Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/y7vWyjTERFJcyCZVAlT4ufP9tDU.roa
File: y7vWyjTERFJcyCZVAlT4ufP9tDU.roa (raw, json)
Hash identifier: 29iw8UkFX8kr15GyRGMbM5ogLoFmhFu7hs0k4ZRieig=
Subject key identifier: CB:BB:D6:CA:34:C4:44:52:5C:C8:26:55:02:54:F8:B9:F3:FD:B4:35
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 01822655A4B37CBF8ECE96C1432933844901
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/y7vWyjTERFJcyCZVAlT4ufP9tDU.roa
Signing time: Fri 22 Jul 2022 14:35:23 +0000
ROA not before: Fri 22 Jul 2022 14:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59908
IP address blocks: 185.67.112.0/22 maxlen: 24
2a03:2460::/32 maxlen: 96
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:26:55:a4:b3:7c:bf:8e:ce:96:c1:43:29:33:84:49:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Jul 22 14:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbbbd6ca34c444525cc826550254f8b9f3fdb435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e1:f8:29:ca:6f:59:53:e8:87:7c:c3:d3:93:
f1:41:29:ee:67:2d:45:08:1c:cd:6f:aa:f5:31:f4:
07:8c:26:2a:02:27:86:13:b6:cf:ef:64:62:0a:dd:
0b:1d:6b:c9:23:08:10:fb:73:a0:39:ad:24:aa:cd:
7e:85:02:3d:14:77:3c:48:37:12:ff:2e:46:18:c9:
ee:f9:92:c6:37:40:ed:28:51:8b:2d:00:d0:2b:d6:
4a:d9:00:a1:a5:95:e8:d5:e0:c3:2b:e9:1f:ea:bb:
68:a8:b0:2d:41:6d:eb:9b:e0:c7:42:f5:e1:2b:1b:
51:79:4f:94:5f:53:80:99:1b:60:2b:6a:d1:2c:fc:
18:49:7d:52:6a:56:70:0f:87:bb:da:91:9c:76:9e:
1f:d8:37:17:0c:b0:65:b2:22:b7:54:82:11:cc:47:
52:80:53:bc:f7:19:c8:8f:9c:35:e1:92:7e:88:1d:
54:4b:c2:20:29:0b:23:7c:29:4d:34:41:33:01:ce:
05:2c:a6:98:83:1e:27:11:2b:01:45:f1:3e:95:80:
09:8e:ee:43:8f:86:24:9f:7b:2d:67:c9:2e:43:96:
9f:91:54:bb:5d:aa:b4:95:c6:0b:97:ec:e9:73:2b:
00:cc:c9:ac:ef:b8:2d:da:34:78:c4:e6:62:79:e7:
0c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BB:D6:CA:34:C4:44:52:5C:C8:26:55:02:54:F8:B9:F3:FD:B4:35
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/y7vWyjTERFJcyCZVAlT4ufP9tDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.112.0/22
IPv6:
2a03:2460::/32
Signature Algorithm: sha256WithRSAEncryption
81:88:c3:66:ca:a1:a2:ea:e7:75:08:da:7e:21:51:e0:a0:46:
e8:02:9a:95:5e:7a:03:83:a3:ef:45:36:f6:a9:53:3a:41:19:
de:99:95:67:9e:2c:17:77:de:db:67:c7:be:21:e9:6e:c7:cd:
90:7d:77:20:69:93:a7:43:08:a2:19:2d:e3:13:33:fa:82:10:
18:aa:51:46:c3:4c:1a:db:5d:af:93:fe:b9:92:59:e7:78:16:
1e:84:40:f6:19:df:94:0a:7f:78:fe:0e:e3:b2:52:49:1f:94:
ad:ae:72:4b:97:1c:e3:35:7b:65:9e:23:d0:c9:e2:6b:76:df:
e8:d9:f7:bc:71:2f:0c:8d:f1:f6:e7:7f:ed:5f:63:74:ed:26:
bd:e5:2b:fe:6e:d8:71:b3:af:7f:5e:7c:de:3b:c7:36:41:9d:
f3:1d:2a:8a:2b:96:f9:66:ab:16:e7:8d:83:bc:34:00:3c:ce:
d9:f6:3d:e8:ba:2d:cb:66:08:6d:ae:2c:24:ce:bd:f8:74:2e:
f2:a2:64:5d:e1:5d:93:9e:32:36:1a:05:b5:32:7c:3f:00:78:
4d:e6:09:ce:fc:d3:d6:e6:ef:fa:25:1d:d3:87:b5:59:01:cd:
60:10:90:49:48:2d:a4:6c:d1:18:05:65:ca:76:e7:88:e8:55:
3a:04:6b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:19 2024 by rpki-client on console-ams.rpki-client.org