Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/8YsGYuhSilDgyTJdRZYAcidwzzA.roa
File: 8YsGYuhSilDgyTJdRZYAcidwzzA.roa (raw, json)
Hash identifier: xFBmpd5CasJmh0w/UcW0b166uDQSRXzgISybrPpjKZo=
Subject key identifier: F1:8B:06:62:E8:52:8A:50:E0:C9:32:5D:45:96:00:72:27:70:CF:30
Certificate issuer: /CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Certificate serial: 26350591
Authority key identifier: 65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/8YsGYuhSilDgyTJdRZYAcidwzzA.roa
Signing time: Sat 01 Jan 2022 07:02:52 +0000
ROA not before: Sat 01 Jan 2022 07:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61292
IP address blocks: 185.12.56.0/24 maxlen: 24
185.152.34.0/24 maxlen: 24
2a02:ed03::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 641009041 (0x26350591)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Validity
Not Before: Jan 1 07:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f18b0662e8528a50e0c9325d459600722770cf30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:91:08:b3:c0:6b:c6:60:4a:ac:0a:da:10:
a0:45:95:98:28:53:0b:c4:02:71:09:42:5a:39:eb:
9c:04:a8:42:b8:21:ef:a1:1e:cc:53:7f:3b:61:d3:
9a:cb:49:ad:e4:89:27:86:30:57:db:c7:17:98:0a:
50:6a:ec:57:c3:c2:43:f5:cf:a2:76:da:f6:63:e8:
6a:70:e1:d2:3e:dd:4a:7a:5a:28:25:52:48:a2:aa:
c4:84:42:0d:0c:93:8a:33:06:15:93:2e:5d:28:e0:
96:14:c5:7d:55:4e:3d:60:97:33:bd:54:1d:17:7b:
a2:2b:de:3e:82:df:4a:23:b2:b2:db:dc:3c:6e:2f:
df:9e:74:21:c2:b3:b8:95:42:04:7c:df:31:2e:f4:
ec:05:35:bb:4e:fd:b8:26:a0:12:5e:92:ef:1d:93:
ef:1f:0f:4d:5f:c5:fd:ba:15:03:45:28:44:8d:0f:
89:f9:78:0d:d0:fa:e7:3f:63:c8:fc:7a:81:7b:67:
2d:89:de:11:9f:44:7f:60:06:af:a1:8c:88:bc:ce:
cc:d2:8b:45:bf:c8:63:89:d1:36:95:47:3b:6a:17:
95:aa:5f:c4:c9:d6:8d:46:6c:a5:f0:17:2b:dd:ba:
58:6c:c9:d8:fa:e1:41:1b:72:e9:62:5b:95:1a:dc:
f9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8B:06:62:E8:52:8A:50:E0:C9:32:5D:45:96:00:72:27:70:CF:30
X509v3 Authority Key Identifier:
keyid:65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/8YsGYuhSilDgyTJdRZYAcidwzzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/Zb3P93vwYNXaEt5F4gcuHP9FYKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.56.0/24
185.152.34.0/24
IPv6:
2a02:ed03::/32
Signature Algorithm: sha256WithRSAEncryption
21:b5:db:bb:8e:20:e8:2e:fb:5f:3f:74:4b:8f:5e:23:e1:6e:
c4:e6:97:72:21:10:b6:0a:fb:98:08:b0:f9:e5:d2:9d:89:db:
00:02:e1:92:9b:31:b1:ac:01:30:ce:73:57:cf:73:38:cc:4c:
9e:cf:38:d7:e4:64:80:1a:05:5b:bb:14:0b:9a:76:47:12:63:
1a:1d:9e:8f:53:9a:31:99:35:07:ed:ba:6a:13:14:92:ec:5b:
47:d3:8d:da:36:95:16:dd:fc:98:3a:3b:2a:1f:88:c9:bb:1f:
8f:28:77:15:84:6a:2d:58:0e:b5:e2:92:f4:c2:5a:f1:f6:d8:
0a:70:81:98:98:9c:92:08:cb:9f:5b:47:1d:c9:89:d7:d8:ae:
5f:6e:09:0f:7f:01:ea:ab:cb:de:11:c4:f9:10:4a:84:5a:17:
f4:2b:ad:b6:16:9b:cb:60:44:1b:f5:b9:47:b3:f8:6b:b5:6e:
0f:b1:c8:e3:16:a3:ef:54:fe:05:52:05:3c:a1:40:5c:ec:b6:
7a:7e:6a:0d:09:f6:9b:f4:eb:93:63:54:a2:33:81:62:28:2d:
45:f0:7e:de:5e:00:32:c1:00:d8:89:88:54:02:71:dd:b3:cf:
5a:22:51:c3:1c:58:58:30:c6:50:a8:10:83:31:70:88:a0:ef:
a6:79:a9:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:15 2023 by rpki-client on console-ams.rpki-client.org