Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/71a2cb-e43b-4059-86e4-505092092f43/1/YvFcgB5J5L2Noscq09csRVC8n50.roa
File: YvFcgB5J5L2Noscq09csRVC8n50.roa (raw, json)
Hash identifier: SHKADcSL/O7Cm+Anae3vWzp2cKRPT/7k2H2lsfs3JKI=
Subject key identifier: 62:F1:5C:80:1E:49:E4:BD:8D:A2:C7:2A:D3:D7:2C:45:50:BC:9F:9D
Certificate issuer: /CN=642e36ff8cd9c91599bb3fecec106643d9f2168d
Certificate serial: 01F7F166
Authority key identifier: 64:2E:36:FF:8C:D9:C9:15:99:BB:3F:EC:EC:10:66:43:D9:F2:16:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZC42_4zZyRWZuz_s7BBmQ9nyFo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/71a2cb-e43b-4059-86e4-505092092f43/1/YvFcgB5J5L2Noscq09csRVC8n50.roa
Signing time: Sat 01 Jan 2022 15:01:44 +0000
ROA not before: Sat 01 Jan 2022 15:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61428
IP address blocks: 185.6.84.0/22 maxlen: 24
2a03:dc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33026406 (0x1f7f166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=642e36ff8cd9c91599bb3fecec106643d9f2168d
Validity
Not Before: Jan 1 15:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62f15c801e49e4bd8da2c72ad3d72c4550bc9f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bb:90:ea:53:49:8d:21:fd:7e:52:28:c1:42:
23:f9:51:02:a7:56:93:35:56:0e:c5:f8:84:b0:32:
57:46:54:f4:31:7d:f2:d8:f1:fc:0d:c3:fb:16:5d:
c3:ef:0c:9f:ab:07:0f:2e:9d:5c:85:cf:32:25:c6:
37:62:73:11:f0:cf:aa:15:e4:04:20:46:f7:87:e3:
39:b3:32:b1:7c:ae:e2:e7:8b:4a:27:f6:11:da:df:
4f:cb:c0:f0:68:3b:14:0c:7d:30:8c:6d:af:e5:c6:
c8:19:85:27:06:7d:37:0e:f6:1a:68:8b:e2:f5:3b:
65:77:59:8d:d3:16:1e:23:f7:f5:f9:0b:47:c4:ae:
90:21:7b:af:b6:22:5e:1f:9d:cc:04:dc:12:bd:bc:
9d:3c:a2:74:7b:9d:2e:16:45:0a:f6:d1:99:cc:7b:
60:30:17:9e:32:71:5d:53:81:53:12:36:e4:80:24:
18:31:64:61:44:fa:c9:e8:0f:c7:73:95:5e:a0:7d:
5a:52:c4:c3:f4:98:d2:e4:67:e3:98:b0:14:10:f0:
58:18:e7:e1:a8:df:2b:24:87:d2:c9:b4:8a:78:20:
2a:8a:d3:20:6b:e1:2c:43:4a:97:8a:99:c0:17:01:
02:46:d2:01:87:d2:eb:bc:16:79:46:52:b2:b6:8c:
12:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F1:5C:80:1E:49:E4:BD:8D:A2:C7:2A:D3:D7:2C:45:50:BC:9F:9D
X509v3 Authority Key Identifier:
keyid:64:2E:36:FF:8C:D9:C9:15:99:BB:3F:EC:EC:10:66:43:D9:F2:16:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZC42_4zZyRWZuz_s7BBmQ9nyFo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/71a2cb-e43b-4059-86e4-505092092f43/1/YvFcgB5J5L2Noscq09csRVC8n50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/71a2cb-e43b-4059-86e4-505092092f43/1/ZC42_4zZyRWZuz_s7BBmQ9nyFo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.84.0/22
IPv6:
2a03:dc0::/32
Signature Algorithm: sha256WithRSAEncryption
97:72:50:c6:08:82:1e:99:cc:14:6a:5c:ad:61:a6:de:63:04:
99:32:ed:8b:cc:48:74:73:b9:02:cd:ab:8a:3e:46:cd:a3:4a:
03:c7:69:d4:a2:87:83:05:f0:28:f2:15:5f:f0:88:23:3c:ad:
b8:fc:a5:a1:07:85:25:12:72:b6:0a:aa:78:57:41:fa:f8:01:
81:22:85:e9:8a:e6:6d:5f:2d:df:99:3e:77:1d:9c:be:9c:7b:
01:50:32:0e:a3:96:c9:ea:17:5c:79:c8:c2:eb:56:cf:3e:4b:
b1:ba:c3:ec:9d:6c:6c:31:c8:2d:16:e1:86:e3:33:95:04:52:
66:9d:cb:a3:37:48:0f:2a:8b:56:b6:fd:97:fa:db:79:9f:83:
cb:e1:3c:82:e7:fb:14:51:5f:3b:5b:3c:3d:5d:0f:f8:c3:43:
1b:cd:9d:3b:8f:8e:69:16:5d:2e:04:53:bd:74:98:9f:02:89:
52:72:6e:5e:05:aa:c7:91:fc:cb:1a:5e:28:c2:ec:4a:33:08:
80:87:32:a0:d1:af:64:b8:64:40:0d:a2:1e:13:71:4e:87:cd:
42:9b:34:fd:83:1f:c7:86:17:46:58:85:5a:4e:96:98:fd:10:
81:6d:65:50:0e:f9:49:cd:91:4a:5d:a4:2f:26:fe:89:6f:c2:
eb:35:c9:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:46 2024 by rpki-client on console-ams.rpki-client.org