Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ryyKra6O2bAnyuWWnFyryh94DX8.roa
File: ryyKra6O2bAnyuWWnFyryh94DX8.roa (raw, json)
Hash identifier: ZNPEkIOoFetkm+zOEqcIsy0Vzf8NnHgjMDzzz/ZFx8w=
Subject key identifier: AF:2C:8A:AD:AE:8E:D9:B0:27:CA:E5:96:9C:5C:AB:CA:1F:78:0D:7F
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0182A0F483E23BBFA996ADE5B631B1E9B87C
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ryyKra6O2bAnyuWWnFyryh94DX8.roa
Signing time: Mon 15 Aug 2022 10:02:35 +0000
ROA not before: Mon 15 Aug 2022 10:02:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207633
IP address blocks: 5.180.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a0:f4:83:e2:3b:bf:a9:96:ad:e5:b6:31:b1:e9:b8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 15 10:02:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af2c8aadae8ed9b027cae5969c5cabca1f780d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dd:dd:a0:ba:04:58:31:a7:c9:a5:7c:b3:b2:
1e:8e:af:2c:7a:23:c1:7f:f9:b6:f8:8a:c0:f6:ea:
e8:31:3c:9f:c3:2f:24:53:d3:17:0d:67:fd:fc:69:
a6:77:41:7a:c4:11:b5:01:0c:36:82:e0:b4:26:09:
c2:ba:8c:1d:55:88:53:92:73:3e:f7:3f:ed:d7:da:
8f:f8:e5:08:03:43:52:80:7f:a7:d7:4a:36:01:14:
9a:f7:ab:5b:c6:71:3a:a8:ea:99:a0:0b:ec:ec:f5:
84:9e:0e:8d:7a:4c:22:96:66:af:4e:ae:fe:dd:b0:
12:8e:9b:54:f4:14:89:dd:c7:3c:21:9b:8d:75:f6:
74:63:e9:48:80:fe:c7:5f:0c:a5:aa:b2:d3:5b:e1:
21:7f:2f:a6:17:aa:e7:26:86:5e:ef:46:c0:03:44:
55:75:31:eb:da:c2:f3:19:ec:3c:97:2d:8d:2d:6c:
03:09:32:3c:b3:c7:12:10:07:6c:f9:ab:c0:35:2a:
19:ec:15:c7:f9:c2:be:9c:e6:e5:5a:2e:6c:a9:1e:
c1:68:24:5e:54:4f:c6:c6:ca:23:0f:ca:6f:3a:fb:
a7:7d:3f:24:55:73:b4:31:d8:ea:4e:a3:e7:97:7a:
41:ba:dd:c7:1e:ec:32:5d:85:b6:aa:8c:27:5d:7b:
39:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2C:8A:AD:AE:8E:D9:B0:27:CA:E5:96:9C:5C:AB:CA:1F:78:0D:7F
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ryyKra6O2bAnyuWWnFyryh94DX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:69:59:d8:99:9f:f0:6c:aa:f1:4c:48:fd:32:da:4c:6f:55:
97:08:8c:c0:5e:67:6e:a2:b0:45:86:7f:56:27:a7:89:d0:cd:
69:d6:d4:cd:ed:cc:f0:5a:28:81:1f:80:b2:e6:d6:c6:62:c3:
ce:fb:e0:c0:36:82:62:30:e2:84:99:9b:76:88:ce:e8:84:a6:
16:45:08:43:54:1f:3e:1b:8c:ec:fc:15:0b:2b:1c:30:9b:8c:
73:8c:e0:57:c4:a1:0d:69:b4:a3:13:a6:5f:9f:e4:10:a2:c7:
9e:de:b8:f6:d8:5a:f9:ce:62:1e:4a:03:eb:bf:d6:29:e3:25:
66:07:bb:ed:38:97:7f:75:da:14:c3:e3:9b:bd:e2:3d:d0:91:
82:b6:64:87:41:d5:f3:6c:5f:ab:1a:51:89:00:e1:66:8d:e0:
f1:22:86:68:00:f6:59:81:eb:f2:22:c1:d7:4c:54:09:6e:7d:
25:53:dd:86:29:69:d7:09:17:94:b6:1c:d3:48:e4:dc:68:7d:
53:d0:4a:0c:4c:a9:43:ad:a2:3c:13:33:4b:3c:29:be:1b:54:
e8:94:01:7d:b8:6d:f3:07:03:cd:8f:91:76:19:0c:f6:c9:67:
88:9b:9e:ed:01:35:47:62:ad:2b:4f:7a:5a:a9:72:45:7e:99:
ce:94:12:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:31 2025 by rpki-client