Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/z1luxFKLyZPXy0FLqJDe4_erH8k.roa
File: z1luxFKLyZPXy0FLqJDe4_erH8k.roa (raw, json)
Hash identifier: 7kPo6QGwkw8k/TbQC5tt+CTgnqZY69nuV6vA7aawNYw=
Subject key identifier: CF:59:6E:C4:52:8B:C9:93:D7:CB:41:4B:A8:90:DE:E3:F7:AB:1F:C9
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0184F84E20D12D4E07FCF3394A4EDD59BFD9
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/z1luxFKLyZPXy0FLqJDe4_erH8k.roa
Signing time: Fri 09 Dec 2022 19:13:00 +0000
ROA not before: Fri 09 Dec 2022 19:13:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 188.255.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f8:4e:20:d1:2d:4e:07:fc:f3:39:4a:4e:dd:59:bf:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Dec 9 19:13:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf596ec4528bc993d7cb414ba890dee3f7ab1fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:be:55:22:2d:6c:af:10:69:ce:55:67:ee:56:
00:46:3f:bf:da:03:48:4f:e0:ca:26:52:d4:9d:d9:
00:64:0a:b1:be:e9:8a:1f:6c:5a:0a:01:c7:8d:99:
f5:b1:6c:a8:91:e2:45:3c:2a:59:e3:8d:3c:2a:66:
49:07:7a:d8:75:42:c2:42:fa:2e:dc:dd:d1:11:d7:
02:a0:65:de:99:e7:b5:9d:5a:b2:69:e1:ed:d3:c7:
aa:b9:78:0d:98:27:6c:1e:14:3f:0d:dd:9e:ef:d6:
c4:13:a7:f1:2a:1a:2f:31:fe:9a:4f:10:cb:44:7b:
47:93:6d:75:9e:11:e0:a6:14:1e:65:d1:c3:0f:69:
32:5a:90:b8:08:b3:b3:af:6e:3e:df:c5:a9:e4:c8:
a9:53:14:65:78:15:5d:0c:1a:b0:32:9c:9c:da:36:
49:bd:f7:8d:18:5b:01:13:8c:2f:d7:89:24:33:59:
fc:5b:71:d9:30:6f:bb:5e:d8:9e:41:6c:31:5d:59:
22:50:4e:22:2e:0e:a6:2f:2f:86:76:1d:fd:64:89:
af:93:09:2a:26:ca:be:f7:43:d8:cd:01:21:96:1f:
3d:8c:40:07:33:a6:c1:7e:76:88:1f:66:15:da:23:
bf:9b:67:70:90:ee:34:e6:87:4e:eb:ed:28:71:c6:
2a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:59:6E:C4:52:8B:C9:93:D7:CB:41:4B:A8:90:DE:E3:F7:AB:1F:C9
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/z1luxFKLyZPXy0FLqJDe4_erH8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.140.0/24
Signature Algorithm: sha256WithRSAEncryption
15:fc:83:ce:10:b2:e8:52:2e:8b:54:6f:19:01:d1:67:e5:72:
62:54:c6:0f:8c:1a:ba:97:8d:52:f5:a0:33:c8:af:25:a4:ac:
b0:97:af:99:b4:73:87:9e:e3:b8:fb:50:39:33:a2:db:08:9c:
9b:84:c1:03:9b:8c:c9:18:06:dd:a5:84:eb:f2:da:db:a9:97:
e4:2f:e4:99:2a:63:f3:91:f2:88:da:33:f1:fe:f2:6a:10:aa:
b0:b2:06:33:5b:77:90:e0:94:b3:33:69:ce:5a:83:29:44:92:
cf:97:c6:97:56:58:e6:09:e4:0f:bd:ab:b7:d7:f2:1e:f1:05:
35:ca:8f:38:0e:5a:84:cf:13:2e:a6:15:99:69:f8:e2:97:fe:
6d:d8:04:5c:1f:4a:c5:25:19:c6:38:e5:2a:36:7c:32:df:c9:
24:3c:b4:d5:dd:2e:48:5b:6c:fe:ad:c4:fc:ad:0d:84:26:7d:
12:11:29:5b:1c:d6:25:a6:50:cf:9c:d8:17:03:b7:6c:31:1a:
cf:8a:d8:19:f7:e5:fa:37:c7:bf:a4:b1:f6:34:6d:0a:3b:6e:
4e:a4:91:75:72:1b:65:e1:8a:41:30:de:fb:e4:e9:8c:5d:8d:
89:34:66:3b:c7:51:ad:b6:92:20:45:e3:5d:96:e2:e3:5d:26:
d3:3c:3f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:05 2024 by rpki-client on console-ams.rpki-client.org