Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/rYgV1baaB30gyDHQ9W8lRNiGGnI.roa
File: rYgV1baaB30gyDHQ9W8lRNiGGnI.roa (raw, json)
Hash identifier: np7enxl/drHSRS3J6bT6Eba6wRBBX6GdTkfpx4rU0k0=
Subject key identifier: AD:88:15:D5:B6:9A:07:7D:20:C8:31:D0:F5:6F:25:44:D8:86:1A:72
Certificate issuer: /CN=1ba8ea3a2288a6af8f64a8383002c74085579a07
Certificate serial: 01832187AFB7AD8BAD2FAE3AAE51E221C246
Authority key identifier: 1B:A8:EA:3A:22:88:A6:AF:8F:64:A8:38:30:02:C7:40:85:57:9A:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6jqOiKIpq-PZKg4MALHQIVXmgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/rYgV1baaB30gyDHQ9W8lRNiGGnI.roa
Signing time: Fri 09 Sep 2022 09:14:43 +0000
ROA not before: Fri 09 Sep 2022 09:14:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212975
IP address blocks: 185.115.72.0/23 maxlen: 23
185.115.74.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:87:af:b7:ad:8b:ad:2f:ae:3a:ae:51:e2:21:c2:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba8ea3a2288a6af8f64a8383002c74085579a07
Validity
Not Before: Sep 9 09:14:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad8815d5b69a077d20c831d0f56f2544d8861a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0f:5e:4c:6c:33:cb:4d:cf:70:b0:b7:81:9b:
93:3d:f6:85:b2:9d:af:d2:b6:8e:4d:9b:e2:80:bb:
ac:a4:3a:06:8e:4b:dd:98:dc:7d:63:1f:be:95:3a:
bd:e1:38:9d:69:fb:c9:9c:d5:3e:f7:7b:f1:b8:0f:
5a:c1:f1:e7:85:65:79:5b:e9:cc:98:9c:17:40:55:
76:da:88:bf:44:f9:77:2f:4c:4a:86:83:23:a7:07:
62:17:c4:f6:51:50:74:01:2c:f6:82:75:8e:0f:6d:
c3:1c:22:70:55:16:a1:46:06:26:b2:e7:98:34:34:
c9:7e:c4:ed:12:bc:bc:8c:81:16:de:ad:87:69:b4:
be:b4:c0:64:82:75:f3:e2:66:d8:8d:07:20:04:09:
48:1e:d1:51:f3:67:43:1c:bc:c3:3d:85:5f:7a:33:
e6:56:03:3b:c8:fb:1a:42:c0:97:0e:49:1e:0d:33:
4c:fe:69:ae:bb:8d:61:8a:56:0d:db:35:dd:bc:9f:
23:52:82:5f:73:79:bb:b7:86:d3:6b:89:f3:ab:b7:
56:6b:5d:73:1d:9b:cf:3c:e4:91:09:f6:7d:67:e5:
1d:7e:d9:0b:20:77:48:4d:c1:52:f3:b9:ef:a0:8a:
24:60:d8:4f:f1:f8:85:44:21:d3:16:76:1e:9b:4e:
9e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:88:15:D5:B6:9A:07:7D:20:C8:31:D0:F5:6F:25:44:D8:86:1A:72
X509v3 Authority Key Identifier:
keyid:1B:A8:EA:3A:22:88:A6:AF:8F:64:A8:38:30:02:C7:40:85:57:9A:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6jqOiKIpq-PZKg4MALHQIVXmgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/rYgV1baaB30gyDHQ9W8lRNiGGnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/c0b283-88b9-43cd-b08f-a8ea43253ed5/1/G6jqOiKIpq-PZKg4MALHQIVXmgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.72.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:19:ff:55:8f:4f:29:d7:2d:39:49:1c:8f:1d:e9:8b:df:49:
72:cd:c5:1f:13:42:60:90:10:6b:26:54:0e:11:ca:a7:53:4b:
49:99:bf:e9:9c:a2:d6:cb:14:53:cd:70:d3:2f:c4:b3:38:96:
b4:6e:ee:c8:c5:c9:c2:8e:33:e1:09:10:69:0c:4f:23:75:19:
2b:d3:c7:69:11:72:32:cf:87:60:6d:b5:6d:e1:77:c8:08:a9:
ad:27:97:b2:47:ea:a2:3f:af:f9:34:26:a5:d2:de:62:b7:a4:
1e:3d:52:56:23:52:9a:83:81:e8:66:bd:79:34:ba:a8:e3:c1:
1c:a1:df:36:da:ff:dc:f8:b0:01:45:8f:a6:b7:a7:3c:49:4e:
2d:ce:8e:8d:66:94:c0:1e:af:46:04:b2:64:cd:92:c2:0a:50:
81:94:be:89:95:ab:e8:7f:27:e3:0d:5c:80:2c:52:3a:13:02:
cd:99:f3:76:93:b8:15:10:29:e7:9b:21:32:10:66:63:46:86:
78:c4:e4:20:d9:c1:dc:90:9e:3d:b6:92:bf:b7:40:29:8e:1b:
a4:03:cd:0e:7b:15:88:08:af:4c:9e:aa:75:b9:5a:d8:3f:59:
e2:df:94:d7:23:aa:3b:6c:e6:95:11:5f:c5:99:0c:06:eb:14:
2d:bd:0d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:41 2023 by rpki-client on console-ams.rpki-client.org