Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/4d9424-06e8-4bc6-b5ea-b50944913abf/1/N8wpByV3K0J-IkpFZJovDtmbzhM.roa
File: N8wpByV3K0J-IkpFZJovDtmbzhM.roa (raw, json)
Hash identifier: iq9Hlc+fT0/O0oL/dqdTrtSxlzljU1kQB9QmwPpR42k=
Subject key identifier: 37:CC:29:07:25:77:2B:42:7E:22:4A:45:64:9A:2F:0E:D9:9B:CE:13
Certificate issuer: /CN=6d8023a3817d502151fbd04844a7c3c35ee99b43
Certificate serial: 0264F438
Authority key identifier: 6D:80:23:A3:81:7D:50:21:51:FB:D0:48:44:A7:C3:C3:5E:E9:9B:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bYAjo4F9UCFR-9BIRKfDw17pm0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/4d9424-06e8-4bc6-b5ea-b50944913abf/1/N8wpByV3K0J-IkpFZJovDtmbzhM.roa
Signing time: Sat 01 Jan 2022 07:54:23 +0000
ROA not before: Sat 01 Jan 2022 07:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207223
IP address blocks: 185.179.64.0/23 maxlen: 24
185.179.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40170552 (0x264f438)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d8023a3817d502151fbd04844a7c3c35ee99b43
Validity
Not Before: Jan 1 07:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37cc290725772b427e224a45649a2f0ed99bce13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:85:d5:b6:b0:47:b4:db:47:17:db:e8:66:13:
01:9f:9c:b5:79:6b:0a:aa:5a:29:05:d9:bd:78:8c:
58:0c:65:45:8f:84:a9:20:08:57:cf:6a:47:1f:0d:
82:0f:5c:01:71:c3:7a:04:0d:f2:ef:36:38:15:b6:
c8:31:a7:33:e1:52:ed:3a:59:e2:bf:33:5c:91:f7:
94:32:19:58:cd:5d:34:73:47:f4:ef:e4:d2:0a:bb:
1b:06:fd:a4:24:c7:41:d8:21:80:e4:4e:6f:68:4c:
72:40:5c:9e:ff:b3:81:78:e6:86:b7:16:cb:fe:4d:
94:23:df:d3:cf:d1:f5:63:7d:48:33:69:63:7d:4d:
93:e3:87:6b:ea:ca:fd:df:45:34:f5:0e:c2:79:6a:
bc:5b:9a:af:cc:eb:c4:73:35:63:7d:7f:97:03:27:
64:96:c0:ce:63:da:b1:3c:67:4c:54:0a:d0:50:97:
bf:9d:e5:22:f0:36:6f:bc:15:30:f1:e0:cb:69:4e:
c2:51:44:b5:5c:6d:6c:3d:04:50:d9:86:db:d1:88:
17:8b:19:b4:62:0f:38:95:3a:83:65:91:ce:70:02:
34:25:8c:a6:71:e3:b5:4e:e6:60:76:8c:db:4a:15:
8e:82:81:e4:0b:b8:35:c4:1a:8d:2d:87:a9:38:47:
51:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CC:29:07:25:77:2B:42:7E:22:4A:45:64:9A:2F:0E:D9:9B:CE:13
X509v3 Authority Key Identifier:
keyid:6D:80:23:A3:81:7D:50:21:51:FB:D0:48:44:A7:C3:C3:5E:E9:9B:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bYAjo4F9UCFR-9BIRKfDw17pm0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/4d9424-06e8-4bc6-b5ea-b50944913abf/1/N8wpByV3K0J-IkpFZJovDtmbzhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/4d9424-06e8-4bc6-b5ea-b50944913abf/1/bYAjo4F9UCFR-9BIRKfDw17pm0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.64.0/22
Signature Algorithm: sha256WithRSAEncryption
09:18:92:3a:bb:42:5d:3e:ce:39:d1:e4:d9:ab:8c:34:46:b2:
07:b6:8a:66:b9:69:9d:25:27:42:fd:fa:0d:b5:ab:cf:fc:dd:
b7:10:e7:30:70:ce:4b:9b:83:9c:23:61:22:d8:9e:dd:29:5b:
70:32:eb:db:3e:11:1c:a1:dc:fb:11:8d:57:58:d6:05:63:b9:
40:39:3d:10:6d:52:6b:a6:50:ee:8b:73:9e:22:40:59:df:81:
1c:e5:e6:6c:97:d2:1f:b2:86:4d:9f:5a:e8:44:03:61:2b:2a:
37:26:f4:a4:cc:1b:88:02:73:ba:27:b4:0f:a7:df:57:a9:4f:
a7:02:29:05:45:ce:f7:85:6f:76:73:6c:28:fd:75:08:a5:4a:
fc:f1:1f:55:6b:c0:77:dd:58:8d:e2:cc:00:80:94:c8:28:5a:
eb:d5:b2:06:69:4e:59:ae:c9:f3:61:32:e9:ec:c8:c1:de:fe:
63:c4:dc:a9:0e:08:53:23:87:ea:5e:ed:cc:d1:32:7d:eb:b0:
96:97:72:d3:a7:f1:d5:0c:2a:9d:13:b4:d7:09:ad:71:82:c5:
27:d7:43:ae:26:61:08:df:c8:85:28:81:95:9e:87:75:a0:84:
17:04:89:ed:65:b0:97:82:bb:6a:2f:76:c2:6a:cb:e1:50:86:
d8:42:35:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:30 2023 by rpki-client on console-ams.rpki-client.org