Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/z6FYQSHL4gBZWncoCWdehqnCjiA.roa
File: z6FYQSHL4gBZWncoCWdehqnCjiA.roa (raw, json)
Hash identifier: D/FRRLlpAaZa/vZSbzqW1NfXKesk+C+uPQJN+JhAZA4=
Subject key identifier: CF:A1:58:41:21:CB:E2:00:59:5A:77:28:09:67:5E:86:A9:C2:8E:20
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 0E372803
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/z6FYQSHL4gBZWncoCWdehqnCjiA.roa
Signing time: Wed 20 Apr 2022 06:37:52 +0000
ROA not before: Wed 20 Apr 2022 06:37:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41706
IP address blocks: 185.216.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238495747 (0xe372803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Apr 20 06:37:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfa1584121cbe200595a772809675e86a9c28e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:39:d3:ee:e3:af:0c:d3:fa:ba:ff:fd:05:a7:
30:62:d7:9c:d3:dd:40:da:2f:25:48:1f:d7:70:61:
50:96:ae:d0:4a:c7:ff:4d:5c:da:81:1f:28:cf:a8:
7d:d5:83:4c:4d:16:69:b4:b8:bf:9b:3a:d6:f2:ec:
1d:af:4d:63:24:36:a6:ce:6e:52:e4:7b:cf:a2:0f:
88:c3:2f:a7:42:e2:3f:6e:6f:59:43:53:4e:ad:74:
23:07:17:57:d8:af:9d:fd:59:6b:9c:e1:58:0e:6e:
bb:46:fe:6a:38:11:5a:ce:a2:aa:01:d7:04:e0:7f:
3a:16:17:22:d4:66:5e:0c:8f:87:7a:c0:da:da:31:
e6:6b:7d:08:2f:84:93:1c:57:48:b9:d6:03:c9:be:
17:07:2c:48:da:2d:c3:8d:5b:57:af:04:60:26:68:
e0:f7:3d:44:3f:da:d1:4a:8c:ea:9e:dc:28:9f:18:
91:4f:74:09:c4:81:33:bd:f6:61:1f:9b:c4:e7:55:
9d:35:87:54:90:03:2f:69:8c:91:7a:c8:1b:83:20:
ff:b2:c9:99:23:60:0f:b3:c5:1a:b6:2a:ff:cd:ce:
e9:f3:58:29:65:5d:a2:2f:8a:ff:a9:41:22:16:83:
67:9b:37:60:43:c6:49:62:8a:fd:9c:65:16:04:39:
2c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:A1:58:41:21:CB:E2:00:59:5A:77:28:09:67:5E:86:A9:C2:8E:20
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/z6FYQSHL4gBZWncoCWdehqnCjiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.103.0/24
Signature Algorithm: sha256WithRSAEncryption
37:88:42:61:1e:2c:b0:9e:c4:df:4d:9f:ac:0a:28:73:cf:34:
f6:3b:f9:06:9a:47:ce:43:ff:67:d9:10:a3:f5:13:35:62:78:
5b:10:82:e1:28:59:b6:5c:55:cb:59:a7:90:68:0f:6f:de:d0:
b7:9a:d6:84:2a:55:8a:f1:ff:10:6a:d1:e3:90:c2:68:78:70:
bf:3c:69:79:c3:e5:af:8c:c5:ad:1e:11:42:8a:9c:67:cf:d2:
6c:32:da:e8:6d:87:0f:fe:6d:40:5c:5a:06:43:a1:d1:39:4e:
d4:ba:93:41:a5:b6:58:ae:01:5e:e8:7a:3f:0f:21:b1:f1:35:
18:fd:3c:5f:1d:e7:b1:c5:53:bd:11:47:e4:0a:ce:65:0e:78:
6b:31:94:46:01:f8:55:0e:6a:80:16:d2:d0:fd:cb:e9:40:40:
f8:94:ef:c8:7a:e2:6c:77:f9:95:ee:72:9f:92:c1:b2:53:07:
d8:bb:b9:95:5a:9a:bd:63:f4:09:45:cc:39:df:06:23:3d:38:
f5:00:a7:35:3e:fd:d0:04:b4:00:80:06:a1:13:12:73:e5:b7:
17:f1:e4:33:fd:36:48:4c:80:25:d4:e9:4a:11:fe:27:aa:9c:
5d:2a:56:47:fd:47:c3:7c:32:ff:c6:72:1b:24:a9:0c:4e:ca:
63:a5:f5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:29 2024 by rpki-client on console-ams.rpki-client.org