Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/yBy5UUBowk7hbY4CRM-5S5Vosuc.roa
File: yBy5UUBowk7hbY4CRM-5S5Vosuc.roa (raw, json)
Hash identifier: 7xN7cTgtLZSNehJm3D/KW0ZtVY0d9VIYuiI6v9cYT6M=
Subject key identifier: C8:1C:B9:51:40:68:C2:4E:E1:6D:8E:02:44:CF:B9:4B:95:68:B2:E7
Certificate issuer: /CN=e8d878aa53081893ba528524ef143ea9271392b8
Certificate serial: 0D6FBF4B
Authority key identifier: E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/yBy5UUBowk7hbY4CRM-5S5Vosuc.roa
Signing time: Sat 01 Jan 2022 09:57:50 +0000
ROA not before: Sat 01 Jan 2022 09:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64431
IP address blocks: 185.165.128.0/22 maxlen: 24
2a0a:600::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225427275 (0xd6fbf4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8d878aa53081893ba528524ef143ea9271392b8
Validity
Not Before: Jan 1 09:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c81cb9514068c24ee16d8e0244cfb94b9568b2e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e5:4d:64:99:ad:22:92:58:7c:b7:5b:7c:ac:
e3:db:df:f2:32:3c:3b:5f:f8:7a:90:3a:33:5b:d2:
dc:92:22:ec:04:7b:ef:d8:fe:6c:5b:d6:68:c4:3c:
19:ce:4a:88:d0:dd:2e:f4:94:06:a0:ad:52:2e:9d:
de:23:68:6a:e9:93:81:b5:f8:a0:e1:83:9f:85:1c:
37:33:fe:5a:e6:d9:18:4b:29:8a:20:b7:d0:85:4c:
09:a0:bd:88:84:cd:72:7f:3a:90:1d:f8:44:7d:79:
0b:61:c5:b4:15:84:37:47:df:55:5c:40:c3:02:8f:
c5:4d:00:ba:c6:50:25:c2:3c:5f:fc:58:fe:f6:03:
bd:47:14:cd:b9:12:48:6d:bd:ba:f1:5c:56:c6:6b:
54:ba:45:f1:b8:43:82:02:e7:2b:f6:e2:4a:27:e6:
32:06:46:aa:c0:84:e9:f1:39:aa:aa:01:7f:73:05:
7e:95:9f:e7:c9:15:b1:6b:5a:9f:8b:99:d9:46:a7:
a2:50:e4:ec:57:b6:d7:6c:ee:81:b2:a0:e4:5b:9a:
f2:1c:b6:86:69:78:b7:79:e1:3b:a4:11:64:91:15:
a7:ce:ee:35:e7:f7:c8:eb:f2:24:25:2f:50:45:07:
10:5d:3c:53:ee:cd:58:b3:b1:dd:2c:43:84:9c:0f:
62:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1C:B9:51:40:68:C2:4E:E1:6D:8E:02:44:CF:B9:4B:95:68:B2:E7
X509v3 Authority Key Identifier:
keyid:E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/yBy5UUBowk7hbY4CRM-5S5Vosuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.128.0/22
IPv6:
2a0a:600::/29
Signature Algorithm: sha256WithRSAEncryption
97:fb:a5:d5:c1:0a:d3:c5:66:1d:46:58:89:ca:15:b7:33:87:
43:44:5b:5b:24:a8:e4:29:f5:71:93:7b:9e:fd:2f:70:e5:d1:
d4:4c:a4:9f:05:7a:ac:27:ab:01:2c:64:07:be:97:9c:73:1f:
