Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/0nZ6Cl7hXjW78RC0NHjV5qKRLmE.roa
File: 0nZ6Cl7hXjW78RC0NHjV5qKRLmE.roa (raw, json)
Hash identifier: zu4M+xXyoaWFWI1EDqC6IicYr5t9O7nS3LzX87yfbsw=
Subject key identifier: D2:76:7A:0A:5E:E1:5E:35:BB:F1:10:B4:34:78:D5:E6:A2:91:2E:61
Certificate issuer: /CN=4e2a299f182a1fd51d4b0362997af7aaae0d6be9
Certificate serial: 16345AC0
Authority key identifier: 4E:2A:29:9F:18:2A:1F:D5:1D:4B:03:62:99:7A:F7:AA:AE:0D:6B:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TiopnxgqH9UdSwNimXr3qq4Na-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/0nZ6Cl7hXjW78RC0NHjV5qKRLmE.roa
Signing time: Sat 01 Jan 2022 06:02:38 +0000
ROA not before: Sat 01 Jan 2022 06:02:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2072
IP address blocks: 185.4.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372529856 (0x16345ac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e2a299f182a1fd51d4b0362997af7aaae0d6be9
Validity
Not Before: Jan 1 06:02:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2767a0a5ee15e35bbf110b43478d5e6a2912e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:95:ca:a8:9c:7d:20:4d:8a:ea:81:b8:5c:61:
ec:94:40:ef:88:5b:58:08:fc:4d:37:e8:6c:37:ae:
a5:61:f3:02:ae:bf:69:29:1b:a0:79:5d:dc:9a:a7:
3b:9e:61:b3:94:a5:e5:13:0c:2f:7a:eb:35:f0:f1:
18:23:dd:1b:e9:18:ea:46:0a:93:07:09:f8:86:82:
65:c5:b8:ab:85:23:f5:b6:82:5f:23:e1:59:4c:07:
40:71:d8:46:22:37:ee:67:a8:87:da:d8:78:2d:b7:
26:cc:a7:cb:34:39:a4:e2:b8:fb:08:ae:b2:85:f9:
41:74:c4:4c:73:de:ae:e8:52:10:34:08:c4:73:95:
44:7d:ea:4c:da:f6:d7:ad:e6:4b:d3:a4:8d:b0:21:
61:a8:41:28:69:1a:ea:9f:b6:3d:2b:fc:e2:0f:9e:
1e:ed:33:fe:20:45:c0:d5:00:ce:26:e6:8f:b4:c6:
e0:31:2c:8f:e5:7c:66:0d:d6:26:1d:10:28:60:d8:
e9:e1:77:6a:c3:39:f9:78:2d:f2:95:1a:4f:3d:9f:
70:56:5a:3d:58:48:68:e3:08:7e:ad:a5:50:47:c9:
4a:cf:ba:50:2a:e7:79:df:fe:c7:44:70:46:6c:51:
7e:42:56:11:b7:c9:62:5a:8b:93:5d:4d:6d:0e:74:
d7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:76:7A:0A:5E:E1:5E:35:BB:F1:10:B4:34:78:D5:E6:A2:91:2E:61
X509v3 Authority Key Identifier:
keyid:4E:2A:29:9F:18:2A:1F:D5:1D:4B:03:62:99:7A:F7:AA:AE:0D:6B:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TiopnxgqH9UdSwNimXr3qq4Na-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/0nZ6Cl7hXjW78RC0NHjV5qKRLmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d3df26-3db5-4539-8030-f2ce77e3191e/1/TiopnxgqH9UdSwNimXr3qq4Na-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.251.0/24
Signature Algorithm: sha256WithRSAEncryption
46:1b:d7:5e:1a:00:4b:b7:b3:30:f3:23:54:a0:85:f4:0e:e1:
6e:0e:03:72:68:8e:b6:7e:2f:20:3e:62:34:2d:db:06:35:f0:
12:80:8c:90:8e:3f:87:03:70:f6:7c:0e:a2:8a:2e:f9:41:8d:
1f:a2:eb:22:11:18:65:11:55:44:79:1b:80:ae:88:9f:47:6a:
10:f2:bd:71:31:be:7e:f5:87:35:ee:96:92:e1:11:2c:99:66:
82:6b:5e:af:36:75:86:7c:81:0a:3e:13:eb:f6:1d:39:f9:3a:
7f:dc:f3:d4:e2:dd:11:9c:dc:82:28:7a:a4:b1:4d:7d:99:fc:
3b:0b:5c:5a:65:ba:dc:8c:4d:79:3b:99:24:57:c5:4a:bd:54:
ec:dd:77:4d:72:0f:a8:5c:1b:cd:21:94:bc:62:79:c4:7c:fa:
8c:df:8e:41:33:2d:a5:a7:70:57:06:bc:69:3d:54:96:06:29:
d6:7d:27:57:55:eb:e7:1d:13:d5:98:ea:fe:73:ec:f8:36:41:
eb:f5:97:e6:45:a5:0c:2a:b8:e9:56:0f:e7:3a:76:ae:d3:52:
ca:9a:c3:a2:b1:d2:ff:d3:d4:c4:6d:ce:d5:40:b0:9e:24:1a:
3a:11:1e:b3:a4:13:a8:23:32:cc:9c:55:4d:8e:a8:93:50:d8:
78:e6:0a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:23 2024 by rpki-client on console-ams.rpki-client.org