Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/07UXXGHX2zszC9zpLLMYr8yMSyA.roa
File: 07UXXGHX2zszC9zpLLMYr8yMSyA.roa (raw, json)
Hash identifier: CINCSA39O1bXxTowD/xaeA0LObGQuaPUEv62ztalucc=
Subject key identifier: D3:B5:17:5C:61:D7:DB:3B:33:0B:DC:E9:2C:B3:18:AF:CC:8C:4B:20
Certificate issuer: /CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Certificate serial: 322F7CE3
Authority key identifier: C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/07UXXGHX2zszC9zpLLMYr8yMSyA.roa
Signing time: Sat 01 Jan 2022 05:05:58 +0000
ROA not before: Sat 01 Jan 2022 05:05:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35280
IP address blocks: 185.6.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 841972963 (0x322f7ce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33
Validity
Not Before: Jan 1 05:05:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3b5175c61d7db3b330bdce92cb318afcc8c4b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f6:0e:b0:6e:a3:8b:9e:6a:99:a3:5b:f3:a7:
9d:fa:8f:8d:8e:22:ff:48:38:d3:72:bf:d3:04:75:
e8:8d:5e:65:9f:5d:31:af:5f:12:5d:c6:18:71:06:
02:5e:07:ae:8a:8e:74:7f:ac:aa:5f:e2:60:f7:65:
be:a5:83:0f:45:88:66:ea:38:12:16:30:bd:ff:87:
bd:6a:28:84:57:3a:52:ec:7d:e1:67:d4:6c:c6:20:
2f:0b:38:d1:ad:28:e8:2e:98:99:d6:c4:34:bc:35:
0e:d3:7b:d3:7d:40:25:16:35:f9:21:19:ee:15:2d:
ea:5a:92:35:7c:17:4e:2b:28:f6:0a:b5:0a:5c:ef:
e2:60:0d:7f:41:71:88:a7:c9:59:8a:2f:99:71:51:
13:51:40:c4:3a:e3:15:7f:d2:d6:fe:6c:d8:9e:c1:
86:13:53:bc:6a:94:33:f7:ae:c1:0b:1e:8c:f6:20:
50:a3:8c:fb:32:80:0c:23:3d:1a:87:d4:1b:e8:87:
a4:7d:27:2e:14:02:8b:de:7c:73:d7:ce:66:fa:90:
89:ea:c0:f9:4f:e2:ef:03:3f:de:0f:f2:7b:59:87:
9a:0f:f3:96:8d:54:3b:73:72:4b:1b:bd:24:ee:c4:
8b:1b:3a:03:b3:2f:99:05:0e:32:c3:b6:80:69:36:
18:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B5:17:5C:61:D7:DB:3B:33:0B:DC:E9:2C:B3:18:AF:CC:8C:4B:20
X509v3 Authority Key Identifier:
keyid:C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/07UXXGHX2zszC9zpLLMYr8yMSyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.60.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:24:10:f8:7f:77:61:23:01:a3:b1:17:0f:b3:80:2b:fd:2d:
d6:75:fa:a1:a0:77:e7:54:84:58:a2:14:fd:26:b7:48:e2:ce:
07:f3:62:ee:fb:f5:eb:7e:5f:c5:17:7e:a1:9f:54:ef:2d:e6:
5f:a1:52:6a:ef:dd:3c:4f:e2:3a:5a:99:2a:3a:c3:b7:30:00:
02:2d:e6:30:85:55:11:c2:18:c0:41:0e:dc:e3:6b:6c:8b:3a:
39:92:39:f2:2d:49:ba:34:6a:94:3b:09:63:77:8e:fd:a3:83:
4a:36:cc:93:87:ec:c6:d3:9e:48:11:f3:d5:bc:e3:33:f9:a6:
fb:88:52:f6:6a:7e:f1:ac:5f:30:1c:89:c5:de:10:58:0d:10:
fb:11:3a:fc:6f:d2:f9:60:ad:35:09:a4:1b:b9:9d:68:81:19:
02:a6:54:31:77:b1:3e:95:89:c0:51:39:db:88:fe:19:58:dd:
02:62:b2:9d:71:a3:5e:88:53:ef:3c:fc:0b:25:9c:de:d5:ca:
9b:0e:83:a8:16:98:28:28:17:53:6c:14:7c:78:ca:63:da:bb:
c4:30:75:9d:57:ed:80:ba:68:83:eb:85:7f:21:d5:76:87:48:
de:d2:18:b0:e0:ea:33:95:e8:a7:84:e6:0a:67:65:93:01:38:
c9:f3:dc:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:57 2024 by rpki-client on console-fra.rpki-client.org