Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/i-Yw6vP7jgjzDSsBiiaGbzWtlfk.roa
File: i-Yw6vP7jgjzDSsBiiaGbzWtlfk.roa (raw, json)
Hash identifier: DkbxMaQeqy5CEZkyqQBJNFIW9Ug0t7ZUBk2bdGKHIA8=
Subject key identifier: 8B:E6:30:EA:F3:FB:8E:08:F3:0D:2B:01:8A:26:86:6F:35:AD:95:F9
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 042CD94C
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/i-Yw6vP7jgjzDSsBiiaGbzWtlfk.roa
Signing time: Tue 31 May 2022 09:14:13 +0000
ROA not before: Tue 31 May 2022 09:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 185.255.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70048076 (0x42cd94c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: May 31 09:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8be630eaf3fb8e08f30d2b018a26866f35ad95f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4c:9c:b0:ba:88:81:81:78:9a:2b:f0:24:92:
9f:ee:2e:5f:b8:a5:88:40:22:e4:b4:4c:98:2a:87:
77:75:99:d5:d3:fe:56:7e:3a:6e:f5:25:c9:b8:ce:
66:ab:3d:dc:db:50:ab:ce:dd:ae:2a:78:c7:15:f4:
b7:85:28:98:55:db:a7:33:b0:be:a2:f4:a1:75:68:
af:ff:90:eb:aa:4d:d4:4b:46:63:3f:6a:85:64:2c:
19:b1:fc:69:21:6b:92:49:3d:a8:0f:d7:80:66:46:
ce:60:6f:bd:7b:b2:c7:cf:d2:0e:42:b5:27:d6:5d:
10:50:55:2b:c6:27:31:bc:57:f5:1c:50:26:c4:3d:
68:a8:67:2d:c0:e0:20:50:60:b8:61:47:b9:85:a3:
46:6e:6d:e8:5c:03:c9:6d:e8:e7:67:c5:bf:d7:db:
af:cd:5b:29:49:ac:5b:39:a9:bb:75:12:80:b3:09:
03:a1:49:b3:46:23:d7:c1:e1:a9:4a:32:8c:06:99:
92:89:b0:fa:48:af:f6:3a:57:c7:57:c4:0f:3e:e6:
33:97:c3:59:42:a7:5a:f7:54:20:c5:3f:dc:e6:ea:
68:85:ef:0f:e4:fb:67:fc:e6:3d:39:a0:e0:df:a9:
0a:d4:16:ea:77:a9:0f:e4:ac:e0:f4:3c:89:1f:70:
87:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E6:30:EA:F3:FB:8E:08:F3:0D:2B:01:8A:26:86:6F:35:AD:95:F9
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/i-Yw6vP7jgjzDSsBiiaGbzWtlfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.7.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:0c:dc:79:37:d7:40:b2:9d:59:e9:6f:16:ba:0a:6f:05:3d:
57:e3:bd:27:65:22:42:2e:fc:de:ae:f3:b3:6a:81:83:35:56:
ed:4a:5b:2b:3d:7f:d8:36:7d:30:fb:5a:1a:25:65:18:55:f6:
d3:5b:f7:3f:5f:0e:a9:23:0c:59:34:9a:fd:d0:31:77:5d:9d:
92:94:c0:1a:c6:65:d2:91:8b:82:81:52:e2:97:68:ee:f9:1e:
57:04:9c:75:85:45:be:c9:6d:1e:2d:a3:18:dc:33:fd:0b:7e:
10:f1:1a:65:48:0f:07:a9:80:1a:1b:e9:6f:30:f1:d6:67:2b:
e4:c5:0b:7f:f5:c2:ab:fa:18:0a:5c:a1:da:6f:ce:c9:68:d5:
c6:60:81:fc:a1:18:4d:8f:98:c5:b2:c0:80:cd:cb:67:62:ce:
ac:35:ef:77:b8:d2:00:94:44:f9:2c:5a:77:cb:c8:f6:b0:4c:
f1:41:3a:6a:90:40:12:7b:f7:14:10:b2:d1:22:1f:ab:2e:2c:
a9:dd:3b:d1:90:5d:ce:84:dc:49:ec:d8:a6:3b:ee:c8:25:ea:
e6:03:b4:16:a1:d4:40:40:ee:ff:28:0c:fe:56:97:cc:72:4c:
82:2f:7f:3f:06:99:d8:ac:b9:40:27:9d:22:11:8a:96:a8:a7:
92:ea:d4:9d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBCzZTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZmYyNDcyNmRmM2U3N2Y2ZjRjOGUwNDM2NjEzYjM1MTEwZWVhZjM4MB4XDTIyMDUz
MTA5MTQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGJlNjMwZWFmM2Zi
OGUwOGYzMGQyYjAxOGEyNjg2NmYzNWFkOTVmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANNMnLC6iIGBeJor8CSSn+4uX7iliEAi5LRMmCqHd3WZ1dP+
Vn46bvUlybjOZqs93NtQq87drip4xxX0t4UomFXbpzOwvqL0oXVor/+Q66pN1EtG
Yz9qhWQsGbH8aSFrkkk9qA/XgGZGzmBvvXuyx8/SDkK1J9ZdEFBVK8YnMbxX9RxQ
JsQ9aKhnLcDgIFBguGFHuYWjRm5t6FwDyW3o52fFv9fbr81bKUmsWzmpu3USgLMJ
A6FJs0Yj18HhqUoyjAaZkomw+kiv9jpXx1fEDz7mM5fDWUKnWvdUIMU/3ObqaIXv
D+T7Z/zmPTmg4N+pCtQW6nepD+Ss4PQ8iR9why8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSL5jDq8/uOCPMNKwGKJoZvNa2V+TAfBgNVHSMEGDAWgBTf8kcm3z539vTI
4ENmE7NREO6vODAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNfSkhKdDgtZF9iMHlPQkRaaE96VVJEdXJ6Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTk2MDI0LTY1NTUtNGU4ZC1hZjM3LTYyYmI2ZDYzZTU5ZC8x
L2ktWXc2dlA3amdqekRTc0JpaWFHYnpXdGxmay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTk2MDI0LTY1NTUtNGU4ZC1hZjM3LTYyYmI2ZDYzZTU5ZC8xLzNfSkhKdDgtZF9i
MHlPQkRaaE96VVJEdXJ6Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALn/BzANBgkqhkiG9w0BAQsFAAOC
AQEATQzceTfXQLKdWelvFroKbwU9V+O9J2UiQi783q7zs2qBgzVW7UpbKz1/2DZ9
MPtaGiVlGFX201v3P18OqSMMWTSa/dAxd12dkpTAGsZl0pGLgoFS4pdo7vkeVwSc
dYVFvsltHi2jGNwz/Qt+EPEaZUgPB6mAGhvpbzDx1mcr5MULf/XCq/oYClyh2m/O
yWjVxmCB/KEYTY+YxbLAgM3LZ2LOrDXvd7jSAJRE+Sxad8vI9rBM8UE6apBAEnv3
FBCy0SIfqy4sqd070ZBdzoTcSezYpjvuyCXq5gO0FqHUQEDu/ygM/laXzHJMgi9/
PwaZ2Ky5QCedIhGKlqinkurUnQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:43 2023 by rpki-client on console-ams.rpki-client.org