Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/3zaPQg_Xqsc8sLv8czzr56mPTAc.roa
File: 3zaPQg_Xqsc8sLv8czzr56mPTAc.roa (raw, json)
Hash identifier: 0v9OUlnLovQTVaAbwzCtVD850I/CiyPbov2afM1gmWo=
Subject key identifier: DF:36:8F:42:0F:D7:AA:C7:3C:B0:BB:FC:73:3C:EB:E7:A9:8F:4C:07
Certificate issuer: /CN=a98cfb9b5f445fd2f6ccfa179c37c53449b2af06
Certificate serial: 080A5693
Authority key identifier: A9:8C:FB:9B:5F:44:5F:D2:F6:CC:FA:17:9C:37:C5:34:49:B2:AF:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYz7m19EX9L2zPoXnDfFNEmyrwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/3zaPQg_Xqsc8sLv8czzr56mPTAc.roa
Signing time: Sat 01 Jan 2022 15:00:28 +0000
ROA not before: Sat 01 Jan 2022 15:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210498
IP address blocks: 185.140.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134895251 (0x80a5693)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98cfb9b5f445fd2f6ccfa179c37c53449b2af06
Validity
Not Before: Jan 1 15:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df368f420fd7aac73cb0bbfc733cebe7a98f4c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:98:70:3c:ff:79:d5:5f:f2:d6:b0:ee:59:be:
57:19:03:a4:6b:ec:a4:86:64:ef:b4:c6:d0:ec:09:
36:e9:ce:c4:8f:66:11:8c:a4:fb:df:2d:3d:32:98:
51:5a:23:95:7b:25:9e:05:0b:d6:5d:49:8c:7a:d2:
fe:de:c3:50:a5:d4:ab:b1:e8:f0:d5:90:30:0b:74:
aa:98:01:d9:2c:fc:3b:02:31:84:dd:fa:5a:6d:97:
24:dd:10:ae:96:69:ca:4d:25:28:2f:68:79:d2:52:
2f:32:2c:8f:50:9f:be:a6:f4:da:49:b0:77:7e:cd:
cb:e8:98:9d:0c:f3:89:9c:78:c2:ee:00:27:d4:d2:
ec:cd:1d:38:8f:49:38:71:58:e1:4f:be:1c:ca:cd:
c7:ef:b6:f6:1d:65:91:4d:bd:17:bb:e0:3e:10:87:
9c:67:36:8e:86:12:b3:e3:4f:50:67:89:94:30:e5:
2f:2f:ef:2c:34:19:31:07:0d:07:66:00:bc:f8:95:
e1:fc:ed:72:e8:69:34:62:d0:25:b0:1a:95:18:fb:
93:14:c5:f1:47:a3:6b:28:f8:92:95:e1:e0:68:1b:
c6:7a:e5:01:83:ec:08:ce:3e:3e:47:7c:f3:a5:f0:
4f:a9:80:a5:75:ab:c0:4f:17:af:75:4e:7f:fa:30:
3a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:36:8F:42:0F:D7:AA:C7:3C:B0:BB:FC:73:3C:EB:E7:A9:8F:4C:07
X509v3 Authority Key Identifier:
keyid:A9:8C:FB:9B:5F:44:5F:D2:F6:CC:FA:17:9C:37:C5:34:49:B2:AF:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYz7m19EX9L2zPoXnDfFNEmyrwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/3zaPQg_Xqsc8sLv8czzr56mPTAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/qYz7m19EX9L2zPoXnDfFNEmyrwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.239.0/24
Signature Algorithm: sha256WithRSAEncryption
54:81:f4:79:c1:c9:9b:28:22:86:7e:70:89:0e:6c:7e:67:3a:
14:e9:cb:09:1c:c1:eb:7b:60:de:21:40:91:2d:ce:7b:40:3d:
dd:94:4a:e4:2c:32:26:4c:35:3e:ae:9a:68:65:f9:bc:84:a2:
b0:63:1a:4c:a8:42:f7:e3:8f:20:2d:24:d5:34:12:17:dc:a3:
0e:e5:a4:51:06:57:fd:f1:69:e9:72:91:ab:37:78:0c:56:51:
f0:25:65:c8:cb:5f:f8:fe:4e:93:d1:c7:a1:ed:e6:94:a5:ed:
1a:65:f2:6c:8e:8e:27:9f:7a:c3:a1:0b:35:f3:b1:21:74:a3:
55:6d:13:dc:59:43:56:99:94:10:7f:6d:b4:5f:4a:d1:5f:01:
06:2b:1a:71:c2:ea:fc:5b:0f:1e:7c:13:24:2c:cb:6c:a9:10:
61:ad:64:cd:a3:a5:4a:71:3a:4a:64:9e:60:63:8a:28:fa:d6:
98:51:4d:e0:91:c6:8e:72:4e:79:7a:42:3b:fa:88:d1:54:6d:
b0:79:7b:63:d7:98:78:35:20:01:36:44:77:4d:3e:d4:f6:2c:
08:e0:36:a4:01:1d:57:80:27:88:28:0d:bf:04:d4:49:78:8e:
90:92:a4:7c:84:11:fc:b2:6f:2f:14:e4:f6:6b:02:14:9f:8b:
dc:fa:04:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:07 2024 by rpki-client on console-ams.rpki-client.org