Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3ZAuA-2tsy9SyFIsuA3ZOF6JwnI.roa
File: 3ZAuA-2tsy9SyFIsuA3ZOF6JwnI.roa (raw, json)
Hash identifier: 5GQfrBNqH9DwjS7OJWQ3mF06NejNnIcMle7t73wZ/NI=
Subject key identifier: DD:90:2E:03:ED:AD:B3:2F:52:C8:52:2C:B8:0D:D9:38:5E:89:C2:72
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01824ADB02CEF662C18FB3F7E3BD460EFABD
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3ZAuA-2tsy9SyFIsuA3ZOF6JwnI.roa
Signing time: Fri 29 Jul 2022 16:47:23 +0000
ROA not before: Fri 29 Jul 2022 16:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60800
IP address blocks: 188.255.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:db:02:ce:f6:62:c1:8f:b3:f7:e3:bd:46:0e:fa:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jul 29 16:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd902e03edadb32f52c8522cb80dd9385e89c272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:99:0e:11:de:5a:2d:ec:5b:4d:6e:1c:4a:cb:
86:e7:d7:da:f7:ca:3c:cf:18:7a:fd:1f:75:98:81:
a1:8c:b3:88:23:30:53:e6:5c:12:27:80:6d:85:ba:
ec:24:ea:13:0e:2b:00:39:a8:c6:2b:cb:08:35:7c:
09:dc:a2:d3:29:e4:ea:ff:7b:1a:42:f3:1f:ff:0a:
34:43:61:87:fd:2c:82:7f:65:15:e9:cb:1d:92:15:
1c:23:ea:37:81:c5:40:9a:3d:c5:72:72:ae:1c:7f:
d6:5e:bc:b3:d7:d7:8e:28:51:80:17:38:87:1d:d2:
9f:24:9c:da:45:dd:74:af:dc:0d:df:84:b0:2d:33:
0f:8b:99:b9:b7:7c:8b:9e:df:ee:3f:47:60:21:69:
cb:3b:b1:49:5f:e2:69:39:9c:2b:12:bd:19:f5:f4:
6a:28:3e:6e:ef:f3:95:20:d1:fa:c5:25:35:68:6f:
de:cd:c7:81:bd:76:24:4c:e4:fc:df:53:9e:f8:b5:
f4:f6:3d:d4:05:38:b4:81:60:14:10:0d:24:2b:5a:
9d:11:fa:30:51:b5:42:6a:81:1e:d0:81:52:13:8e:
f2:85:99:87:d5:42:7a:d2:37:dd:64:86:00:f8:f4:
70:e7:4b:f0:33:57:9c:59:c7:2c:25:c8:c3:a5:42:
a2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:90:2E:03:ED:AD:B3:2F:52:C8:52:2C:B8:0D:D9:38:5E:89:C2:72
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/3ZAuA-2tsy9SyFIsuA3ZOF6JwnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.128.0/24
Signature Algorithm: sha256WithRSAEncryption
39:e4:29:46:cf:d1:b6:3c:b1:72:97:60:97:df:09:31:b5:54:
78:8d:1c:cc:af:88:26:81:b4:8d:60:16:3e:dc:d7:ce:dc:e0:
4c:79:31:8e:fc:f4:74:9c:92:a1:2f:48:83:61:d8:d1:47:05:
ae:86:d2:7f:53:07:e2:e1:45:57:1f:ab:ce:83:31:fe:51:53:
2a:19:40:a1:17:24:68:72:5c:7a:e6:65:6a:ff:99:78:3c:30:
79:6d:04:31:43:7f:d4:55:67:6f:53:07:ab:46:00:78:b2:97:
57:25:27:c7:23:81:26:88:8f:69:b1:fe:bf:0d:3c:3f:3f:c7:
2b:0b:6a:0e:f5:b7:75:5a:77:9d:4c:0f:c8:4d:37:b7:bc:c2:
4a:07:29:50:60:b9:c2:5e:58:81:d5:18:5d:e8:02:4b:88:27:
3d:96:13:e0:59:2f:6b:7d:9c:5f:65:e6:a7:6a:73:d4:d5:bc:
88:bd:80:11:2d:20:af:7b:b2:d9:6e:d6:ed:5f:5f:72:bb:04:
33:71:06:03:38:cf:49:3b:8e:6a:0e:31:0b:9a:17:4e:e9:60:
18:9b:27:2c:02:e8:11:6a:04:56:34:b2:03:a9:ee:06:12:44:
7f:df:a7:a1:56:8e:ca:24:25:53:ff:92:a9:5c:02:2d:6a:5d:
65:bd:ad:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org