Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/9ShuzCiQ6ilfqsrc8HQTLyQVzkk.roa
File: 9ShuzCiQ6ilfqsrc8HQTLyQVzkk.roa (raw, json)
Hash identifier: X8uvGfMXrLrymuxrQM1LZbmVVvtCXvkn9xNT+n50CeM=
Subject key identifier: F5:28:6E:CC:28:90:EA:29:5F:AA:CA:DC:F0:74:13:2F:24:15:CE:49
Certificate issuer: /CN=da0389d85ea126e0efbebc5d8459ef709fb895cb
Certificate serial: 0183D0042727400573F81909A3A06A8B79FC
Authority key identifier: DA:03:89:D8:5E:A1:26:E0:EF:BE:BC:5D:84:59:EF:70:9F:B8:95:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/9ShuzCiQ6ilfqsrc8HQTLyQVzkk.roa
Signing time: Thu 13 Oct 2022 06:24:36 +0000
ROA not before: Thu 13 Oct 2022 06:24:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60446
IP address blocks: 185.112.74.0/24 maxlen: 24
2a10:5540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:04:27:27:40:05:73:f8:19:09:a3:a0:6a:8b:79:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0389d85ea126e0efbebc5d8459ef709fb895cb
Validity
Not Before: Oct 13 06:24:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5286ecc2890ea295faacadcf074132f2415ce49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:36:f6:74:78:0a:03:e6:75:93:21:e0:2e:7c:
9b:8d:14:f4:96:9e:8d:d3:6c:a7:a6:2e:2e:44:e7:
b5:ad:84:39:39:51:b3:dc:e7:ea:54:45:92:bf:c6:
28:d7:30:75:31:b3:f5:e7:68:34:90:72:78:31:53:
f4:0e:cd:94:94:51:e9:85:57:ea:2e:86:f2:59:81:
b1:58:4a:03:91:af:90:82:dc:d8:ec:74:db:c6:62:
cf:0a:2e:b5:c1:39:0c:17:44:37:6d:68:23:13:cd:
cc:11:41:96:be:4f:34:13:4b:a5:fa:4b:19:54:6a:
56:55:25:27:0c:5e:fe:96:fe:93:37:f3:2c:ff:dd:
58:db:d3:30:2b:bd:9e:7f:09:f8:9b:b8:43:7a:78:
e5:2c:7a:13:47:1f:cb:68:27:ba:c0:96:80:be:d8:
99:b7:3d:ea:98:5d:8a:61:d7:97:ec:ae:f4:1e:62:
7b:82:c4:a8:e8:9d:48:ec:de:3e:e6:f6:76:96:6e:
33:5b:2a:30:f1:1f:67:c3:6d:c4:5d:b1:e0:50:ac:
40:f6:f9:ae:40:a4:c4:44:09:86:a3:60:a8:75:ba:
5f:2c:90:68:9a:22:08:03:14:74:5a:30:d3:ff:2d:
a2:fe:10:96:cd:8a:99:5e:6a:67:4c:12:21:ba:0a:
aa:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:28:6E:CC:28:90:EA:29:5F:AA:CA:DC:F0:74:13:2F:24:15:CE:49
X509v3 Authority Key Identifier:
keyid:DA:03:89:D8:5E:A1:26:E0:EF:BE:BC:5D:84:59:EF:70:9F:B8:95:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/9ShuzCiQ6ilfqsrc8HQTLyQVzkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.74.0/24
IPv6:
2a10:5540::/29
Signature Algorithm: sha256WithRSAEncryption
2a:8c:81:3b:87:38:1d:e4:1a:47:90:dd:09:a5:a2:f9:6a:70:
5e:48:4d:82:7f:b0:09:df:26:32:66:00:28:ac:8e:60:84:05:
09:5a:e4:f3:9f:77:18:c0:00:4e:cc:3d:32:70:85:ae:3e:4f:
ff:17:45:1f:04:8e:27:98:4e:be:9d:4a:f8:ae:39:41:1f:87:
ab:1e:41:0d:6b:28:29:64:df:9b:a7:90:8e:40:92:e3:b4:00:
09:d4:4f:6b:e6:7a:32:32:83:ab:a7:14:b6:be:9e:0b:b3:1f:
c1:6c:09:36:f3:df:e1:f5:f5:73:39:7f:0e:be:c1:46:46:09:
4c:3b:25:bb:e2:70:f4:79:57:6b:d6:d9:56:fc:c0:6b:e2:4c:
a0:85:33:5d:29:ca:e2:a4:ca:0f:2f:b9:d4:78:d7:78:53:fa:
2c:f6:de:f0:a5:a3:1e:b7:e7:bc:30:81:e2:3b:d2:da:4e:fe:
38:f9:f3:af:83:98:72:01:56:02:e2:08:e3:49:09:d5:a4:37:
10:c2:61:69:82:2d:da:53:c7:a1:63:53:3d:75:8f:9b:69:46:
2c:fa:2b:8e:9c:db:58:ae:14:dd:53:10:d4:08:ab:32:2f:3f:
8a:77:39:a0:7b:92:d5:ff:0c:d0:61:d1:06:c0:52:20:0a:11:
7d:c6:bd:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:34 2024 by rpki-client on console-fra.rpki-client.org