Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/Y7yvfdU0rohjqxppx6-F8NHaaFE.roa
File: Y7yvfdU0rohjqxppx6-F8NHaaFE.roa (raw, json)
Hash identifier: 2D7WWLEzYSTjrd2fbUD15VX2KAb+XAyNuEcgBSbmxr0=
Subject key identifier: 63:BC:AF:7D:D5:34:AE:88:63:AB:1A:69:C7:AF:85:F0:D1:DA:68:51
Certificate issuer: /CN=53d0359f9f8b20815ce4d988e109bf82306e4c74
Certificate serial: 01C98A
Authority key identifier: 53:D0:35:9F:9F:8B:20:81:5C:E4:D9:88:E1:09:BF:82:30:6E:4C:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/Y7yvfdU0rohjqxppx6-F8NHaaFE.roa
Signing time: Mon 23 May 2022 12:26:54 +0000
ROA not before: Mon 23 May 2022 12:26:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207096
IP address blocks: 185.166.42.0/23 maxlen: 23
185.166.40.0/23 maxlen: 23
185.176.204.0/23 maxlen: 23
185.176.206.0/23 maxlen: 23
2a0a:7600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117130 (0x1c98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53d0359f9f8b20815ce4d988e109bf82306e4c74
Validity
Not Before: May 23 12:26:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63bcaf7dd534ae8863ab1a69c7af85f0d1da6851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:15:67:77:14:da:b9:16:b0:58:ec:69:f7:3c:
3b:ce:48:58:0f:5c:48:65:d0:d8:38:03:f9:44:8f:
f6:d9:59:be:ef:e0:8d:93:74:a0:0e:ae:23:6e:15:
32:cc:c0:9f:9f:20:87:e8:fa:8a:d1:f5:4f:f5:54:
d5:f2:45:d3:1d:f9:0e:aa:f3:d9:93:f6:a6:74:79:
e2:c3:78:9d:32:ed:86:b0:a1:cc:8c:41:c6:e1:d8:
26:c4:2f:36:8f:8c:d0:f4:76:80:87:55:0a:d4:a8:
61:dd:86:9d:a2:be:c5:54:21:82:1d:f0:d8:f7:fd:
03:e5:44:fd:71:68:12:6c:87:2c:5f:dd:41:1d:6e:
51:07:07:fd:78:78:8d:6d:72:1e:61:c3:39:d7:0a:
68:b3:02:85:d9:11:28:ed:92:0a:3a:49:2a:52:8f:
52:d9:40:7a:a3:9a:f0:13:1f:ee:cc:9d:fd:07:7a:
1e:fa:da:97:59:d2:d5:6c:cd:6e:02:38:36:f0:bd:
b2:b7:05:16:94:c8:e5:3e:16:18:50:7d:5d:0a:a3:
a2:01:a6:95:5d:b9:a5:8b:39:ac:f4:6d:7c:04:e0:
6b:b2:16:68:19:cd:21:74:3c:47:6f:e0:41:2d:d2:
89:bc:75:ab:5d:37:59:83:06:8e:33:df:f6:75:c2:
a4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BC:AF:7D:D5:34:AE:88:63:AB:1A:69:C7:AF:85:F0:D1:DA:68:51
X509v3 Authority Key Identifier:
keyid:53:D0:35:9F:9F:8B:20:81:5C:E4:D9:88:E1:09:BF:82:30:6E:4C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/Y7yvfdU0rohjqxppx6-F8NHaaFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.40.0/22
185.176.204.0/22
IPv6:
2a0a:7600::/29
Signature Algorithm: sha256WithRSAEncryption
68:32:c9:ed:55:13:a4:91:29:48:7a:a1:49:74:c4:48:94:3c:
4a:0c:cc:88:27:fa:14:b1:9e:e1:11:29:da:16:54:c7:d1:9e:
25:42:94:a1:df:f6:f8:95:fc:91:fd:56:9d:95:75:37:1d:c3:
d8:ec:58:9b:d9:6a:31:7e:37:de:2b:f1:ab:cf:2b:72:f3:37:
a0:c4:8e:ec:38:7b:29:f6:40:97:1e:80:59:33:12:df:81:45:
d4:48:0e:99:c3:13:54:d9:16:9b:8d:61:3d:5f:7b:34:8f:8a:
94:6b:6f:5e:3b:7a:ba:50:a4:25:24:66:0f:b0:3c:10:f9:48:
4e:98:84:e1:d3:72:bb:ad:53:e5:43:1f:fe:7d:7f:92:70:68:
b6:c7:2d:81:db:1d:96:8c:2a:66:96:05:95:eb:87:df:cb:1c:
3c:61:53:7c:bc:26:bb:18:08:ba:f8:21:a9:23:12:f5:b8:36:
79:fb:27:a2:69:b9:69:ce:91:a1:16:7f:bb:ef:c2:58:f6:49:
df:c1:f0:3b:f4:db:12:1b:03:e9:bd:9f:07:33:3d:8f:d8:23:
f9:51:ab:55:0d:1a:b1:96:a9:f6:64:57:e0:ec:8f:00:d6:5a:
77:ba:19:e1:19:7b:6f:42:88:75:5e:50:42:cf:da:46:27:69:
f7:f7:3a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:24 2023 by rpki-client on console-ams.rpki-client.org