Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/ZWiEhrJ8MdCfh1kTDSt2D4Y-D3s.roa
File: ZWiEhrJ8MdCfh1kTDSt2D4Y-D3s.roa (raw, json)
Hash identifier: Jp8wMuEGqy7hUhC5TAg5QTC7VRz1e/HTZkKFTw3eoeI=
Subject key identifier: 65:68:84:86:B2:7C:31:D0:9F:87:59:13:0D:2B:76:0F:86:3E:0F:7B
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 06E309B3
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/ZWiEhrJ8MdCfh1kTDSt2D4Y-D3s.roa
Signing time: Sat 01 Jan 2022 09:01:21 +0000
ROA not before: Sat 01 Jan 2022 09:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49685
IP address blocks: 194.59.136.0/24 maxlen: 24
194.59.138.0/24 maxlen: 24
2a07:cb80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115542451 (0x6e309b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Jan 1 09:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65688486b27c31d09f8759130d2b760f863e0f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a6:48:11:1a:6c:70:ab:39:7a:7a:da:fb:b6:
8e:8f:d9:57:a3:a8:e1:4f:54:19:95:d8:b5:be:87:
f5:16:c0:1b:a6:cc:b6:98:b5:e5:5c:1e:da:80:17:
a7:a8:86:36:29:53:1a:d8:58:79:ae:d9:1d:a2:99:
fe:8c:f0:f1:71:cf:19:77:ac:2f:eb:d6:e8:e2:0a:
9f:1e:21:03:3c:41:9d:0f:6d:df:fc:25:49:f5:56:
35:f1:7e:b4:f3:57:9e:1f:57:cd:86:14:ed:3a:52:
d0:b0:0a:6a:17:93:01:29:ae:18:b1:99:4b:e0:1b:
52:c6:b8:87:f7:67:48:3f:9f:5b:88:ae:30:70:a3:
c9:f7:0b:32:59:b5:4e:8c:6c:08:23:09:18:2f:1a:
8a:b9:21:98:e0:37:36:8f:5a:97:b3:0c:fc:5a:25:
cf:e2:97:1f:af:b0:1b:bc:e3:34:0f:a3:dd:cc:27:
14:82:3d:3c:dd:49:ec:95:22:9b:e1:3c:e7:35:91:
fa:19:15:6c:b1:49:f5:41:40:73:6b:af:e5:12:cc:
8e:f3:55:23:45:8f:07:11:0c:42:ef:59:24:5d:3e:
a0:36:5c:3c:d8:f3:b4:6c:fe:34:21:95:c4:19:69:
6b:33:16:95:ac:6f:05:08:ff:ab:b3:c4:47:af:91:
81:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:68:84:86:B2:7C:31:D0:9F:87:59:13:0D:2B:76:0F:86:3E:0F:7B
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/ZWiEhrJ8MdCfh1kTDSt2D4Y-D3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.136.0/24
194.59.138.0/24
IPv6:
2a07:cb80::/32
Signature Algorithm: sha256WithRSAEncryption
1c:eb:60:b9:b1:c2:e6:bf:ad:c0:34:9f:ef:4b:6a:de:4e:ad:
f0:8a:17:92:3d:dc:af:ff:d9:26:74:2f:d7:a5:70:bb:bf:56:
9c:bc:79:fc:37:cd:e9:36:14:75:e8:8c:34:b1:9c:3d:97:dc:
87:58:76:a4:b7:a0:f3:cf:cd:49:c3:b8:5e:85:d4:15:fd:a4:
43:d0:20:3b:f6:78:96:b4:9b:74:4c:2c:60:ff:ef:ae:e6:17:
29:a4:84:0a:77:b2:e9:86:c9:89:5f:73:06:cc:3f:29:85:fe:
a8:90:84:07:ea:cb:a9:8e:48:28:84:2f:ba:2a:ce:32:88:a8:
f9:a0:9c:07:1c:70:47:0b:8d:cb:6e:8f:99:4f:46:5c:65:42:
3b:5e:c6:4d:af:eb:0e:fb:05:47:25:af:5a:fa:67:dc:f1:2f:
13:67:38:42:50:1f:2d:ec:d2:5a:3d:f9:10:6a:eb:d6:4a:02:
f2:d6:cd:f8:dd:0d:40:a7:6a:28:e0:be:7b:da:2c:79:0d:f1:
8f:62:0a:2f:b5:f3:63:2e:c2:62:76:27:cd:77:fb:7b:9c:44:
6b:1b:af:36:3f:65:82:a3:ca:17:1d:55:81:cc:93:1a:f9:da:
35:f2:f7:fd:79:f9:c8:bc:74:eb:d2:72:89:69:b5:57:4b:fd:
32:c6:18:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:23 2024 by rpki-client on console-ams.rpki-client.org