Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YF-jkZn4wK3DgTT2V14coMDPFbY.roa
File: YF-jkZn4wK3DgTT2V14coMDPFbY.roa (raw, json)
Hash identifier: +XnRy9WSR5vPHGhzqL8P2etegfB+UG95FqzRB9bOv2A=
Subject key identifier: 60:5F:A3:91:99:F8:C0:AD:C3:81:34:F6:57:5E:1C:A0:C0:CF:15:B6
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 032CC7A7
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YF-jkZn4wK3DgTT2V14coMDPFbY.roa
Signing time: Sat 01 Jan 2022 16:04:26 +0000
ROA not before: Sat 01 Jan 2022 16:04:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198338
IP address blocks: 185.103.254.0/23 maxlen: 23
185.105.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53266343 (0x32cc7a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=605fa39199f8c0adc38134f6575e1ca0c0cf15b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:d7:26:d9:3b:64:95:d5:11:e1:ff:95:a4:
e5:14:28:ac:23:03:7e:53:bf:43:0e:f5:c7:03:ac:
31:88:82:c6:26:07:66:b5:31:c1:28:f1:64:70:7b:
fb:b4:c2:2e:65:c6:13:df:39:75:e2:8f:ee:54:66:
55:9d:44:d4:51:33:4d:5d:bd:72:d5:15:86:cb:33:
35:93:f8:aa:8e:bf:06:36:80:46:80:89:21:ea:07:
07:25:f4:1e:83:ca:3d:71:a6:3f:a4:d4:6d:41:8e:
1e:4d:65:89:d9:b2:1a:df:f4:e0:f3:c5:a9:db:28:
4f:de:8d:1a:e8:d0:68:1d:45:9d:c2:6a:39:bf:2f:
41:46:2e:dd:32:6e:84:da:a0:9e:d5:12:e7:74:5e:
34:26:69:a8:e5:b5:f2:d5:c0:f8:bb:93:82:10:09:
2b:df:4d:72:2b:42:e1:fb:5f:30:39:55:2f:1f:4a:
97:3e:88:36:14:72:5a:43:46:0a:e4:62:37:58:06:
e2:41:30:34:65:f9:c5:6b:1f:dc:11:96:d7:15:f5:
97:38:c5:e6:a0:7d:d7:1d:f7:67:bd:80:cd:46:ba:
68:12:8c:e2:d6:8a:3f:1e:28:53:67:63:44:b5:e4:
2b:50:37:3e:40:d7:b8:8e:aa:29:ee:4c:98:e5:a9:
95:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5F:A3:91:99:F8:C0:AD:C3:81:34:F6:57:5E:1C:A0:C0:CF:15:B6
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/YF-jkZn4wK3DgTT2V14coMDPFbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.254.0/23
185.105.116.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:fc:a1:fd:5f:d2:10:c8:93:e5:4e:5a:a1:73:65:b0:c7:54:
8a:b6:68:7d:08:12:f7:cd:80:59:a5:2e:22:30:68:43:fc:5f:
1b:1d:48:42:e6:7f:34:87:33:b0:41:cf:af:b6:4c:b3:f4:85:
d5:3d:1a:6d:4e:4e:68:be:82:05:ec:f5:5e:49:e2:e7:80:e2:
e7:3b:b3:df:10:18:c8:06:da:20:e4:81:41:17:19:79:e2:50:
bf:b0:19:61:40:9d:30:85:e8:10:8d:5d:4c:8c:a4:9f:b8:26:
37:d8:3e:8b:37:f2:55:5a:58:c5:4e:8e:70:51:1f:92:66:25:
3c:85:96:7c:42:e3:b4:f2:48:15:77:7f:94:e2:20:a7:ae:24:
77:8e:19:8c:c9:71:58:6a:3c:fc:61:16:0e:c8:56:e0:42:af:
b4:7d:2c:6c:2b:4b:d2:b6:a5:68:9e:1e:41:c0:08:16:6c:15:
7c:27:b1:f5:9a:8c:b3:e5:d9:63:96:5f:d8:e8:4a:1f:fc:90:
bc:26:95:11:6a:cb:3b:d0:3c:44:7e:d8:1c:28:71:21:37:f9:
3d:97:d8:6d:0a:1e:12:01:94:73:32:2c:ae:26:c1:aa:76:09:
a2:f2:dc:f0:e0:6f:33:cd:de:c5:a4:7d:4d:40:c5:b0:9e:e0:
bf:96:ec:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org