Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fb8db5-1189-4351-bde7-206bcca78421/1/yrJ9Lu590CYfoR_2kF9uDa_bO0U.roa
File: yrJ9Lu590CYfoR_2kF9uDa_bO0U.roa (raw, json)
Hash identifier: Ax0xW7b9jP6EYhGRNob+SGVYoci5eqbKFopKt7zm/Ac=
Subject key identifier: CA:B2:7D:2E:EE:7D:D0:26:1F:A1:1F:F6:90:5F:6E:0D:AF:DB:3B:45
Certificate issuer: /CN=f9e659e7eef6d73b686eb1d2956c71f3be5bbd77
Certificate serial: 17027A05
Authority key identifier: F9:E6:59:E7:EE:F6:D7:3B:68:6E:B1:D2:95:6C:71:F3:BE:5B:BD:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-eZZ5-721ztobrHSlWxx875bvXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb8db5-1189-4351-bde7-206bcca78421/1/yrJ9Lu590CYfoR_2kF9uDa_bO0U.roa
Signing time: Sat 01 Jan 2022 10:57:20 +0000
ROA not before: Sat 01 Jan 2022 10:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15657
IP address blocks: 185.79.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386038277 (0x17027a05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9e659e7eef6d73b686eb1d2956c71f3be5bbd77
Validity
Not Before: Jan 1 10:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cab27d2eee7dd0261fa11ff6905f6e0dafdb3b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c6:22:58:79:c7:c5:57:3f:84:88:48:7b:d9:
6f:09:89:9c:80:31:d7:e1:cb:d0:43:9f:61:06:8d:
82:50:a2:45:8c:0c:cc:b7:da:a5:7f:4f:3c:d0:10:
f1:d8:98:44:e7:43:0e:08:c0:7f:73:db:3f:5e:15:
3f:9c:9d:8f:d6:78:ae:80:fd:a3:4e:4b:f6:08:1a:
54:25:38:c1:73:73:8c:88:68:76:ff:f7:96:e5:b4:
e5:1d:18:fb:ba:00:ca:a6:52:ac:87:e0:a1:70:f4:
f1:3d:0c:fd:af:aa:c3:5e:bd:56:ec:71:7f:62:db:
ad:ca:f5:1e:40:50:8a:33:2a:d7:63:3b:53:d1:31:
ef:9e:ec:1e:3f:1a:cb:06:b7:de:20:d5:f5:0d:5b:
5a:ba:65:73:c1:d8:f1:51:8b:2d:3b:28:60:14:c2:
2c:7e:e7:f2:05:ad:d7:d0:c2:19:37:83:04:a9:56:
04:02:61:28:3e:1a:df:35:63:24:2e:47:47:31:70:
17:da:2a:ab:50:85:98:82:b5:b3:8d:ec:65:14:0c:
0c:98:27:61:3e:ec:23:cc:a6:58:c7:0f:d3:d7:4b:
f1:7c:71:cb:ad:d9:07:51:47:0c:6d:8b:20:50:3a:
e0:a7:fd:18:81:97:76:50:a8:5c:30:ad:a8:83:38:
fc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B2:7D:2E:EE:7D:D0:26:1F:A1:1F:F6:90:5F:6E:0D:AF:DB:3B:45
X509v3 Authority Key Identifier:
keyid:F9:E6:59:E7:EE:F6:D7:3B:68:6E:B1:D2:95:6C:71:F3:BE:5B:BD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-eZZ5-721ztobrHSlWxx875bvXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb8db5-1189-4351-bde7-206bcca78421/1/yrJ9Lu590CYfoR_2kF9uDa_bO0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb8db5-1189-4351-bde7-206bcca78421/1/1-eZZ5-721ztobrHSlWxx875bvXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.208.0/22
Signature Algorithm: sha256WithRSAEncryption
54:d0:a7:8f:20:6f:a7:cf:2b:f4:67:fc:2a:20:0b:83:d9:b4:
0e:27:3b:8b:2d:67:23:7f:3a:09:cd:b5:d7:bb:d9:76:67:3e:
ae:8b:f2:8d:1e:b6:26:23:a6:81:57:8b:7f:96:98:af:f1:b9:
f2:9f:50:9e:8c:58:27:f2:54:81:dc:47:35:c1:4e:c6:0b:4e:
c2:e2:e5:22:3d:c9:b0:fd:fc:cd:a9:8e:72:89:02:51:32:15:
1f:5f:e1:02:a0:ea:aa:35:54:68:46:9a:46:b0:e8:26:62:07:
c3:df:f8:05:3d:49:d5:f5:e0:9a:33:2d:c1:87:02:d5:f5:5b:
e6:5a:2c:6e:00:d5:63:1e:e0:b8:16:e6:6d:67:9f:4f:03:f7:
da:70:14:9e:19:96:f3:bb:99:a4:ca:85:b6:68:99:1a:06:ef:
80:7c:d4:92:20:2f:92:c5:fa:db:41:a1:e3:dd:b6:a7:25:c6:
5a:0e:87:18:0d:d4:3f:32:d7:ae:53:51:de:0d:86:c8:cd:e6:
31:c9:9a:41:a7:01:67:85:9e:c0:ab:12:45:ee:8f:27:0a:61:
ba:4c:77:ca:2d:96:00:87:26:45:83:67:df:b2:d3:e4:c5:63:
3b:71:a7:a3:01:0b:a6:ba:fb:0f:b7:59:a4:69:43:1e:a5:9f:
b6:b0:e9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:09 2023 by rpki-client on console-ams.rpki-client.org