Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/Zh7IK7URyeyAMWXx1pCeEPGC1tE.roa
File: Zh7IK7URyeyAMWXx1pCeEPGC1tE.roa (raw, json)
Hash identifier: jYeBJlP/bjJpHPilxn92JKYdmB3IPTPeoYyLgW6htXs=
Subject key identifier: 66:1E:C8:2B:B5:11:C9:EC:80:31:65:F1:D6:90:9E:10:F1:82:D6:D1
Certificate issuer: /CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Certificate serial: 1AFD4F77
Authority key identifier: 4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/Zh7IK7URyeyAMWXx1pCeEPGC1tE.roa
Signing time: Sat 01 Jan 2022 09:54:52 +0000
ROA not before: Sat 01 Jan 2022 09:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1136
IP address blocks: 185.36.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452808567 (0x1afd4f77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Validity
Not Before: Jan 1 09:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=661ec82bb511c9ec803165f1d6909e10f182d6d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:62:62:f4:4e:c6:b7:7e:dc:b3:cb:ef:58:
53:14:b8:c1:09:07:1c:ea:c8:82:2e:0f:f7:d5:c0:
1c:64:7c:8d:76:76:f6:08:bc:0e:c0:77:d7:85:df:
e1:8a:aa:11:b5:be:2e:80:f2:93:d5:3a:fe:a0:0b:
1d:1f:7b:56:8d:01:ca:15:bb:82:41:60:51:15:4b:
22:09:5e:6b:f5:a3:dd:6e:17:96:b2:f2:30:e4:d7:
16:cf:2a:7e:8c:17:41:9e:6d:7a:0e:ec:44:0b:3d:
9b:1c:d8:44:b2:82:46:df:3c:ed:23:e2:06:92:24:
49:6f:50:36:f7:1e:77:30:bc:8a:04:cf:a4:92:62:
76:58:0d:59:01:8b:36:86:3a:7a:9c:3d:b7:91:3f:
ae:c3:d3:9a:99:57:37:af:48:bd:ce:2f:a7:cd:6b:
02:c5:77:30:27:51:d1:24:88:26:bb:b0:7b:12:95:
1e:48:0b:48:3f:9b:3d:b3:22:b9:4e:9b:92:87:e7:
0d:34:e4:8e:29:1f:8c:ed:5e:8d:d9:f7:a8:e5:67:
66:a3:cc:09:da:3b:b4:ca:7f:c2:8c:c9:05:fb:c8:
64:4b:c0:c7:2f:5f:a0:4e:60:3d:4d:73:d3:ad:ae:
6b:7e:05:ce:34:a3:a0:a9:83:20:18:5f:90:0b:38:
52:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1E:C8:2B:B5:11:C9:EC:80:31:65:F1:D6:90:9E:10:F1:82:D6:D1
X509v3 Authority Key Identifier:
keyid:4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/Zh7IK7URyeyAMWXx1pCeEPGC1tE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/TEA7xgtKE8Pao0EaySPGNy1CPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.40.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:05:cf:75:ae:a3:4e:d5:34:7a:ea:96:e8:ac:d0:08:2d:2a:
f6:47:d6:14:ac:71:a8:f2:76:86:89:29:e8:b8:cf:d2:4b:19:
7f:96:c8:ae:0d:65:5a:0a:23:f6:ea:79:33:91:e3:27:81:35:
3f:84:3a:cc:97:9c:8a:72:35:fd:4a:de:c1:7c:9e:6d:a4:1c:
57:2d:90:6e:88:fa:ba:e8:73:97:39:84:a4:33:84:3e:f3:b5:
3e:0b:44:30:22:31:40:1f:27:64:a5:c3:9b:dc:9a:37:27:41:
96:78:31:66:b7:c2:03:84:a2:c7:d8:55:a0:63:31:57:ba:c4:
c2:30:ff:e2:a2:43:b2:e1:70:2e:f9:b1:c3:8d:28:b3:d4:de:
da:26:f6:62:d2:eb:c7:ec:ce:54:71:98:4a:25:3e:ea:49:4f:
21:6e:b0:ed:69:fc:f1:27:2e:37:1d:6c:f9:3e:c8:a1:0a:7c:
1d:eb:bc:1b:69:0b:6e:97:f6:85:b0:d9:fe:67:48:6a:d0:96:
33:13:06:76:93:49:6c:17:a4:d8:b5:1e:0e:0a:3b:56:e8:12:
a6:79:cb:3f:40:24:31:1d:9a:05:f6:69:34:14:88:52:81:71:
14:4c:e4:64:34:43:9b:a7:a3:18:25:ee:02:b3:8c:88:c3:e5:
9b:97:61:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:55 2024 by rpki-client on console-ams.rpki-client.org