f1:d8:99:f4:c2:a0:db:8e:d4:9c:df:3a:bb:42:92:e1:f3:e4:
02:63:ca:af:02:3a:d8:f5:f5:a5:d7:29:82:f5:ba:99:c3:cb:
ba:25:af:90:8b:50:d0:d0:81:45:78:2c:5c:d4:c6:99:44:97:
9e:5f:b9:a9:77:29:57:f4:d3:f1:53:0d:8c:60:6b:10:bb:44:
b7:4a:ae:29:01:c3:96:f6:d7:c3:df:9c:46:d3:f6:9a:ee:9c:
ce:13:da:7e:3f:7f:d6:ac:6b:6b:19:fb:64:bb:e2:61:a5:0b:
2a:04:4b:19:a9:1f:f0:6a:12:0e:14:ae:0c:d4:60:95:d9:67:
38:10:15:15:77:71:a1:0c:8e:6a:b2:69:e3:f3:57:3a:3f:ff:
2e:35:31:f6:99:aa:d0:b6:85:b8:91:8c:95:95:23:7f:12:40:
a1:f8:fe:ec:07:2e:8b:2e:c1:cf:90:40:c8:b1:05:6d:ce:63:
de:3a:5c:53:0a:d7:14:d7:13:db:aa:1e:0e:e0:1c:fe:64:cb:
96:6f:bc:64
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEDW+/SzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OGQ4NzhhYTUzMDgxODkzYmE1Mjg1MjRlZjE0M2VhOTI3MTM5MmI4MB4XDTIyMDEw
MTA5NTc1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzgxY2I5NTE0MDY4
YzI0ZWUxNmQ4ZTAyNDRjZmI5NGI5NTY4YjJlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO/lTWSZrSKSWHy3W3ys49vf8jI8O1/4epA6M1vS3JIi7AR7
79j+bFvWaMQ8Gc5KiNDdLvSUBqCtUi6d3iNoaumTgbX4oOGDn4UcNzP+WubZGEsp
iiC30IVMCaC9iITNcn86kB34RH15C2HFtBWEN0ffVVxAwwKPxU0AusZQJcI8X/xY
/vYDvUcUzbkSSG29uvFcVsZrVLpF8bhDggLnK/biSifmMgZGqsCE6fE5qqoBf3MF
fpWf58kVsWtan4uZ2UanolDk7Fe212zugbKg5Fua8hy2hml4t3nhO6QRZJEVp87u
Nef3yOvyJCUvUEUHEF08U+7NWLOx3SxDhJwPYlUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTIHLlRQGjCTuFtjgJEz7lLlWiy5zAfBgNVHSMEGDAWgBTo2HiqUwgYk7pS
hSTvFD6pJxOSuDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZOaDRxbE1JR0pPNlVvVWs3eFEtcVNjVGtyZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvYWQ2NGJiLWQ1MzktNGE4ZS1iMGU2LTVmODliODg1ZjcyOS8x
L3lCeTVVVUJvd2s3aGJZNENSTS01UzVWb3N1Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
YWQ2NGJiLWQ1MzktNGE4ZS1iMGU2LTVmODliODg1ZjcyOS8xLzZOaDRxbE1JR0pP
NlVvVWs3eFEtcVNjVGtyZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmlgDANBAIAAjAHAwUDKgoGADAN
BgkqhkiG9w0BAQsFAAOCAQEAl/ul1cEK08VmHUZYicoVtzOHQ0RbWySo5Cn1cZN7
nv0vcOXR1EyknwV6rCerASxkB76XnHMf8diZ9MKg247UnN86u0KS4fPkAmPKrwI6
2PX1pdcpgvW6mcPLuiWvkItQ0NCBRXgsXNTGmUSXnl+5qXcpV/TT8VMNjGBrELtE
t0quKQHDlvbXw9+cRtP2mu6czhPafj9/1qxraxn7ZLviYaULKgRLGakf8GoSDhSu
DNRgldlnOBAVFXdxoQyOarJp4/NXOj//LjUx9pmq0LaFuJGMlZUjfxJAofj+7Acu
iy7Bz5BAyLEFbc5j3jpcUwrXFNcT26oeDuAc/mTLlm+8ZA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:30 2024 by rpki-client on console-ams.rpki-client.org