Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/zxoe2StucLCYPQNUrSsmNR9gggk.roa
File: zxoe2StucLCYPQNUrSsmNR9gggk.roa (raw, json)
Hash identifier: OqCtHjahAJSzqHMCYMa6vZMBAk3n7XeGAF2Hivwx3t4=
Subject key identifier: CF:1A:1E:D9:2B:6E:70:B0:98:3D:03:54:AD:2B:26:35:1F:60:82:09
Certificate issuer: /CN=fb02bac7b79a3109e9be3dfe4f06d585bb9f9051
Certificate serial: 03274DED
Authority key identifier: FB:02:BA:C7:B7:9A:31:09:E9:BE:3D:FE:4F:06:D5:85:BB:9F:90:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wK6x7eaMQnpvj3-TwbVhbufkFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/zxoe2StucLCYPQNUrSsmNR9gggk.roa
Signing time: Sat 01 Jan 2022 04:56:07 +0000
ROA not before: Sat 01 Jan 2022 04:56:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212321
IP address blocks: 185.217.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52907501 (0x3274ded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb02bac7b79a3109e9be3dfe4f06d585bb9f9051
Validity
Not Before: Jan 1 04:56:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf1a1ed92b6e70b0983d0354ad2b26351f608209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fd:21:fd:69:67:3b:65:78:7d:91:d9:bd:f2:
c3:9d:75:ca:60:26:f8:e6:db:c8:8f:55:1e:18:30:
62:4c:12:b2:22:df:99:9f:aa:68:0d:79:b4:0f:e5:
8d:0e:b6:0a:f1:ab:ce:d5:bd:49:d3:06:59:5f:0f:
c9:a1:bb:5f:eb:40:b3:86:87:f0:7b:34:01:df:2b:
68:65:d2:d3:4f:2f:42:cc:f8:b3:18:1e:25:23:e7:
81:68:da:c5:8b:ce:86:99:db:07:60:9a:34:cf:4e:
11:73:c8:5f:08:eb:16:d1:e1:0e:f6:41:d1:f8:f2:
59:73:1e:a5:5a:9e:44:b6:28:59:f6:c1:54:77:8f:
8b:bb:ea:80:4d:95:7f:84:5b:ca:2a:cb:41:fa:72:
60:18:35:44:58:d7:02:76:b4:27:db:24:64:66:22:
a3:c3:0b:b2:8d:ea:41:e8:d5:68:a6:24:86:d1:14:
be:f6:ce:a4:bd:d4:71:78:4a:28:99:ca:15:63:38:
db:97:76:dd:58:88:52:d6:34:44:eb:9f:e9:c5:b1:
9b:3a:b7:4c:9c:77:aa:63:cf:de:d6:23:05:33:00:
fe:ba:19:d3:bd:4c:9b:ce:d4:a0:b4:7e:45:97:d1:
3d:0f:ef:03:8e:b5:f5:dc:cc:c0:a1:27:ec:d7:f3:
a0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1A:1E:D9:2B:6E:70:B0:98:3D:03:54:AD:2B:26:35:1F:60:82:09
X509v3 Authority Key Identifier:
keyid:FB:02:BA:C7:B7:9A:31:09:E9:BE:3D:FE:4F:06:D5:85:BB:9F:90:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wK6x7eaMQnpvj3-TwbVhbufkFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/zxoe2StucLCYPQNUrSsmNR9gggk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/1-wK6x7eaMQnpvj3-TwbVhbufkFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.142.0/24
Signature Algorithm: sha256WithRSAEncryption
95:9f:a6:fe:9c:90:56:a2:99:b8:5e:26:a6:e9:7b:e1:19:04:
06:92:6a:7a:13:7d:d0:a8:bf:19:a4:5d:23:64:a5:80:52:eb:
48:64:b5:27:73:31:c9:77:a9:2a:c7:e0:eb:5b:f6:45:c1:94:
b9:16:86:36:aa:89:b8:7f:08:b9:9f:57:19:90:f0:a2:08:b1:
50:35:2b:30:65:d7:25:94:66:04:eb:74:fe:64:3b:c9:4c:3e:
6d:2d:e8:3b:f4:99:dd:74:a1:a1:22:c8:a6:53:38:05:fd:a5:
69:47:c2:79:e6:91:19:20:45:4f:00:15:f4:a9:84:28:e3:3d:
cf:7d:ea:92:38:d7:0b:0f:a1:81:4d:d6:9e:4e:f9:52:59:6a:
52:5f:fa:17:41:ff:ea:0d:ea:7b:be:14:6d:d5:94:54:e8:38:
83:00:77:d3:31:27:3c:66:b3:aa:a8:3b:ca:75:f9:28:a7:5d:
75:7d:bd:23:f3:d2:8c:ad:1d:93:54:ec:68:7e:53:f4:f3:c1:
46:8a:27:68:e2:85:fb:eb:25:02:cb:17:75:66:96:5b:78:ec:
70:75:45:38:b6:30:b4:b7:a8:ac:6d:de:f4:a2:f0:37:24:d2:
a0:7c:2e:d5:f1:29:3a:b1:b9:fc:94:12:80:ea:f1:fb:78:43:
13:64:bf:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-ams.rpki-client.org