niGIez2FtvLopki2dPY.roa
Signing time: Sat 01 Jan 2022 12:56:49 +0000
ROA not before: Sat 01 Jan 2022 12:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206833
IP address blocks: 185.44.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 914938852 (0x3688dbe4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Validity
Not Before: Jan 1 12:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8dd5814ce7e9e21887b3d85b6f2e8a648b674f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c0:5f:18:81:b2:ee:97:3c:79:c1:ac:cf:38:
43:1e:bc:97:86:13:74:91:53:50:5d:39:a2:73:e7:
b0:df:0f:60:e5:2f:31:8c:1a:a8:a6:d9:cf:ff:0f:
bf:ff:a4:a6:bd:f3:b9:30:d3:ab:6f:cf:cc:01:5e:
9d:11:de:13:cc:d8:e3:90:8b:d3:3b:e5:58:64:09:
03:12:69:4c:11:28:b6:67:f9:72:5f:fc:26:07:a9:
ba:62:ed:2d:0a:fa:67:8c:c3:b7:dd:b3:99:e0:c9:
f6:5c:48:56:21:4a:04:c9:ec:53:81:b3:89:d2:3a:
f9:07:13:e8:0f:28:17:cb:a3:99:91:1b:ab:4e:31:
d3:eb:ba:54:88:ad:46:e9:e1:f1:3a:5e:f6:4d:58:
47:e3:16:9e:b7:5a:a1:24:35:ca:9e:a0:59:55:c7:
64:21:1f:f8:f9:48:ab:b1:40:98:1b:90:c8:5c:9d:
aa:6c:91:0a:3e:c4:e0:0c:8c:10:dd:4b:1d:f7:61:
c5:48:3a:06:2d:a2:41:0e:4d:2e:6e:ca:1b:13:98:
78:b2:1d:f2:0d:53:0d:5e:0f:50:65:c5:da:dc:94:
bb:d3:d2:a0:ca:57:77:09:b8:be:bb:73:9e:2e:0f:
f4:a2:0c:a7:9b:92:84:6c:55:92:dc:22:a3:9f:9d:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DD:58:14:CE:7E:9E:21:88:7B:3D:85:B6:F2:E8:A6:48:B6:74:F6
X509v3 Authority Key Identifier:
keyid:AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/yN1YFM5-niGIez2FtvLopki2dPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/qqthEeAEwqBE8Wi40oJzz2dE86g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.62.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:0d:44:f7:98:8a:63:dc:6b:1d:41:99:94:1b:45:e5:5a:c8:
0a:e8:4b:55:dd:97:41:f8:6c:f9:f8:68:93:31:6c:be:fa:b8:
cf:34:7e:3f:07:e4:a0:22:1e:de:3d:bc:0d:62:f8:32:89:d1:
50:1a:fb:62:3e:5b:dd:54:9a:85:de:59:ea:dc:4e:16:b8:0a:
38:0c:10:56:f7:55:c0:1b:e9:00:9e:18:42:10:8e:e6:41:a8:
7a:31:35:3c:f9:75:db:94:42:b9:27:06:d6:db:2b:cf:40:16:
1e:f2:7f:3d:a8:87:e7:65:08:a7:ff:68:f0:ee:e1:d7:78:b5:
6b:4f:93:cf:a4:7f:c1:81:94:0d:1a:43:8f:54:19:02:af:6e:
fe:f9:f8:57:65:8a:cc:f6:44:45:16:ac:6f:7a:f7:8f:ef:f3:
eb:09:cf:a7:75:d9:e9:b8:ee:3a:13:13:1a:da:53:8a:3c:bd:
f6:9c:9e:ea:eb:27:25:8e:b1:52:87:33:7a:85:66:f3:d2:77:
6b:5c:bb:ee:5b:14:2b:09:77:00:d6:ca:68:c7:3d:4c:b0:7d:
af:61:aa:9c:d7:d6:7e:80:15:46:7a:e3:c7:2e:02:71:80:27:
47:c4:5c:07:fc:d9:cf:bb:f0:c8:24:63:6d:7c:5f:bc:f4:f5:
f1:05:59:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:01 2025 by rpki-client