Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/_fzw4DffvGFrMebmb1Uf46YoHjk.roa
File: _fzw4DffvGFrMebmb1Uf46YoHjk.roa (raw, json)
Hash identifier: kx2Ja7wn/TBkoFfm2wUAnIse1XUX9UAh5mYEZ4Bv2IQ=
Subject key identifier: FD:FC:F0:E0:37:DF:BC:61:6B:31:E6:E6:6F:55:1F:E3:A6:28:1E:39
Certificate issuer: /CN=2906f026b1fe636c9a5da011dc7fd69c581d02b8
Certificate serial: 0664F347
Authority key identifier: 29:06:F0:26:B1:FE:63:6C:9A:5D:A0:11:DC:7F:D6:9C:58:1D:02:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQbwJrH-Y2yaXaAR3H_WnFgdArg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/_fzw4DffvGFrMebmb1Uf46YoHjk.roa
Signing time: Sat 01 Jan 2022 14:04:19 +0000
ROA not before: Sat 01 Jan 2022 14:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7262
IP address blocks: 185.152.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107279175 (0x664f347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2906f026b1fe636c9a5da011dc7fd69c581d02b8
Validity
Not Before: Jan 1 14:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdfcf0e037dfbc616b31e6e66f551fe3a6281e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d1:96:e0:3d:aa:b6:8c:59:c2:2d:99:d5:ee:
41:4b:bd:b7:39:2e:60:19:89:7d:af:d4:31:09:fb:
39:08:f0:df:d5:1b:13:ea:43:c7:59:88:58:7d:a5:
d7:4b:b0:d5:79:23:47:12:55:90:56:ec:ad:44:5a:
da:94:c7:1e:88:b6:fc:93:9b:c4:b5:d2:a0:28:e5:
12:24:a0:55:8a:e6:18:a7:94:2c:e3:8c:84:34:88:
d2:e3:19:d0:b0:a3:44:00:87:e1:35:18:6b:9f:c0:
8c:eb:1f:04:c6:3d:2f:dd:b3:4a:54:52:a4:b9:f8:
eb:25:01:a6:46:c8:a6:9b:b4:92:2d:f5:7e:19:e6:
81:89:00:8d:25:8e:de:27:5a:ae:1c:77:bc:79:fd:
18:30:e3:a5:ba:b6:44:91:4f:66:52:04:4b:4d:64:
09:dd:72:c0:26:19:8f:62:31:9e:9c:44:f8:12:5a:
57:f9:ac:d5:dd:68:e4:25:33:e2:42:13:9f:c8:dc:
20:81:45:de:c1:83:3a:ce:34:2b:ed:77:6d:1b:73:
86:cf:9b:8d:fe:3d:d8:dd:b2:6d:8a:1b:28:f9:a0:
2b:b7:be:cb:d2:a1:93:6f:36:d7:da:da:34:0a:0a:
a7:ee:dc:90:e8:64:18:2c:89:a9:5f:85:07:b2:15:
ec:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FC:F0:E0:37:DF:BC:61:6B:31:E6:E6:6F:55:1F:E3:A6:28:1E:39
X509v3 Authority Key Identifier:
keyid:29:06:F0:26:B1:FE:63:6C:9A:5D:A0:11:DC:7F:D6:9C:58:1D:02:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQbwJrH-Y2yaXaAR3H_WnFgdArg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/_fzw4DffvGFrMebmb1Uf46YoHjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/67a32d-7bf8-4b04-aa05-80a91be83e4b/1/KQbwJrH-Y2yaXaAR3H_WnFgdArg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.51.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:7a:ac:fd:73:e2:74:35:01:9b:2c:2b:fb:4d:21:00:00:64:
f1:97:a4:51:3b:ab:2f:80:30:6e:97:72:54:38:8f:04:88:12:
ee:d8:02:55:f3:72:48:19:ce:32:4b:2f:5e:50:88:2a:f8:12:
f2:df:36:38:f9:7b:8e:f3:9f:ce:8d:7f:3c:81:42:76:54:3c:
d8:1b:42:d3:a4:0f:e3:2e:8c:78:82:22:7f:78:79:00:e5:91:
ae:0b:d3:50:52:16:47:2b:d5:af:57:d9:13:76:31:c7:18:91:
51:3f:a8:07:b6:cd:60:b0:38:10:f1:39:2a:75:13:be:7d:d9:
93:13:64:29:65:f1:c1:cc:9d:24:6b:2e:4c:65:a7:ad:3e:a1:
22:2f:eb:c5:e9:ec:61:e2:42:7a:e7:08:82:a0:b5:55:30:98:
c3:3a:76:ea:2c:29:f4:a5:2e:b2:5d:3e:30:16:95:de:cf:6c:
eb:af:9a:33:23:04:d8:36:07:b2:70:a4:6a:c8:4b:f8:74:15:
0f:67:72:46:ae:a1:2f:d5:76:21:91:61:f6:f0:b3:93:6a:b5:
be:48:b3:d4:5d:1f:f4:e7:02:41:ee:96:ec:37:34:70:e7:07:
a7:3a:13:eb:56:b4:b6:ac:4e:c8:19:e4:7c:7b:a7:bd:a7:2b:
b7:da:27:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:14 2024 by rpki-client on console-fra.rpki-client.org