Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/YwzWBZBieZdm-LvFkrHBt_y-C08.roa
File: YwzWBZBieZdm-LvFkrHBt_y-C08.roa (raw, json)
Hash identifier: 4Jsaa8wt5OY7K0A5ZW3Ka854Z8JaJuK9GXwEIg6ghgM=
Subject key identifier: 63:0C:D6:05:90:62:79:97:66:F8:BB:C5:92:B1:C1:B7:FC:BE:0B:4F
Certificate issuer: /CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Certificate serial: 0155ADDB
Authority key identifier: 04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/YwzWBZBieZdm-LvFkrHBt_y-C08.roa
Signing time: Tue 15 Mar 2022 12:31:28 +0000
ROA not before: Tue 15 Mar 2022 12:31:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31679
IP address blocks: 185.165.38.0/24 maxlen: 24
185.165.37.0/24 maxlen: 24
185.165.36.0/24 maxlen: 24
185.165.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22392283 (0x155addb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Validity
Not Before: Mar 15 12:31:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=630cd6059062799766f8bbc592b1c1b7fcbe0b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5a:ac:7d:26:2e:0c:f3:81:c4:7d:c7:01:5b:
4e:66:95:38:33:4b:1c:f4:03:ab:b3:00:dc:ae:e4:
ac:df:2c:cb:36:21:ee:ea:b6:2a:2d:03:1e:1c:cf:
41:90:3d:4b:90:f0:72:50:6c:9f:8c:49:ca:e1:91:
8e:b1:e1:72:ae:72:c7:26:45:4d:80:2a:03:1f:4d:
cf:d2:29:24:41:56:80:1a:14:39:ba:bc:a7:06:9d:
ff:27:87:0a:51:64:78:d4:15:26:5b:6d:c0:98:35:
84:de:6b:cc:7b:84:d9:89:88:1f:22:78:4e:0f:b3:
6b:9c:34:73:e4:07:c8:ce:c8:d1:39:10:be:70:2b:
e0:46:55:4f:fa:76:20:e8:9c:d3:08:ca:9b:4d:0a:
db:ac:31:c0:e7:36:14:57:bf:16:c4:59:e3:63:3f:
3e:37:04:64:b9:f6:27:f0:d9:76:dd:6d:5d:5f:a0:
41:3b:32:7f:a7:e2:d6:92:3b:25:dc:d8:7f:09:3c:
6a:06:c1:b5:92:cd:63:39:9b:09:fa:ca:05:7e:f9:
64:62:6d:9c:0a:b3:b5:2e:4b:13:47:78:ff:dc:3b:
6e:5f:62:25:26:72:51:62:bf:18:5e:a4:8f:54:e6:
83:d5:1e:4a:fa:86:ab:e7:2d:33:3a:52:59:47:d6:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0C:D6:05:90:62:79:97:66:F8:BB:C5:92:B1:C1:B7:FC:BE:0B:4F
X509v3 Authority Key Identifier:
keyid:04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/YwzWBZBieZdm-LvFkrHBt_y-C08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.36.0/22
Signature Algorithm: sha256WithRSAEncryption
24:f2:29:56:9b:01:0e:b4:51:e9:42:dd:7a:e6:ee:2b:cd:ee:
0d:70:f5:cf:8f:99:35:82:1b:fa:4a:33:bc:b8:47:2a:54:a0:
9b:7d:a6:18:ff:ab:73:d5:f0:7a:c0:a3:59:40:e6:0b:b8:9c:
26:e2:0a:da:f0:9b:e9:ae:72:62:06:a8:65:84:a1:be:0d:27:
58:83:10:5a:bf:88:5b:49:cc:4f:18:67:df:9a:d5:a8:4a:72:
cd:ca:d9:7b:9c:25:22:87:9e:4a:88:ed:f5:f9:82:50:e2:98:
17:20:5d:f6:d6:d9:19:69:e9:ac:ce:cd:81:ca:7f:c8:fa:a1:
cd:aa:62:71:81:cb:59:e3:e9:6c:50:fe:26:44:f0:2a:f0:0d:
64:5e:f4:b5:26:4e:94:4e:23:61:3a:bf:e0:b2:be:7b:43:e1:
3d:e9:93:15:4c:7f:3a:f6:cd:c4:d1:b2:b2:b4:cd:54:9b:25:
d0:14:65:f2:92:3c:3b:b4:de:22:e4:7c:4c:06:d6:b4:63:37:
34:35:fd:96:c7:1e:92:84:c7:13:45:71:d2:b6:be:88:ad:10:
6f:21:48:64:01:d7:9c:a4:b9:b8:3c:78:a3:33:b4:ba:55:76:
e8:59:e5:43:f0:c2:16:b2:2a:1b:41:6d:c2:41:28:73:88:dd:
b2:4c:2a:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:51 2023 by rpki-client on console-fra.rpki-client.org