Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/ZJ09Q40Z2DHnGjRIJqHDmBwggw4.roa
File: ZJ09Q40Z2DHnGjRIJqHDmBwggw4.roa (raw, json)
Hash identifier: 65Yz93hUft3sfeLihm9pKB82YYfdnfvZLvrfAiPFjtg=
Subject key identifier: 64:9D:3D:43:8D:19:D8:31:E7:1A:34:48:26:A1:C3:98:1C:20:83:0E
Certificate issuer: /CN=ab87734368d88315f11b329386cc5ef2bb875858
Certificate serial: 40EFB8F5
Authority key identifier: AB:87:73:43:68:D8:83:15:F1:1B:32:93:86:CC:5E:F2:BB:87:58:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4dzQ2jYgxXxGzKThsxe8ruHWFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/ZJ09Q40Z2DHnGjRIJqHDmBwggw4.roa
Signing time: Sat 01 Jan 2022 14:58:33 +0000
ROA not before: Sat 01 Jan 2022 14:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198167
IP address blocks: 185.108.30.0/24 maxlen: 24
185.108.29.0/24 maxlen: 24
185.108.28.0/24 maxlen: 24
185.108.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1089452277 (0x40efb8f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab87734368d88315f11b329386cc5ef2bb875858
Validity
Not Before: Jan 1 14:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=649d3d438d19d831e71a344826a1c3981c20830e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2b:65:ce:32:9e:d4:94:1c:f9:5e:52:50:99:
42:24:98:2b:14:af:7a:a7:96:8e:01:8c:f8:be:b6:
02:d8:88:aa:8f:e9:fe:7f:8b:fd:13:79:d2:a7:d1:
17:c4:4e:05:9c:1f:d2:d8:3d:e9:81:23:68:dd:67:
5e:02:ba:bf:20:de:0b:15:09:aa:d6:91:ae:17:32:
f4:69:e9:f8:d2:f5:cb:c7:fb:93:5a:78:79:f1:91:
27:d8:3b:d3:29:53:c4:78:c2:2f:e8:f0:e9:60:a2:
5c:2b:6f:30:eb:80:f1:e4:a3:53:a6:09:4d:a1:b8:
74:ad:3b:1f:c4:ea:18:df:e7:d5:f9:40:b3:cd:f1:
dc:6c:60:f6:65:71:ff:75:b3:4d:71:b8:57:40:ee:
7e:d2:3e:41:1f:4d:d3:2d:65:58:0f:78:b3:17:fb:
25:55:56:d3:07:22:29:5d:21:be:48:c3:96:b5:5f:
64:7c:ca:7f:d9:15:ca:05:bc:59:e0:e0:e0:c4:93:
73:a2:94:91:71:7a:0c:ef:33:76:18:6f:fe:d8:12:
46:ff:97:0c:3b:c2:30:44:ac:dc:e1:5e:83:82:5b:
29:98:fd:ee:d5:04:cd:ac:13:99:cc:39:ed:fb:1b:
c1:fb:7f:39:50:76:6f:2e:bf:e6:dc:50:55:f2:e7:
2d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9D:3D:43:8D:19:D8:31:E7:1A:34:48:26:A1:C3:98:1C:20:83:0E
X509v3 Authority Key Identifier:
keyid:AB:87:73:43:68:D8:83:15:F1:1B:32:93:86:CC:5E:F2:BB:87:58:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4dzQ2jYgxXxGzKThsxe8ruHWFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/ZJ09Q40Z2DHnGjRIJqHDmBwggw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/q4dzQ2jYgxXxGzKThsxe8ruHWFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.28.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:ea:93:16:ca:e0:07:fe:52:fd:8a:d0:7d:0c:52:ee:d6:18:
43:9d:8b:56:cc:1c:99:0c:11:df:99:af:98:64:7f:7f:9a:d7:
ac:23:72:96:a4:1b:1d:d0:a2:7a:89:d6:7e:da:b8:7c:7b:36:
0c:31:5d:d7:29:d2:af:f6:90:52:fb:87:0e:f6:9a:aa:47:2e:
af:1c:3f:4e:01:db:b1:7c:08:e0:d5:0d:88:b6:03:10:5d:99:
b2:49:22:35:cd:f1:90:d6:20:25:49:4f:88:c1:d3:82:77:4e:
49:fe:e4:82:9f:97:e4:1e:34:1e:83:c1:b0:3e:7b:97:0b:1e:
c0:55:e3:1a:a6:e1:63:a1:9b:dc:50:14:cd:17:dc:03:77:a6:
fc:1f:7e:65:28:b8:5d:76:89:f7:31:8e:d8:1c:cd:10:9e:f7:
d8:65:9a:a0:cf:e0:3e:3f:3f:03:b8:30:02:09:eb:60:2c:4b:
e4:ae:b2:f6:a0:0a:92:ee:5e:50:ef:af:0f:71:e3:b7:00:c6:
d6:04:f7:da:18:75:ca:2c:d5:0f:6c:bf:74:28:fa:2a:bf:d4:
04:c3:8c:f1:1a:74:d2:38:5a:3b:80:2b:81:e0:a2:5b:33:86:
be:fc:cc:09:ba:95:69:df:fe:dc:32:11:32:a0:2d:11:98:c3:
35:0f:f5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:43 2024 by rpki-client on console-fra.rpki-client.org