Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/yyk6WkKXAO4qeLKECDCIr-bxEpI.roa
File: yyk6WkKXAO4qeLKECDCIr-bxEpI.roa (raw, json)
Hash identifier: 0us234XEtNbXfQYZL++E4g61cnamlsrRPsVs8smYpoo=
Subject key identifier: CB:29:3A:5A:42:97:00:EE:2A:78:B2:84:08:30:88:AF:E6:F1:12:92
Certificate issuer: /CN=d2de05d3ca750dd5c27eebfa5539c20b7d2829cf
Certificate serial: A5C5C4
Authority key identifier: D2:DE:05:D3:CA:75:0D:D5:C2:7E:EB:FA:55:39:C2:0B:7D:28:29:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0t4F08p1DdXCfuv6VTnCC30oKc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/yyk6WkKXAO4qeLKECDCIr-bxEpI.roa
Signing time: Sat 01 Jan 2022 01:52:32 +0000
ROA not before: Sat 01 Jan 2022 01:52:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202658
IP address blocks: 185.157.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10864068 (0xa5c5c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2de05d3ca750dd5c27eebfa5539c20b7d2829cf
Validity
Not Before: Jan 1 01:52:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb293a5a429700ee2a78b284083088afe6f11292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:93:6c:af:c1:5a:22:e1:70:32:ab:8a:eb:96:
b4:51:e9:bd:1c:a9:dd:2a:70:9d:a5:bd:3c:5f:95:
65:1e:6a:b2:e0:d9:4f:c0:1e:3e:dd:61:52:ed:39:
65:46:2b:b4:8f:ac:e2:91:68:0a:e3:cb:08:d6:36:
50:41:1b:2c:bb:33:88:02:0c:92:02:81:13:cc:f0:
74:de:35:31:39:be:3f:6c:fe:36:b0:47:d6:d0:21:
0a:1d:a2:34:0d:4c:e2:81:fe:d6:d6:5e:7c:cd:2f:
d5:13:4e:92:0d:59:a2:80:23:a4:81:67:3a:e3:49:
9f:27:e6:bc:93:93:ed:b9:67:01:67:94:16:4f:ad:
85:b3:7f:f4:8e:07:d7:38:52:56:67:de:a3:b3:ff:
e4:29:a9:45:96:4b:95:59:80:36:a2:30:57:65:46:
22:07:19:b8:c9:17:87:9b:ce:f3:4b:bf:7a:7f:5d:
7b:7b:e4:e2:b8:d4:8a:7d:32:96:b8:28:0f:df:58:
26:40:51:d8:74:c3:a0:ec:b9:d0:02:08:8e:86:7f:
d0:c2:40:1c:63:a0:1c:d2:5a:c3:a1:c8:56:78:e3:
b8:ed:0d:c9:bf:03:f8:8d:20:47:6e:59:fa:05:5b:
ce:65:cf:7e:a0:9f:41:89:88:70:54:d6:7e:e6:6c:
c1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:29:3A:5A:42:97:00:EE:2A:78:B2:84:08:30:88:AF:E6:F1:12:92
X509v3 Authority Key Identifier:
keyid:D2:DE:05:D3:CA:75:0D:D5:C2:7E:EB:FA:55:39:C2:0B:7D:28:29:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0t4F08p1DdXCfuv6VTnCC30oKc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/yyk6WkKXAO4qeLKECDCIr-bxEpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/0t4F08p1DdXCfuv6VTnCC30oKc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.184.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:82:81:7c:6c:4a:63:b3:9b:0f:cf:cc:bc:fb:d8:2d:6c:ab:
cc:f4:7f:c7:43:8a:d8:06:f4:b8:da:68:20:ec:48:b6:b1:5f:
3e:7d:67:34:04:92:4d:73:b0:75:15:2f:e2:f1:bb:57:21:87:
b0:fd:92:47:06:42:f6:6a:39:eb:a7:d8:6e:94:0f:6d:64:70:
37:1a:e2:8e:6c:ad:b2:3d:4f:f9:52:57:3e:75:c4:e1:df:89:
0b:9b:90:33:89:c3:e3:e3:30:a0:23:38:07:55:20:bd:2a:0d:
7a:36:11:90:0e:d8:4e:c1:6c:bf:06:20:c5:35:82:0a:af:38:
16:fa:2a:84:3e:7e:71:e2:6e:e3:25:2b:27:f4:ac:55:2e:94:
54:87:68:36:e9:2e:b1:a7:8b:83:3b:1e:07:3e:33:17:6d:fc:
60:bc:be:13:e0:07:1a:ae:ac:02:6c:36:23:37:50:95:5d:15:
bc:63:92:0b:18:ad:51:26:19:f7:23:73:93:4a:68:60:66:85:
36:bc:5a:f9:02:e1:7b:e7:16:c6:8f:88:ae:27:35:8f:10:ff:
c1:15:bd:a9:dc:5e:bb:71:65:b1:79:1f:c1:54:1a:65:ad:5e:
db:ca:da:99:d5:40:73:95:d7:2d:67:71:9e:25:c2:28:2d:66:
fb:03:53:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org