Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/_hy8nKYw7HKpCHrPxPsyM8p_KZQ.roa
File: _hy8nKYw7HKpCHrPxPsyM8p_KZQ.roa (raw, json)
Hash identifier: Z0KkRnaspyaQWht+FpI+poUk0AWAZgKbwdpeXn/H0Y4=
Subject key identifier: FE:1C:BC:9C:A6:30:EC:72:A9:08:7A:CF:C4:FB:32:33:CA:7F:29:94
Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Certificate serial: 06192D13
Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/_hy8nKYw7HKpCHrPxPsyM8p_KZQ.roa
Signing time: Sat 01 Jan 2022 06:56:41 +0000
ROA not before: Sat 01 Jan 2022 06:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49181
IP address blocks: 2.57.38.0/24 maxlen: 24
2.57.37.0/24 maxlen: 24
2a09:d2c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102313235 (0x6192d13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Validity
Not Before: Jan 1 06:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe1cbc9ca630ec72a9087acfc4fb3233ca7f2994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3b:1d:d2:d2:b2:6c:3e:f0:4b:da:ce:d9:b4:
55:09:30:07:5c:fd:b7:ec:6a:dc:8f:42:36:fd:a0:
4e:d0:3c:62:8b:95:e6:c4:05:7f:61:5a:b9:aa:03:
ae:49:1e:40:e1:7f:32:e7:38:e8:1d:dd:d3:7f:28:
33:38:01:6c:78:6b:cc:62:c3:c4:1f:b3:7e:e6:08:
08:0c:8a:e6:10:43:dc:58:23:88:21:51:9d:05:25:
64:06:56:eb:31:f7:48:d2:4c:3e:97:11:a7:50:15:
cf:39:8f:2d:75:88:93:31:71:b1:2d:af:1b:7f:ed:
14:ec:57:90:03:c8:39:8a:a3:28:bb:85:0d:65:d1:
a7:39:b7:2c:e9:01:b3:09:43:d3:e7:09:5f:94:b7:
dc:d8:e3:fc:9d:22:ab:10:49:03:81:1d:f8:0d:1f:
2b:3a:96:88:3c:1f:3c:04:1f:3a:95:03:23:64:b1:
a9:48:e2:2a:08:26:45:64:ad:ef:cc:9d:e2:cf:6f:
3e:03:0b:18:34:eb:71:c9:4f:34:68:26:96:36:b8:
8a:d1:f4:02:11:b9:52:61:55:10:02:b4:a2:a4:1e:
cf:4b:58:4d:a0:99:3d:81:02:78:9f:32:69:24:77:
45:be:52:94:ec:81:16:bf:fc:8a:0b:30:b5:bf:06:
b0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1C:BC:9C:A6:30:EC:72:A9:08:7A:CF:C4:FB:32:33:CA:7F:29:94
X509v3 Authority Key Identifier:
keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/_hy8nKYw7HKpCHrPxPsyM8p_KZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.37.0-2.57.38.255
IPv6:
2a09:d2c0::/32
Signature Algorithm: sha256WithRSAEncryption
3e:70:75:0a:d3:97:38:0f:22:27:15:69:53:5c:4f:49:9d:84:
fd:4d:e9:89:20:74:a5:3b:93:95:ea:be:9d:32:a0:59:5d:96:
1c:07:33:b9:22:3b:e6:68:4a:98:64:57:bc:53:5e:99:eb:1a:
2f:a2:42:30:e2:3f:fe:cb:06:5a:92:8c:a5:7f:27:9b:ed:b8:
42:73:4f:bd:6d:d2:61:f5:42:02:a4:9d:b3:49:00:7b:45:89:
e9:95:55:24:1a:e2:02:4e:04:13:d8:68:a7:b4:70:22:93:c6:
c1:84:14:5d:90:4a:21:bd:a9:97:e0:43:41:9a:c4:2f:e9:a0:
ff:cd:97:c9:82:3e:10:cc:ff:75:6a:4a:58:88:be:dc:08:86:
5c:a3:10:e9:a5:c1:bc:b2:00:49:9b:51:89:df:3e:85:e7:17:
47:bc:df:cf:08:e1:f0:b8:69:4f:e5:4c:ad:0c:c8:a2:70:25:
35:6d:df:ef:1c:bc:60:f1:9a:15:cf:81:82:ea:37:14:b4:e1:
c9:a8:d4:c8:35:f0:f6:f0:34:a9:df:b8:c9:50:04:7d:94:ce:
d9:14:73:b1:1b:44:10:f5:14:c5:3b:16:0b:ab:76:cf:57:3b:
b8:2c:4e:e0:bb:40:fb:4c:32:c5:1b:06:8d:d4:1e:ce:0c:be:
06:d9:8b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:34 2024 by rpki-client on console-ams.rpki-client.org