Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/YA8TLszT9vNCZ4_TdI0Y5PnSpE0.roa
File: YA8TLszT9vNCZ4_TdI0Y5PnSpE0.roa (raw, json)
Hash identifier: 1r4KsgOFzSwhUEAeP7yoTsvPYS9raQJguEs3NckWC0c=
Subject key identifier: 60:0F:13:2E:CC:D3:F6:F3:42:67:8F:D3:74:8D:18:E4:F9:D2:A4:4D
Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f
Certificate serial: 014073A8
Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/YA8TLszT9vNCZ4_TdI0Y5PnSpE0.roa
Signing time: Sat 01 Jan 2022 09:06:20 +0000
ROA not before: Sat 01 Jan 2022 09:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206998
IP address blocks: 185.221.85.0/24 maxlen: 24
185.221.86.0/24 maxlen: 24
185.221.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21001128 (0x14073a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f
Validity
Not Before: Jan 1 09:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=600f132eccd3f6f342678fd3748d18e4f9d2a44d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:25:55:f0:d0:6b:5d:1c:6c:bf:2e:b1:e9:97:
7d:a7:ec:ce:85:0d:44:b0:26:2e:06:0c:b5:7c:e4:
66:8e:55:2b:c1:93:d5:3c:27:02:9d:1a:28:ee:cb:
fc:01:35:c2:75:06:0f:1f:37:e3:f0:55:33:15:5f:
8d:b9:2f:f6:8e:fb:2d:3f:0d:7c:20:42:89:17:1f:
d0:da:5e:5c:e8:38:96:3b:5b:8d:b7:b9:89:90:52:
99:21:b5:e9:76:0f:3f:90:12:3d:c7:27:a6:6c:13:
b1:84:64:20:0a:df:eb:92:d5:1b:6f:18:7d:b7:4a:
d2:6f:f6:19:d6:3d:ed:7b:24:04:88:06:f9:8a:4a:
ca:d5:bd:25:f0:44:34:01:41:0c:36:79:5b:13:b3:
16:76:13:e3:82:d0:f0:f3:9a:f9:e7:20:53:83:71:
6d:c6:73:fb:da:55:00:b8:2a:5f:87:c6:a7:e4:9f:
8b:97:a4:2e:0d:2b:c4:e9:d4:ad:53:1c:4b:26:5d:
7d:0f:85:6f:4a:a6:cf:fd:63:f7:57:aa:57:f7:56:
12:47:0e:22:7d:4a:22:c5:11:43:99:cf:b1:90:62:
5a:84:23:fc:99:e8:f9:19:c2:99:1e:3e:ee:78:6d:
d0:49:57:ca:4d:92:74:33:ac:43:91:04:c9:8f:10:
58:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0F:13:2E:CC:D3:F6:F3:42:67:8F:D3:74:8D:18:E4:F9:D2:A4:4D
X509v3 Authority Key Identifier:
keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/YA8TLszT9vNCZ4_TdI0Y5PnSpE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.85.0-185.221.87.255
Signature Algorithm: sha256WithRSAEncryption
6d:7b:07:3e:2c:70:f8:1f:06:e1:4a:3a:39:77:b5:4e:2c:d3:
17:3b:35:fb:08:ff:ec:bd:e7:4b:99:23:ef:71:69:4c:0e:c1:
7f:07:9b:8b:7f:ce:72:85:cf:43:a9:2b:9f:d4:0f:78:d8:5a:
09:4d:5d:6a:dd:2d:8a:fb:cc:e0:9c:5b:5a:ce:0c:0e:d7:d3:
79:42:95:f2:fe:bf:15:8f:01:a5:a6:5e:f8:9e:52:62:c7:b8:
a8:90:5e:b8:17:ba:d5:f9:b9:84:10:fd:5f:c2:8f:8e:72:77:
3a:78:42:f7:9c:29:61:75:e5:eb:23:33:ae:8e:02:8d:52:c7:
3d:97:91:01:4f:66:0c:63:c3:35:13:84:26:9e:c7:97:ab:06:
62:3b:3e:e0:94:12:f4:29:7a:81:36:ef:5b:11:41:f6:29:64:
87:71:f2:bb:b1:ff:ca:4b:e1:de:bf:08:fc:0e:47:a0:49:bd:
5c:74:20:18:bb:2d:a6:6a:3d:4e:92:5a:96:d1:a3:6d:e8:69:
e4:88:42:bf:bf:1b:62:2b:1f:67:44:e0:76:6d:18:90:d7:69:
5b:7b:98:0a:a5:e9:0f:2a:33:37:79:5f:cd:7b:9c:a7:3a:82:
20:80:79:5b:d5:ea:c1:a1:fd:e3:98:7e:54:15:f5:8d:a3:68:
0d:9e:b0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:34 2024 by rpki-client on console-ams.rpki-client.org