Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/8aTuZvITq6KulxHAkYHL8OOvuEQ.roa
File: 8aTuZvITq6KulxHAkYHL8OOvuEQ.roa (raw, json)
Hash identifier: WW31VaKsk1PuTCKvu8ORIux246VqSqh2gAzmhW/r6Gg=
Subject key identifier: F1:A4:EE:66:F2:13:AB:A2:AE:97:11:C0:91:81:CB:F0:E3:AF:B8:44
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 064840EC
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/8aTuZvITq6KulxHAkYHL8OOvuEQ.roa
Signing time: Sat 01 Jan 2022 11:01:08 +0000
ROA not before: Sat 01 Jan 2022 11:01:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6853
IP address blocks: 57.79.0.0/16 maxlen: 32
57.66.0.0/15 maxlen: 32
57.78.0.0/16 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105398508 (0x64840ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1a4ee66f213aba2ae9711c09181cbf0e3afb844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:82:25:44:d8:b8:cf:b4:ca:5f:94:99:bf:58:
a0:85:8a:6d:af:6d:bc:84:dc:a4:af:54:97:b5:d1:
c0:0d:94:a5:3a:b6:1a:64:e4:0d:8e:2d:6b:00:a7:
fd:6b:c4:2f:c2:df:68:6b:0d:be:72:95:43:3c:26:
5f:36:96:a5:24:18:d5:9e:bd:d6:ce:c8:1d:34:94:
9d:bd:38:56:33:d5:a1:ec:1a:b5:ac:c6:90:47:23:
6c:0c:b1:aa:c9:60:16:c9:49:d3:2c:32:92:5d:fd:
c1:9e:97:1b:32:b6:a5:cf:9d:fb:0e:e0:9e:54:af:
b8:6c:40:40:ce:bd:0c:a5:49:77:50:d1:ee:58:ef:
69:95:17:6a:ad:35:cd:2d:b0:2e:64:10:f4:44:f0:
2f:61:07:71:f7:91:d3:40:0b:b6:5e:44:35:91:c2:
05:aa:0c:8a:7d:2a:0d:f8:91:9d:ef:cd:8f:37:43:
2a:64:e4:a2:fe:da:1d:bb:71:35:77:85:2c:80:5b:
4d:18:b9:e7:ff:cb:a4:1e:26:ca:c7:fe:aa:bb:cb:
d1:77:b3:03:d2:99:9e:0c:f0:03:d3:80:b9:59:d3:
c5:5f:bd:24:14:47:a0:f6:80:b1:a4:0a:ef:92:12:
ec:a0:ba:36:c8:21:5b:60:4e:2f:3c:23:0a:a8:e0:
c4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A4:EE:66:F2:13:AB:A2:AE:97:11:C0:91:81:CB:F0:E3:AF:B8:44
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/8aTuZvITq6KulxHAkYHL8OOvuEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.66.0.0/15
57.78.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a4:85:31:cf:cb:61:46:37:a5:31:bf:ec:49:0e:42:4a:65:9d:
6a:41:91:a4:55:7a:d2:f3:ed:7c:bc:85:e5:5d:fc:ef:a9:5e:
0d:9b:eb:19:fe:62:44:f9:cc:12:fd:ee:01:96:5b:eb:ed:65:
59:4b:51:a3:f4:72:81:e4:d2:85:05:f3:e8:89:5c:35:57:b4:
d6:08:d4:ed:82:b1:d3:d7:ea:c7:8f:d5:1d:2c:a2:bb:f8:41:
ed:bb:19:a5:ba:9a:50:10:91:73:bd:cc:30:1a:ac:b8:6c:a6:
d6:53:b0:7a:ca:be:86:e8:a2:19:96:49:a6:aa:c9:4d:13:56:
af:e3:c3:94:10:fc:ed:c4:f6:c7:99:3e:ce:fc:cc:e3:f6:00:
d7:65:74:fb:cb:be:3c:d1:3c:e0:80:89:78:cd:4c:3c:9e:2c:
ae:49:5f:db:81:12:77:fd:ec:b8:ee:f3:e4:f2:a9:dc:b7:8b:
a4:27:60:40:83:4d:bf:c7:01:93:64:a0:59:5f:4b:76:58:85:
5a:47:2a:38:8c:5f:3f:e7:69:32:7c:5f:78:65:89:a0:ea:33:
e2:d9:75:a3:ff:e6:96:0e:ac:9f:15:6f:ca:0f:49:9f:f9:94:
a7:9e:55:c1:c0:09:33:6a:c0:3c:3d:c2:26:3a:c0:c9:50:16:
43:7f:9e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org