Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZNoVPaTrdxyddqTQtErVg5g8gGQ.roa
File: ZNoVPaTrdxyddqTQtErVg5g8gGQ.roa (raw, json)
Hash identifier: 4fiuklEbEy9ghH6XP9zA3j2J0Mkbb61a2cYulNZqFfs=
Subject key identifier: 64:DA:15:3D:A4:EB:77:1C:9D:76:A4:D0:B4:4A:D5:83:98:3C:80:64
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03D50014
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZNoVPaTrdxyddqTQtErVg5g8gGQ.roa
Signing time: Sat 01 Jan 2022 13:04:02 +0000
ROA not before: Sat 01 Jan 2022 13:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50564
IP address blocks: 185.229.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64290836 (0x3d50014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64da153da4eb771c9d76a4d0b44ad583983c8064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:55:ad:fd:e4:45:0c:71:8f:da:74:38:cc:c6:
2a:a3:64:3e:eb:84:fe:5c:5c:20:f0:94:9b:1d:2e:
16:e1:5f:fd:21:c7:a4:f8:05:05:23:84:3d:a1:52:
0d:80:80:45:49:cc:68:1c:e6:fc:31:8d:bc:52:cf:
75:f2:40:4f:36:92:b7:83:81:9a:65:32:38:8c:93:
01:cc:67:c2:b4:8f:ce:ae:5d:40:18:ac:e4:1f:13:
4d:88:a4:11:b1:c2:00:f1:1d:10:b4:3a:75:fc:bc:
4a:1d:d9:b1:e3:6a:f8:84:89:f2:22:9f:2e:1e:7c:
ec:23:5b:fa:99:d5:88:c0:c2:95:dd:86:df:fd:02:
91:5f:e6:c9:3c:2b:77:52:97:b3:06:d9:69:0a:e3:
6c:d0:3f:4f:8c:cb:86:bf:0d:66:15:ac:df:ab:7e:
1c:34:4f:47:a7:fd:3c:35:d8:2f:8e:15:50:37:63:
66:7d:9c:97:bc:a2:b3:35:ee:ad:b1:ee:67:f1:d3:
0e:ad:25:6d:ee:f9:44:96:c0:db:69:27:ea:ca:b5:
cf:97:74:7c:6c:96:f0:0b:ff:2d:f9:a8:39:f1:65:
ac:ef:b4:94:7b:4d:27:79:b5:ee:e4:ff:6f:43:de:
de:fe:70:bd:d3:90:e3:34:bd:2a:4c:2d:c7:98:51:
74:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DA:15:3D:A4:EB:77:1C:9D:76:A4:D0:B4:4A:D5:83:98:3C:80:64
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZNoVPaTrdxyddqTQtErVg5g8gGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.212.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:36:42:d0:99:0f:c9:fc:83:00:02:15:f4:4f:17:4f:b3:d3:
72:b1:64:dd:28:56:ff:98:cb:5a:3c:2a:c4:d7:52:8e:66:61:
39:dd:c4:6e:98:ba:c6:ad:c8:6f:99:d9:af:7c:69:78:d2:e8:
87:31:f0:39:19:16:ba:e0:c4:35:3b:0c:b2:7e:ee:cf:59:48:
2d:4d:a0:7d:c9:e4:ec:f8:27:72:04:2b:1b:95:7e:5c:b1:d6:
4d:98:ba:20:63:25:06:e3:1e:58:1e:92:68:96:04:15:89:e1:
04:be:f5:95:e8:83:dd:f4:ab:9e:ff:bf:01:11:2a:1c:b4:86:
fc:e1:a5:87:3e:4a:8c:02:60:ea:a5:98:98:37:7e:d4:17:b0:
3f:98:ef:b8:2d:a0:bb:27:cc:b2:8f:8d:e1:b5:f9:87:cc:41:
35:26:53:d0:b7:cb:34:af:45:74:fe:cb:25:44:1a:43:5d:1e:
03:fb:04:0e:f1:7c:b6:d5:16:ba:ae:3a:69:b8:91:7f:73:b2:
04:c9:39:e7:b3:69:1f:3c:e3:68:74:5e:f9:77:2c:28:4d:49:
dc:78:4c:b2:7e:52:81:6d:d2:10:13:56:75:35:4c:21:3f:b6:
a9:3b:8d:2d:ed:ee:7f:ca:16:97:96:5c:1c:ca:b9:58:94:d4:
be:d3:dd:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:56 2024 by rpki-client on console-fra.rpki-client.org