Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/b170fb-a1be-4bd9-adb6-fe6dc17583e3/1/ryyAudx-xurTg4Di73tF4jXhI_Q.roa
File: ryyAudx-xurTg4Di73tF4jXhI_Q.roa (raw, json)
Hash identifier: ADMlaGHxsCQQ0pCIuIl7bN3M34EME5kMzxaxJEH1KVg=
Subject key identifier: AF:2C:80:B9:DC:7E:C6:EA:D3:83:80:E2:EF:7B:45:E2:35:E1:23:F4
Certificate issuer: /CN=65c293380bc41f52d9131585a8580038f92f5dcc
Certificate serial: 10504F1C
Authority key identifier: 65:C2:93:38:0B:C4:1F:52:D9:13:15:85:A8:58:00:38:F9:2F:5D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZcKTOAvEH1LZExWFqFgAOPkvXcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/b170fb-a1be-4bd9-adb6-fe6dc17583e3/1/ryyAudx-xurTg4Di73tF4jXhI_Q.roa
Signing time: Sat 01 Jan 2022 15:59:22 +0000
ROA not before: Sat 01 Jan 2022 15:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 192.109.175.0/24 maxlen: 24
139.174.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273698588 (0x10504f1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65c293380bc41f52d9131585a8580038f92f5dcc
Validity
Not Before: Jan 1 15:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af2c80b9dc7ec6ead38380e2ef7b45e235e123f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:25:ce:d7:06:42:0e:72:d4:c4:7b:1e:da:3d:
47:3e:13:a8:fd:b0:84:c0:15:a9:bd:dc:1d:c1:b3:
b6:a9:57:86:51:a5:f1:2a:bc:95:2e:7a:b2:10:c7:
60:ac:c8:8a:ec:2c:8e:b7:fb:13:7d:d3:d3:7c:59:
1a:83:f2:63:43:84:13:31:ed:71:3e:7f:54:b4:a8:
4d:00:98:d6:5c:b7:69:aa:db:24:9b:30:67:15:42:
2f:eb:a6:80:c7:9c:e0:1d:03:34:6f:7e:6b:26:4e:
6d:7a:8b:9d:5c:24:ff:ea:8d:d2:a1:a1:e0:78:fe:
0f:50:d0:d5:67:ea:9c:cd:34:b8:e6:2a:fb:83:48:
9d:ac:90:f8:e6:9b:01:65:5c:49:4f:85:4b:de:06:
8a:83:d0:59:71:97:66:6e:7a:4b:b0:54:be:36:ab:
e9:d4:71:95:f3:db:e4:0d:e3:07:3d:08:f9:ab:0c:
1f:50:cf:1a:23:7e:54:16:11:fc:c2:e7:07:bf:af:
51:41:52:ce:03:e4:00:55:12:b5:b5:98:c3:d8:af:
e2:20:0f:29:70:ae:81:60:e1:d2:b0:66:15:a3:3d:
d4:63:4a:49:ac:c6:64:8e:ba:14:e8:b3:84:71:ba:
0b:65:05:9c:d0:f3:ec:e8:42:66:85:03:e7:41:88:
9f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2C:80:B9:DC:7E:C6:EA:D3:83:80:E2:EF:7B:45:E2:35:E1:23:F4
X509v3 Authority Key Identifier:
keyid:65:C2:93:38:0B:C4:1F:52:D9:13:15:85:A8:58:00:38:F9:2F:5D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZcKTOAvEH1LZExWFqFgAOPkvXcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/b170fb-a1be-4bd9-adb6-fe6dc17583e3/1/ryyAudx-xurTg4Di73tF4jXhI_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/b170fb-a1be-4bd9-adb6-fe6dc17583e3/1/ZcKTOAvEH1LZExWFqFgAOPkvXcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.174.0.0/16
192.109.175.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:a4:54:d9:db:f2:49:a0:98:55:74:c0:89:16:c8:ef:e5:1c:
5d:b2:9b:72:22:0b:1d:07:ba:1a:d5:fe:58:60:a3:64:87:0f:
3d:1a:a4:d1:3c:c7:a4:cf:b6:ff:63:82:94:5b:6e:7f:67:77:
60:5f:c8:01:dc:dc:57:b8:c5:7d:e5:6d:07:22:e3:c0:f4:1b:
1d:9b:8a:7e:af:26:74:71:04:dd:4c:6a:56:d3:58:e3:ea:14:
3d:e0:06:ce:b7:ce:a1:c1:f8:2d:f8:e6:ea:f7:fe:b6:77:18:
85:91:d8:f0:1a:13:91:ba:9b:e6:b6:cf:f5:8f:a8:15:96:a9:
e8:5f:70:2b:f3:b4:c2:fc:b0:da:15:d1:2d:fc:7b:4a:ef:67:
f3:2b:15:a1:bf:3a:93:7e:7d:7f:51:27:64:ac:f2:b5:74:e0:
61:b4:e2:9d:87:d8:ee:83:f5:fd:c7:f2:df:80:ea:1b:02:26:
95:61:07:60:f2:7f:0d:c4:96:0c:b5:33:50:34:19:df:be:f8:
dd:60:01:2d:9a:72:10:8a:14:7a:d2:e7:81:e8:71:7b:72:d6:
ca:3c:cd:09:f7:83:00:ad:80:67:29:e2:ee:9d:32:d2:6e:d5:
83:b5:c9:e5:bf:0c:86:2b:b0:61:01:0c:64:0f:b6:05:6d:d4:
8a:bd:6f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:31 2024 by rpki-client on console-fra.rpki-client.org