Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/Zz_9UcrTS3jG-SrTSpv6priNmj8.roa
File: Zz_9UcrTS3jG-SrTSpv6priNmj8.roa (raw, json)
Hash identifier: ZfNBhOhhzW+D2Pk96+Vr+4vXbaSoNDMJlMaDHGTuz60=
Subject key identifier: 67:3F:FD:51:CA:D3:4B:78:C6:F9:2A:D3:4A:9B:FA:A6:B8:8D:9A:3F
Certificate issuer: /CN=b96e8b6d73f2f38548996f66621330a8d7108529
Certificate serial: 068C757B
Authority key identifier: B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/Zz_9UcrTS3jG-SrTSpv6priNmj8.roa
Signing time: Sat 01 Jan 2022 04:56:09 +0000
ROA not before: Sat 01 Jan 2022 04:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60880
IP address blocks: 192.145.24.0/22 maxlen: 22
5.133.84.0/22 maxlen: 22
5.133.84.0/24 maxlen: 24
185.197.188.0/22 maxlen: 22
185.205.240.0/22 maxlen: 22
2a0a:7cc0::/29 maxlen: 29
2a0a:7cc0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109868411 (0x68c757b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b96e8b6d73f2f38548996f66621330a8d7108529
Validity
Not Before: Jan 1 04:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=673ffd51cad34b78c6f92ad34a9bfaa6b88d9a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:42:ca:ca:32:11:49:f4:9f:b5:07:aa:a2:c5:
93:ad:38:5b:f5:c5:19:08:a1:d0:7b:bf:51:6a:1c:
55:32:4b:55:8a:78:35:76:1a:ca:8c:a2:e1:0e:c3:
78:4f:00:f4:ed:37:a1:a6:05:92:ab:9c:8a:71:f4:
65:23:c5:3c:55:a2:14:58:fd:dc:51:fe:c8:2e:73:
21:f4:fd:7b:81:69:e6:8c:3c:34:8a:45:e6:be:13:
00:04:3d:de:08:77:53:8c:16:c7:91:e7:c6:8d:f4:
df:ed:f2:8d:fb:e4:98:89:ba:78:b5:af:f2:e7:0b:
08:78:b4:04:f3:a2:ba:fd:51:15:bd:a7:9c:b4:30:
b4:80:3e:bf:4b:8f:4d:83:67:9f:8d:6e:b9:20:05:
56:29:38:6f:dc:1c:9a:4c:fd:f6:bf:63:d8:3c:37:
3f:d6:c7:4c:65:f6:91:bd:e7:47:9f:c7:75:06:30:
c1:f3:ef:d5:e2:4a:52:aa:e0:2a:51:d8:c9:49:4c:
d1:06:54:8b:a5:c0:a0:88:f8:12:62:fc:fe:dd:78:
2f:84:2a:17:1a:40:14:62:98:35:f8:c3:ae:17:2b:
01:36:9f:c6:51:11:38:49:2c:95:62:6c:48:ef:ee:
ff:73:e3:37:bd:f8:eb:74:54:7a:4a:b1:61:da:45:
c3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:3F:FD:51:CA:D3:4B:78:C6:F9:2A:D3:4A:9B:FA:A6:B8:8D:9A:3F
X509v3 Authority Key Identifier:
keyid:B9:6E:8B:6D:73:F2:F3:85:48:99:6F:66:62:13:30:A8:D7:10:85:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uW6LbXPy84VImW9mYhMwqNcQhSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/Zz_9UcrTS3jG-SrTSpv6priNmj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c14a62-aa6a-486d-b9e6-bc004649ee99/1/uW6LbXPy84VImW9mYhMwqNcQhSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.84.0/22
185.197.188.0/22
185.205.240.0/22
192.145.24.0/22
IPv6:
2a0a:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
5c:3e:62:c7:1f:2a:12:e9:2a:89:6d:f8:fc:84:1d:f1:fb:db:
7a:4d:c4:9e:9d:7e:0e:73:a7:ae:62:a3:ce:83:38:ab:87:4b:
b8:fd:0b:d0:c5:5d:87:76:d7:44:42:38:ba:f8:13:4e:de:bb:
81:45:0c:01:12:1d:00:b8:48:f7:a0:35:61:c8:b4:a9:cc:b0:
dd:2f:61:b4:61:8b:11:ec:0c:6b:22:89:7c:c0:07:10:63:ff:
8f:ad:ca:cf:df:64:bb:b7:77:75:f7:0d:49:bf:71:9b:6a:12:
71:ab:b6:27:92:8c:4c:b4:8f:47:00:4f:01:81:78:a8:90:a9:
20:2b:76:cf:6a:bc:3d:b0:3c:bd:6a:1a:30:a3:39:d6:55:ef:
0d:dd:dd:f6:71:c0:9d:54:b2:3d:67:5d:23:06:77:45:55:b0:
cc:f6:8f:3b:c9:66:2c:39:6b:3c:87:ee:aa:58:be:98:68:e7:
3b:70:83:0d:75:2d:28:9c:69:f6:83:e0:d1:81:63:24:2e:40:
71:4a:5c:ce:75:db:6d:40:43:62:90:86:0c:5c:9c:c7:ee:0d:
2f:6a:d5:76:ee:9e:e3:c1:1b:c4:ff:80:e9:ea:e5:3f:eb:17:
f0:60:79:10:57:d3:3e:18:27:2c:6e:91:b7:a5:d6:4e:ea:03:
51:3a:f7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:01 2024 by rpki-client on console-ams.rpki-client.org