Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/7a26e6-f7ae-4df0-9ecb-d879f7e709d6/1/yyPYHgUP6hgkBiT8KJuWSr71hA0.roa
File: yyPYHgUP6hgkBiT8KJuWSr71hA0.roa (raw, json)
Hash identifier: juJpd0b/GbUrRzLlzoqnflct3TGxC6drkL6q+TXjyCY=
Subject key identifier: CB:23:D8:1E:05:0F:EA:18:24:06:24:FC:28:9B:96:4A:BE:F5:84:0D
Certificate issuer: /CN=1ab634dc74f6037ba47311d127420e76f296be54
Certificate serial: 44140040
Authority key identifier: 1A:B6:34:DC:74:F6:03:7B:A4:73:11:D1:27:42:0E:76:F2:96:BE:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GrY03HT2A3ukcxHRJ0IOdvKWvlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/7a26e6-f7ae-4df0-9ecb-d879f7e709d6/1/yyPYHgUP6hgkBiT8KJuWSr71hA0.roa
Signing time: Sat 01 Jan 2022 04:02:18 +0000
ROA not before: Sat 01 Jan 2022 04:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31042
IP address blocks: 185.18.12.0/22 maxlen: 22
185.13.8.0/22 maxlen: 22
5.22.190.0/24 maxlen: 24
94.189.128.0/17 maxlen: 18
95.180.0.0/17 maxlen: 17
178.148.0.0/15 maxlen: 16
82.117.192.0/19 maxlen: 24
217.26.208.0/21 maxlen: 24
82.117.195.0/24 maxlen: 24
188.246.32.0/19 maxlen: 19
87.116.128.0/19 maxlen: 19
24.135.0.0/16 maxlen: 17
87.116.128.0/18 maxlen: 24
87.116.140.0/24 maxlen: 24
188.2.0.0/16 maxlen: 17
87.116.141.0/24 maxlen: 24
176.109.136.0/21 maxlen: 21
94.127.0.0/21 maxlen: 24
46.17.144.0/21 maxlen: 21
5.22.160.0/19 maxlen: 24
87.116.160.0/19 maxlen: 19
89.216.0.0/16 maxlen: 24
213.244.208.0/20 maxlen: 24
2a00:1dd8::/29 maxlen: 29
2a03:87c0::/29 maxlen: 29
2a00:1dd8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1142161472 (0x44140040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ab634dc74f6037ba47311d127420e76f296be54
Validity
Not Before: Jan 1 04:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb23d81e050fea18240624fc289b964abef5840d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:31:01:b4:5f:10:da:52:14:17:34:e2:85:f8:
73:50:b1:b5:73:69:7b:dc:3f:27:93:3e:f0:8c:c7:
02:4c:41:43:14:21:33:0e:d2:c2:7c:07:97:c9:84:
35:b4:17:2b:87:32:62:30:b6:12:62:ec:61:54:46:
64:f5:7b:ac:6e:4d:6c:f3:ea:1f:09:b6:59:b0:54:
c8:ba:0b:5f:a3:cf:6d:c8:d4:aa:f0:9a:77:67:37:
5a:92:c9:d6:d1:3f:44:b9:22:3d:13:a1:b1:c9:7b:
f6:0a:4b:b9:66:b4:38:c2:e2:d6:3e:5c:dc:dc:78:
75:e2:09:52:3f:0e:ee:b3:35:8d:d9:cd:2d:77:8f:
6a:ea:d1:ce:db:13:2d:35:e7:0c:ef:2b:27:c5:0d:
72:d8:8b:02:ca:2b:e6:14:9c:35:16:1d:b2:7d:73:
71:58:06:5f:6a:ee:d6:b0:ec:16:10:7b:ad:2c:7e:
19:a4:87:ff:03:10:c1:be:4d:dd:7c:60:ec:72:ad:
e0:bf:0c:6c:c6:6e:20:b3:b7:33:eb:8b:3b:82:7f:
fc:e5:18:36:10:96:98:3f:d8:00:a7:6b:f6:7e:be:
55:78:91:9f:7c:37:9f:40:ec:c2:88:9e:44:af:66:
59:25:27:6b:2f:91:ce:85:28:d6:8c:12:c0:d7:5e:
db:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:23:D8:1E:05:0F:EA:18:24:06:24:FC:28:9B:96:4A:BE:F5:84:0D
X509v3 Authority Key Identifier:
keyid:1A:B6:34:DC:74:F6:03:7B:A4:73:11:D1:27:42:0E:76:F2:96:BE:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GrY03HT2A3ukcxHRJ0IOdvKWvlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/7a26e6-f7ae-4df0-9ecb-d879f7e709d6/1/yyPYHgUP6hgkBiT8KJuWSr71hA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/7a26e6-f7ae-4df0-9ecb-d879f7e709d6/1/GrY03HT2A3ukcxHRJ0IOdvKWvlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.160.0/19
24.135.0.0/16
46.17.144.0/21
82.117.192.0/19
87.116.128.0/18
89.216.0.0/16
94.127.0.0/21
94.189.128.0/17
95.180.0.0/17
176.109.136.0/21
178.148.0.0/15
185.13.8.0/22
185.18.12.0/22
188.2.0.0/16
188.246.32.0/19
213.244.208.0/20
217.26.208.0/21
IPv6:
2a00:1dd8::/29
2a03:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
54:86:88:19:d7:b5:53:df:6e:d0:af:82:af:dd:e7:e1:5b:6e:
88:c5:de:bd:e6:6d:53:b3:bc:34:c0:93:29:7a:e1:88:38:da:
6d:79:1f:92:c3:73:12:c3:db:08:d5:67:6a:3a:1b:83:a3:cd:
a4:0e:1b:11:af:60:38:6e:ce:dd:96:de:fd:55:ea:52:c3:85:
d2:63:3e:e6:4d:5e:3f:52:94:33:02:60:ae:41:3a:f4:d3:fe:
5e:2f:48:74:0d:35:7c:56:32:7b:fe:19:72:e7:49:70:3b:cd:
47:76:bd:10:6e:26:3b:bb:f4:c3:59:53:77:ef:cd:c2:4c:bc:
b3:0e:1b:3d:b3:a7:6f:80:a9:28:aa:be:9d:c3:3a:8b:ac:0a:
44:fb:66:e9:64:ac:2a:4d:2f:df:b9:73:88:16:2e:e3:6a:ae:
13:f9:e4:93:28:04:86:d2:c1:d3:2c:27:f4:b9:ef:a4:4e:09:
2f:f2:48:24:89:e7:2e:b0:03:82:b7:3d:f6:f8:0c:43:e5:22:
dd:17:49:d4:c3:8f:3d:d6:a7:45:76:5e:3a:76:d5:4a:4b:83:
2a:25:00:58:2b:1d:37:50:e9:1e:08:f9:cf:57:8a:a6:e1:de:
57:58:be:c9:c6:c6:7c:3c:9e:20:6a:8a:5e:49:4d:48:de:2e:
c8:6e:f6:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org