Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/zQPIPRKtG5gKcC6_a9GkF6d_Xk8.roa
File: zQPIPRKtG5gKcC6_a9GkF6d_Xk8.roa (raw, json)
Hash identifier: YBn4a6dtAJuJgz6kyfrZqGSjXxuaTgkaFM/P6gSD3ME=
Subject key identifier: CD:03:C8:3D:12:AD:1B:98:0A:70:2E:BF:6B:D1:A4:17:A7:7F:5E:4F
Certificate issuer: /CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Certificate serial: 9EF75A
Authority key identifier: F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/zQPIPRKtG5gKcC6_a9GkF6d_Xk8.roa
Signing time: Sat 01 Jan 2022 03:57:09 +0000
ROA not before: Sat 01 Jan 2022 03:57:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42334
IP address blocks: 185.115.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10418010 (0x9ef75a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Validity
Not Before: Jan 1 03:57:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd03c83d12ad1b980a702ebf6bd1a417a77f5e4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e1:d6:98:cf:5b:23:cb:d2:63:4a:45:e0:1f:
bb:fb:88:78:6c:d1:f4:a3:65:de:06:eb:61:80:6c:
1e:ed:d4:47:54:4a:2d:13:24:2b:69:b8:01:7b:5c:
c6:18:a1:e8:8d:e9:d1:06:e7:78:89:fc:0b:57:31:
f5:c2:37:a0:7d:e1:6f:74:f1:19:2f:b2:b5:eb:8b:
b4:61:b6:56:ac:e3:7a:f5:16:e3:4c:fb:be:84:fb:
a9:af:76:d4:b0:e4:c4:27:de:a6:e3:bd:a5:13:10:
73:d4:4c:13:f8:69:f5:e0:aa:14:5f:a0:ea:1c:13:
2e:29:87:d9:42:c9:b4:05:29:84:01:d4:f5:e8:46:
22:a6:40:8d:0d:ab:45:d7:dc:98:5e:e8:33:bf:aa:
ea:9c:0d:d4:72:72:7e:43:ba:2d:ff:5b:b3:42:b8:
58:a8:4f:b4:b0:9d:82:1e:02:3b:a0:88:2a:51:5b:
1a:ae:fe:83:a8:af:d4:eb:42:73:f7:39:37:87:85:
fd:45:44:3a:41:a2:a0:b9:20:a8:d5:9c:a1:92:c9:
a8:d9:22:43:77:40:48:a4:80:79:db:da:0d:d8:db:
7b:3d:09:e5:46:45:da:04:0e:bf:f4:97:fb:50:34:
31:7f:dd:cc:8a:b4:f0:ab:d6:73:b2:13:4d:1d:17:
eb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:03:C8:3D:12:AD:1B:98:0A:70:2E:BF:6B:D1:A4:17:A7:7F:5E:4F
X509v3 Authority Key Identifier:
keyid:F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/zQPIPRKtG5gKcC6_a9GkF6d_Xk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.100.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7d:7b:68:27:15:48:83:ad:00:5a:c9:0b:bc:79:55:55:61:
0b:e8:74:44:13:0f:08:02:75:76:cf:87:12:0b:6a:b7:2e:fe:
b3:ea:16:17:7e:4b:ff:1a:56:2f:22:8a:a0:9f:74:c7:80:64:
c5:c4:fc:49:6b:27:cf:91:c3:22:94:f8:f4:41:08:97:7f:e6:
b5:96:28:6b:e3:6d:9f:4c:59:02:36:93:1e:fb:ff:fe:3b:46:
54:ad:41:df:a5:de:0f:19:ea:14:1b:ed:77:72:cd:f0:6d:1a:
44:67:78:bd:26:2f:87:66:02:73:eb:a9:9d:38:7a:50:d5:fc:
f5:58:c0:8b:56:e4:62:17:64:f8:d7:c2:8d:98:13:c5:81:36:
81:16:ee:81:3c:f1:07:7c:24:43:4e:88:e1:ea:d5:30:79:18:
00:ef:bb:f1:aa:34:54:b1:b0:2f:0f:ce:b5:23:92:93:a0:5f:
c0:36:91:4f:b9:a1:c9:7b:f9:18:fb:48:dd:a4:da:35:eb:41:
3e:c5:d1:d9:75:8b:7d:af:4b:23:de:6e:ff:0c:05:7a:13:10:
7c:d2:aa:e4:36:29:fc:53:c2:42:95:60:e3:72:df:4e:09:b9:
3d:43:ad:00:1b:5e:00:6e:ca:d0:88:37:41:1d:1e:a2:4f:c9:
44:7b:8b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:08 2024 by rpki-client on console-fra.rpki-client.org