Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/zFc1K7MQ_2KijXfpTGstYabf7ts.roa
File: zFc1K7MQ_2KijXfpTGstYabf7ts.roa (raw, json)
Hash identifier: dsyJqCTrbTsslPMRtJwa4VWpeGFGIcYjTxNWGkFh4DQ=
Subject key identifier: CC:57:35:2B:B3:10:FF:62:A2:8D:77:E9:4C:6B:2D:61:A6:DF:EE:DB
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38C777DB
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/zFc1K7MQ_2KijXfpTGstYabf7ts.roa
Signing time: Sat 01 Jan 2022 07:55:08 +0000
ROA not before: Sat 01 Jan 2022 07:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1128
IP address blocks: 145.94.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952596443 (0x38c777db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc57352bb310ff62a28d77e94c6b2d61a6dfeedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:24:f3:fa:b6:77:cc:cd:2f:c2:4b:2f:d5:19:
08:62:14:e2:6d:a7:29:7a:11:a3:31:89:d2:54:e0:
b7:42:2d:54:b7:05:fa:f5:1e:86:12:18:7e:52:90:
6b:e2:a3:88:55:f5:3a:5b:04:38:47:be:df:9e:77:
5f:3b:ba:3c:67:4d:c4:d5:f8:52:8f:e4:ed:a9:14:
8a:d1:88:6f:d3:fd:ad:be:51:8e:6a:4d:ee:f5:fd:
5a:1a:92:43:ba:03:17:05:49:99:42:25:69:07:1d:
06:22:46:4b:85:fc:a6:8e:61:f5:5f:e7:57:5c:23:
a7:d3:a8:c1:0c:fa:9a:a9:cc:27:32:62:4d:27:5c:
9b:f5:6b:35:76:b1:68:3f:d3:cf:42:bd:a6:6a:f7:
f9:db:45:54:4d:41:96:20:56:bc:6e:e5:37:cd:cb:
d1:98:68:4c:5b:cc:60:6a:86:70:00:c9:69:c3:43:
6f:75:2b:34:29:98:84:41:93:73:95:14:86:bb:78:
13:72:6e:e2:5e:ac:ca:7c:9f:1d:1e:bb:ad:d2:a7:
a6:68:38:f2:52:94:74:1e:d5:28:bf:62:d1:19:f0:
0c:6b:a7:13:b7:17:4b:56:97:97:9d:4e:61:87:b2:
8e:31:da:60:de:63:5e:5e:e4:87:20:fe:a9:45:0e:
8d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:35:2B:B3:10:FF:62:A2:8D:77:E9:4C:6B:2D:61:A6:DF:EE:DB
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/zFc1K7MQ_2KijXfpTGstYabf7ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.94.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:21:59:f5:bc:fe:45:1f:92:df:2a:fe:d7:c1:3b:8b:69:f7:
14:dd:52:e0:cf:46:70:12:9f:18:ac:a3:1a:2c:11:bd:53:ff:
f2:78:c5:55:88:ae:bb:57:d1:39:21:c0:e4:8f:90:b3:ba:62:
aa:bd:87:e4:d8:e8:aa:5d:b7:44:7c:93:bb:ce:9e:e5:70:e4:
85:8e:c8:8f:b8:28:b0:86:33:93:56:b3:de:a5:4e:c7:8f:d7:
9b:7b:ea:d7:19:67:fb:88:2c:70:f2:37:d6:69:07:db:10:58:
3b:c8:cb:05:b7:0b:05:c6:c5:d7:8c:4f:95:92:fb:fa:e8:6a:
f8:7a:c7:e4:f1:5c:d2:e0:74:4f:96:41:1d:11:17:65:49:b0:
88:52:f5:f5:97:0a:63:a1:72:13:00:7f:58:51:97:67:46:ef:
9e:f3:e3:40:6a:a7:7a:f0:d6:b2:b7:e3:cd:6f:53:17:8a:b2:
09:c6:74:4a:31:e1:66:ff:dc:00:a4:63:3f:7e:85:54:5e:d3:
96:e3:25:22:06:84:13:67:c4:9b:1d:65:a3:8a:c7:ff:d9:6c:
3f:4c:48:fd:55:b9:1e:c2:93:39:56:ea:5a:d9:09:2a:aa:2c:
3a:ed:87:9f:38:2b:15:32:97:61:d3:d3:62:83:f3:aa:8c:a9:
17:d5:5a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org