Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/YAqqFcMeXsdtC46L92r3K8scg_Q.roa
File: YAqqFcMeXsdtC46L92r3K8scg_Q.roa (raw, json)
Hash identifier: 5fin1h8J1aEWR8xF5DeKQL7kbNtSf5hgV3cDKLjX31E=
Subject key identifier: 60:0A:AA:15:C3:1E:5E:C7:6D:0B:8E:8B:F7:6A:F7:2B:CB:1C:83:F4
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17CE0777
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/YAqqFcMeXsdtC46L92r3K8scg_Q.roa
Signing time: Sat 01 Jan 2022 04:54:30 +0000
ROA not before: Sat 01 Jan 2022 04:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 135330
IP address blocks: 185.208.171.0/24 maxlen: 24
193.160.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399378295 (0x17ce0777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=600aaa15c31e5ec76d0b8e8bf76af72bcb1c83f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:af:1d:bc:1f:33:f7:d7:ba:48:98:d2:e1:89:
c8:bb:93:49:51:a7:5a:7e:d4:15:63:08:a3:f5:df:
70:8c:ea:46:cc:4c:ac:39:c8:14:d8:75:29:40:e5:
84:37:5b:5b:2f:8c:91:8f:c9:12:93:68:fd:ed:79:
91:c8:9e:85:85:f5:d6:51:06:5d:7f:ad:62:98:a4:
ae:7e:f5:b7:bc:a7:fc:12:25:78:c4:95:91:81:ff:
9a:13:6f:3a:c4:1d:64:f4:de:9e:6d:2d:d3:78:3d:
9c:8a:69:cf:4a:ac:17:d7:d7:7f:c0:66:4f:c6:f9:
5c:13:5c:d1:b8:03:9a:15:ab:38:20:6c:44:27:fd:
7b:2a:84:b9:c5:7f:ca:2e:84:3e:df:76:6f:9d:4d:
7e:ee:74:bf:b4:7f:1b:0a:73:57:0e:42:84:84:a0:
4a:b0:5f:d4:6f:0e:2e:b9:78:29:ad:b5:5d:e9:80:
b3:ae:6f:70:89:2e:17:12:f2:c8:3e:6f:e7:0d:b5:
60:1f:39:33:fc:54:9f:af:24:61:41:ea:b1:b2:6d:
2f:f0:cc:43:2a:6c:37:0d:c6:68:5e:d4:89:5f:78:
e0:49:09:70:f6:aa:3e:46:e7:b9:fb:7a:4c:d3:9c:
ab:c3:9b:ea:1a:17:38:ac:c1:7f:61:4c:28:9b:b7:
0d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0A:AA:15:C3:1E:5E:C7:6D:0B:8E:8B:F7:6A:F7:2B:CB:1C:83:F4
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/YAqqFcMeXsdtC46L92r3K8scg_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.171.0/24
193.160.213.0/24
Signature Algorithm: sha256WithRSAEncryption
35:b6:a7:85:f8:1b:5c:ba:70:5a:8e:54:4f:71:e9:35:31:bb:
66:70:c9:ce:f7:a3:d0:4b:f9:a6:cd:83:00:f3:53:7a:44:10:
21:48:cf:31:67:5c:a3:38:fb:50:03:dd:83:b1:08:33:35:ec:
9c:11:6d:05:a7:74:40:0b:7c:4f:21:92:fd:8d:65:a6:da:1b:
4a:8b:19:85:c9:79:1b:3d:0f:7f:81:4c:e6:0d:1a:d3:83:b3:
b6:30:3f:26:b6:08:d7:a7:a9:0d:01:dd:95:ab:99:85:36:51:
12:90:b5:ae:59:9f:91:d6:92:d1:55:35:2b:4b:b1:b0:ff:94:
ba:94:6f:ae:95:05:f9:0d:98:a5:4b:40:6d:8e:4d:2e:2c:cc:
cf:c7:b4:d7:a1:15:57:69:72:32:50:1f:0f:8d:8f:60:56:91:
53:c6:44:92:bd:37:68:3a:a0:aa:3b:d1:21:e2:47:df:88:3a:
1a:ee:8d:00:e1:e8:29:aa:7d:2a:ef:38:dd:34:a8:b4:06:77:
40:9e:bb:dc:b9:89:4e:de:e1:c5:bb:a3:bf:70:ec:6f:5d:86:
7e:e7:58:e1:8f:d5:12:5c:9f:36:26:ed:fd:6a:c6:49:49:0a:
ef:9f:8f:0d:df:ba:c8:50:06:f4:bb:ef:93:42:3b:26:fb:4c:
27:e4:aa:28
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEF84HdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjAwYWFhMTVjMzFl
NWVjNzZkMGI4ZThiZjc2YWY3MmJjYjFjODNmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCvHbwfM/fXukiY0uGJyLuTSVGnWn7UFWMIo/XfcIzqRsxM
rDnIFNh1KUDlhDdbWy+MkY/JEpNo/e15kciehYX11lEGXX+tYpikrn71t7yn/BIl
eMSVkYH/mhNvOsQdZPTenm0t03g9nIppz0qsF9fXf8BmT8b5XBNc0bgDmhWrOCBs
RCf9eyqEucV/yi6EPt92b51Nfu50v7R/GwpzVw5ChISgSrBf1G8OLrl4Ka21XemA
s65vcIkuFxLyyD5v5w21YB85M/xUn68kYUHqsbJtL/DMQypsNw3GaF7UiV944EkJ
cPaqPkbnuft6TNOcq8Ob6hoXOKzBf2FMKJu3DbUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRgCqoVwx5ex20Ljov3avcryxyD9DAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L1lBcXFGY01lWHNkdEM0Nkw5MnIzSzhzY2dfUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALnQqwMEAMGg1TANBgkqhkiG9w0B
AQsFAAOCAQEANbanhfgbXLpwWo5UT3HpNTG7ZnDJzvej0Ev5ps2DAPNTekQQIUjP
MWdcozj7UAPdg7EIMzXsnBFtBad0QAt8TyGS/Y1lptobSosZhcl5Gz0Pf4FM5g0a
04OztjA/JrYI16epDQHdlauZhTZREpC1rlmfkdaS0VU1K0uxsP+UupRvrpUF+Q2Y
pUtAbY5NLizMz8e016EVV2lyMlAfD42PYFaRU8ZEkr03aDqgqjvRIeJH34g6Gu6N
AOHoKap9Ku843TSotAZ3QJ673LmJTt7hxbujv3Dsb12GfudY4Y/VElyfNibt/WrG
SUkK75+PDd+6yFAG9Lvvk0I7JvtMJ+SqKA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org