Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/b9a936-2ec7-494c-95d2-eab40be48cc1/1/zdJsUNfzgJ6YWihK4yh-4g_6Gk4.roa
File: zdJsUNfzgJ6YWihK4yh-4g_6Gk4.roa (raw, json)
Hash identifier: GDzaF5xPzDmNAoKr0RNyRdHumqMtIRJbVy4BSwVDDRk=
Subject key identifier: CD:D2:6C:50:D7:F3:80:9E:98:5A:28:4A:E3:28:7E:E2:0F:FA:1A:4E
Certificate issuer: /CN=dae70ef6feb813ed9dbb967d0513cf2043d3a347
Certificate serial: 088DBB1A
Authority key identifier: DA:E7:0E:F6:FE:B8:13:ED:9D:BB:96:7D:05:13:CF:20:43:D3:A3:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ucO9v64E-2du5Z9BRPPIEPTo0c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/b9a936-2ec7-494c-95d2-eab40be48cc1/1/zdJsUNfzgJ6YWihK4yh-4g_6Gk4.roa
Signing time: Sat 01 Jan 2022 01:59:12 +0000
ROA not before: Sat 01 Jan 2022 01:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201782
IP address blocks: 185.63.180.0/22 maxlen: 22
2a03:da0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143506202 (0x88dbb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dae70ef6feb813ed9dbb967d0513cf2043d3a347
Validity
Not Before: Jan 1 01:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdd26c50d7f3809e985a284ae3287ee20ffa1a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:56:a9:fb:a7:e2:cc:3c:00:ef:6f:8b:ab:be:
92:e1:01:a9:4e:59:ef:a6:1d:33:39:db:6a:e9:eb:
35:64:0a:dc:cb:e6:0f:59:e7:f2:07:80:2b:e6:6d:
1e:34:6c:05:cf:dc:ee:28:fa:fe:48:04:b0:26:03:
e1:01:12:a6:46:1b:f3:f2:7b:ce:51:2e:e3:10:2d:
71:41:59:0c:bc:a7:48:b1:72:18:8c:12:0e:fe:06:
3d:3b:96:1c:f8:87:a1:20:e3:66:11:1a:4c:e9:82:
8d:52:81:73:96:a8:15:b5:78:15:a4:06:90:1c:c6:
ea:f0:6f:a0:fc:eb:4f:de:e1:9f:f1:ec:c3:b3:d1:
8c:e3:8e:1d:1b:be:1c:77:88:c6:67:6f:12:20:e0:
53:c6:03:a5:44:d0:2d:c6:3e:fa:88:c3:d9:bd:19:
d9:7a:1c:d3:f1:5e:39:01:37:f6:49:d9:11:b6:73:
3a:2d:8e:90:8c:8a:60:8d:ab:b5:34:b5:f8:70:06:
44:36:11:dc:3d:eb:1a:7a:d5:f9:e2:21:11:53:23:
30:12:c2:54:94:08:27:6d:bb:f4:46:1f:9b:3e:2e:
5b:50:a5:17:e0:59:4f:70:73:40:9d:8a:e7:c9:5f:
a7:de:a3:ca:8c:81:8d:1b:db:d8:7a:e0:10:d7:94:
3a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D2:6C:50:D7:F3:80:9E:98:5A:28:4A:E3:28:7E:E2:0F:FA:1A:4E
X509v3 Authority Key Identifier:
keyid:DA:E7:0E:F6:FE:B8:13:ED:9D:BB:96:7D:05:13:CF:20:43:D3:A3:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ucO9v64E-2du5Z9BRPPIEPTo0c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/b9a936-2ec7-494c-95d2-eab40be48cc1/1/zdJsUNfzgJ6YWihK4yh-4g_6Gk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/b9a936-2ec7-494c-95d2-eab40be48cc1/1/2ucO9v64E-2du5Z9BRPPIEPTo0c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.180.0/22
IPv6:
2a03:da0::/32
Signature Algorithm: sha256WithRSAEncryption
4f:e4:97:0f:95:29:e1:48:8c:b5:29:95:0d:f6:69:78:26:02:
b3:ce:f2:0f:d1:bc:d5:79:82:57:3c:ea:91:a4:d8:46:48:df:
4a:3a:d6:2b:b8:58:82:70:d8:5b:13:2e:6f:2d:62:72:0e:da:
71:54:31:40:f0:4d:ff:dc:14:89:ef:4c:f8:d4:a3:16:f1:57:
3a:f0:21:3b:6e:78:eb:75:5c:c9:99:58:6c:01:33:0d:02:13:
b4:c4:bc:86:91:5c:98:aa:c8:2f:9c:08:f0:d9:f5:2c:17:a3:
fd:5c:eb:61:05:f7:de:8b:15:08:72:c0:60:c3:ca:f0:c1:68:
69:b7:12:01:ee:af:67:8d:b2:58:d9:65:7d:b3:80:94:35:ac:
e6:18:2b:4b:97:4f:5d:3d:17:7a:da:d7:f0:ad:20:95:eb:58:
b5:ae:89:0d:1f:e9:65:78:24:5e:12:87:ff:4f:24:df:87:fb:
c5:68:f8:52:a3:cc:0f:6b:a3:31:12:71:6a:b1:fd:98:53:de:
38:09:4f:b5:2a:12:a7:de:af:5b:9b:31:78:6a:45:97:14:28:
92:29:3b:f1:0d:2f:8e:5d:4d:f0:e9:62:f5:f5:af:f7:e7:c3:
f6:3a:db:41:33:68:40:ed:e3:0a:57:d5:58:f5:f5:6d:83:e9:
33:95:b7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:05 2024 by rpki-client on console-fra.rpki-client.org