Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/ZAYSJeFNdFY2AEgb4ERLBWR6MAY.roa
File: ZAYSJeFNdFY2AEgb4ERLBWR6MAY.roa (raw, json)
Hash identifier: hj4GZCdXafGdzfYhOH80oVXFmgR2/o5oyn6tEaSQVDk=
Subject key identifier: 64:06:12:25:E1:4D:74:56:36:00:48:1B:E0:44:4B:05:64:7A:30:06
Certificate issuer: /CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Certificate serial: 034F9A87
Authority key identifier: AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/ZAYSJeFNdFY2AEgb4ERLBWR6MAY.roa
Signing time: Sat 01 Jan 2022 15:05:09 +0000
ROA not before: Sat 01 Jan 2022 15:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207876
IP address blocks: 192.109.210.0/24 maxlen: 24
192.109.219.0/24 maxlen: 24
192.109.217.0/24 maxlen: 24
192.109.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55548551 (0x34f9a87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Validity
Not Before: Jan 1 15:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64061225e14d74563600481be0444b05647a3006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fe:90:b3:82:4f:e3:ea:c2:40:b9:51:3a:97:
43:66:74:41:a8:23:9e:4d:cc:57:f0:c7:a8:ad:5e:
9d:12:f7:fc:c5:9c:b4:b6:2b:65:a7:c1:e6:30:1a:
73:63:8c:79:99:b7:e2:40:39:6a:c8:bf:92:a4:c0:
1f:0b:3b:6d:54:2c:50:d2:d5:88:c7:40:4a:2d:d6:
2e:2a:f2:9c:01:24:53:c9:da:58:d7:7f:99:59:4b:
d9:0c:80:37:e2:54:98:ab:df:58:d0:07:29:80:49:
b4:62:d8:84:fe:b0:5b:da:b4:6b:2b:3d:26:a6:a7:
9c:52:ac:cd:94:7e:32:55:b9:68:3d:67:d5:72:5f:
ef:0b:a7:df:17:bf:8c:86:eb:2f:20:fc:0e:29:a0:
f3:28:14:ef:70:9d:a3:f8:ab:79:ce:46:ca:3c:f8:
c2:02:71:88:8e:3d:66:db:45:b7:a4:6f:99:14:c0:
01:92:a8:77:86:f5:59:04:2c:9c:66:b5:6d:06:f4:
27:1f:94:aa:45:08:0b:de:f4:d3:cb:43:a2:9b:a8:
43:86:96:92:a9:e7:0c:ab:56:23:cc:05:3e:8d:e8:
3a:ef:fb:8a:d2:65:40:1b:12:6e:2b:42:96:d5:1a:
95:27:31:07:a2:26:d2:11:ef:57:8a:36:02:70:87:
f4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:06:12:25:E1:4D:74:56:36:00:48:1B:E0:44:4B:05:64:7A:30:06
X509v3 Authority Key Identifier:
keyid:AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/ZAYSJeFNdFY2AEgb4ERLBWR6MAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.210.0/24
192.109.217.0/24
192.109.219.0-192.109.220.255
Signature Algorithm: sha256WithRSAEncryption
0d:37:31:f2:31:8f:98:0f:6f:7b:a1:10:cc:92:23:3c:68:a8:
18:53:55:f6:40:63:a8:ab:2c:27:3d:de:d8:d3:b0:9f:88:8d:
c3:bb:18:e0:b3:0d:ba:7c:c3:40:28:71:b7:df:07:ba:d6:17:
0d:bb:1b:0c:70:1a:8d:ee:51:05:c5:df:bd:b7:54:07:a9:a9:
28:53:f4:82:fd:20:98:15:34:36:4c:3b:7c:f3:d4:da:f0:fd:
c1:ac:9c:bd:c7:f3:a6:99:0e:3d:20:14:84:c9:77:7a:48:9c:
97:28:23:ba:ce:c8:e5:da:49:ab:9e:ab:e1:9b:67:83:25:d6:
4a:ee:1e:62:fb:8f:0a:61:a8:56:92:4d:12:f3:35:8f:31:2d:
6f:a2:f6:47:0e:c6:d1:bb:b7:0a:1b:c7:e7:55:57:a6:db:7f:
59:0d:4f:43:73:1a:d1:87:4f:26:96:63:96:f6:54:ef:05:f0:
30:b6:cd:81:43:e5:c0:ec:ac:25:fa:12:88:16:0d:60:4c:9e:
4c:2f:52:c5:0e:31:77:58:eb:bf:ed:f4:9b:e4:14:7a:75:c4:
34:6e:97:5c:51:c4:8c:42:18:69:c8:17:e3:25:4a:1a:6f:0a:
ee:9e:ef:06:1f:0d:82:98:cc:8c:07:45:35:d7:fc:e3:c3:bb:
4f:45:bb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:33 2024 by rpki-client on console-fra.rpki-client.org