Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/Z4WAc97xbp8h-uNeUlTMinkkI4g.roa
File: Z4WAc97xbp8h-uNeUlTMinkkI4g.roa (raw, json)
Hash identifier: mDhxoVahI1uyLcTcT8MWm/APLtTXC2LI2hf4bQvbODA=
Subject key identifier: 67:85:80:73:DE:F1:6E:9F:21:FA:E3:5E:52:54:CC:8A:79:24:23:88
Certificate issuer: /CN=62117a1e6f699c322b6b983494f42c2209127553
Certificate serial: 13B21C09
Authority key identifier: 62:11:7A:1E:6F:69:9C:32:2B:6B:98:34:94:F4:2C:22:09:12:75:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhF6Hm9pnDIra5g0lPQsIgkSdVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/Z4WAc97xbp8h-uNeUlTMinkkI4g.roa
Signing time: Sat 01 Jan 2022 07:52:37 +0000
ROA not before: Sat 01 Jan 2022 07:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60277
IP address blocks: 185.124.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330439689 (0x13b21c09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62117a1e6f699c322b6b983494f42c2209127553
Validity
Not Before: Jan 1 07:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67858073def16e9f21fae35e5254cc8a79242388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:aa:8f:d6:64:6b:e5:2e:92:43:6b:91:ad:47:
c7:df:a4:cf:b7:a6:55:68:bb:f7:70:96:65:45:f4:
e8:f0:72:bf:95:a4:dc:6d:80:46:8e:dc:ca:f0:47:
0e:65:09:f3:d7:38:20:6b:e9:d3:f3:43:b9:aa:bb:
36:5a:12:83:24:50:a7:06:47:45:92:e3:d6:db:b3:
81:e7:d9:01:b7:90:92:d4:b0:10:95:1a:a2:eb:66:
e8:33:2f:c0:49:7d:e9:0e:95:f7:19:44:a4:b6:48:
06:a9:71:bc:f3:7f:7d:e9:a8:c0:a3:3d:c2:c0:93:
c8:01:bb:5e:b3:8c:1a:4d:a6:10:dd:f9:b6:0a:d3:
9f:fa:00:3b:96:c4:de:bb:9d:d9:5e:ab:4d:f2:39:
49:fc:76:58:2f:14:bd:3d:e9:f3:58:db:42:bc:ee:
b4:cc:ed:bd:29:54:dc:fe:a0:81:e9:05:a6:51:48:
89:5f:d8:39:6d:3a:04:de:74:33:45:dd:7d:92:40:
e1:4c:e5:c9:67:e6:6b:f3:12:38:e8:1f:9e:b5:ee:
50:81:be:b3:15:af:8e:08:db:bd:12:79:ee:8c:60:
aa:01:2b:2c:1f:a0:51:8a:b0:92:59:c9:95:0f:7e:
77:1c:66:77:a0:fe:17:d2:fb:1e:e7:0a:8a:75:4b:
4d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:85:80:73:DE:F1:6E:9F:21:FA:E3:5E:52:54:CC:8A:79:24:23:88
X509v3 Authority Key Identifier:
keyid:62:11:7A:1E:6F:69:9C:32:2B:6B:98:34:94:F4:2C:22:09:12:75:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhF6Hm9pnDIra5g0lPQsIgkSdVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/Z4WAc97xbp8h-uNeUlTMinkkI4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/YhF6Hm9pnDIra5g0lPQsIgkSdVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.204.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:60:e0:d3:58:8e:a9:69:5e:11:e4:a6:15:6f:df:96:bc:9c:
e2:ff:7f:70:bc:ec:70:40:fc:e8:01:9e:51:d6:c2:89:a9:80:
54:d6:79:05:3b:8b:4f:ac:7a:6e:d2:88:d8:fa:54:0c:e4:82:
e6:11:4d:fc:f4:26:a1:99:e7:71:29:69:af:7a:fa:6d:4f:47:
66:e6:35:fd:9f:64:1f:9a:82:10:ba:c6:39:19:ef:09:8c:f4:
36:04:7d:be:d5:3a:0d:48:ad:3f:1d:2e:0f:a7:b6:f3:a8:f6:
4f:00:77:9f:69:02:5d:12:76:b5:31:87:bc:91:cb:6b:e8:cc:
38:2e:58:aa:64:4b:3b:2a:16:b0:d1:b3:99:11:64:74:b8:8f:
e3:eb:6b:32:1a:06:86:e7:e0:97:af:37:3f:b3:17:53:57:96:
f0:1f:87:5d:93:5f:93:55:44:c7:03:3d:7d:b1:0c:7c:08:93:
3c:41:48:26:b3:24:55:0a:ff:0c:70:93:04:af:d0:e3:73:58:
a8:9f:83:15:66:0e:1b:68:b9:bf:c3:a9:41:d2:be:db:b9:2e:
46:7a:fe:61:3c:a1:8c:f2:43:5a:5d:45:2e:30:43:01:99:62:
f7:e9:e3:c8:14:8a:26:ae:6f:54:ae:bb:a9:da:a9:ab:dd:7e:
2e:98:18:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:35 2024 by rpki-client on console-fra.rpki-client.org