Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/_ylpMCu3Bj66Uw4cnaicso7uXBM.roa
File: _ylpMCu3Bj66Uw4cnaicso7uXBM.roa (raw, json)
Hash identifier: BoRQQ6xXzdEmcOVAosoBVqEbtlv2NBDSfvUWGQqAPis=
Subject key identifier: FF:29:69:30:2B:B7:06:3E:BA:53:0E:1C:9D:A8:9C:B2:8E:EE:5C:13
Certificate issuer: /CN=1fa12d687c627a182f81d4cccb3f32201861f677
Certificate serial: 1959E423
Authority key identifier: 1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/_ylpMCu3Bj66Uw4cnaicso7uXBM.roa
Signing time: Mon 11 Apr 2022 14:51:51 +0000
ROA not before: Mon 11 Apr 2022 14:51:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212572
IP address blocks: 185.50.56.0/23 maxlen: 23
185.50.56.0/22 maxlen: 22
185.50.58.0/24 maxlen: 24
185.50.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 425321507 (0x1959e423)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fa12d687c627a182f81d4cccb3f32201861f677
Validity
Not Before: Apr 11 14:51:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff2969302bb7063eba530e1c9da89cb28eee5c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2f:b7:e1:79:ab:27:e7:a6:8d:eb:1d:8e:c3:
c7:4d:b0:50:5d:c3:f4:86:c5:c8:f1:02:35:ef:4c:
2c:e7:75:ab:85:24:35:79:28:f4:dc:e7:85:5d:eb:
55:a5:32:9c:88:04:23:07:12:78:aa:a2:48:8d:e0:
60:81:0d:98:57:cc:99:c2:66:36:d1:73:f0:d2:52:
03:d7:ce:2f:b0:8b:95:3a:32:90:fb:47:6c:80:07:
9d:65:e5:58:0b:74:b5:76:97:73:07:1f:7c:28:fe:
31:09:2f:4c:72:60:fb:f6:13:66:04:c5:9d:ae:ba:
1c:ed:46:a8:17:97:a1:c2:95:8d:25:ca:01:65:a3:
34:28:a5:22:d7:3e:47:db:d6:a8:c1:9c:92:b4:f9:
f0:f8:75:47:48:4b:d2:f5:3b:7f:c2:e8:7a:32:ac:
98:bc:f6:45:d3:52:97:5d:a6:44:b0:8b:07:31:3d:
40:80:d0:ad:fc:7a:29:41:ba:26:0f:61:ee:ce:73:
de:f2:d3:48:4e:a8:6b:b2:59:43:52:79:50:1e:4b:
d0:b9:bd:48:79:0e:e6:b7:5f:2a:64:d1:74:38:57:
89:32:3c:8c:0e:85:27:7d:96:57:aa:e9:ce:2d:39:
8a:e4:c1:cf:23:3d:8c:5d:6f:cd:77:18:3d:83:aa:
a1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:29:69:30:2B:B7:06:3E:BA:53:0E:1C:9D:A8:9C:B2:8E:EE:5C:13
X509v3 Authority Key Identifier:
keyid:1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/_ylpMCu3Bj66Uw4cnaicso7uXBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/H6EtaHxiehgvgdTMyz8yIBhh9nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.56.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:16:9e:1e:a8:d7:a2:57:2f:14:da:59:6d:b9:39:d5:e5:57:
dd:7c:93:f1:fc:b4:06:3e:4b:42:1e:75:2f:c3:cc:95:c7:f9:
70:3c:8c:7c:7d:b5:7f:d4:53:32:2a:13:b9:00:37:aa:91:e4:
4c:d5:21:fe:57:ea:35:08:32:27:aa:f4:0f:b5:76:8e:9d:5f:
14:69:64:57:c4:12:ac:a3:91:ec:c4:bf:a8:09:82:e2:b4:24:
fe:01:1c:c6:df:4d:61:5c:c3:50:45:c8:b4:80:c5:3b:0d:7d:
ad:20:7d:6d:4f:90:32:f8:78:ef:a4:53:f1:81:2e:fa:e2:47:
5e:0d:d9:e1:3b:63:3c:51:4d:4b:db:45:ea:5d:c5:0d:60:b3:
98:09:bd:cb:77:fb:f6:5a:5b:ac:7b:9c:8e:72:11:2e:9b:99:
5e:42:78:32:26:13:f2:99:cb:ab:45:13:75:90:a2:aa:ca:ac:
2e:33:70:66:b7:68:90:be:00:da:b7:53:67:1b:19:1c:8b:5a:
90:8a:3a:0b:68:d2:90:e8:d5:d2:aa:02:b2:c3:0e:87:bf:75:
68:1f:88:37:5d:5f:78:b9:94:97:1d:8e:55:d7:ac:76:3f:7f:
19:3c:06:f3:80:f0:d6:e2:f7:96:5b:72:0a:bc:71:e3:43:6e:
be:96:9e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:20 2023 by rpki-client on console-ams.rpki-client.org