Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/71bf6f-1e3c-404a-82d0-788c5b75754b/1/ZhpfiY3AL4ciI3MWH0ywJHMQElk.roa
File: ZhpfiY3AL4ciI3MWH0ywJHMQElk.roa (raw, json)
Hash identifier: p7rBi0BZztgElfFu/nChpexqTgJ8ER9AXO/bLJ83ky8=
Subject key identifier: 66:1A:5F:89:8D:C0:2F:87:22:23:73:16:1F:4C:B0:24:73:10:12:59
Certificate issuer: /CN=d95e046e7d393c14fcbaee7f1c43980e3da11fb1
Certificate serial: 01934001
Authority key identifier: D9:5E:04:6E:7D:39:3C:14:FC:BA:EE:7F:1C:43:98:0E:3D:A1:1F:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2V4Ebn05PBT8uu5_HEOYDj2hH7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/71bf6f-1e3c-404a-82d0-788c5b75754b/1/ZhpfiY3AL4ciI3MWH0ywJHMQElk.roa
Signing time: Sat 01 Jan 2022 02:57:46 +0000
ROA not before: Sat 01 Jan 2022 02:57:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211091
IP address blocks: 185.188.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26427393 (0x1934001)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d95e046e7d393c14fcbaee7f1c43980e3da11fb1
Validity
Not Before: Jan 1 02:57:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=661a5f898dc02f87222373161f4cb02473101259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cb:6f:fb:cd:e6:10:f5:d3:72:0a:8e:cf:e7:
0f:73:a5:42:24:90:34:25:cb:4e:e2:79:e7:1d:a5:
39:83:57:28:3a:09:50:ad:03:06:cf:86:e9:44:ae:
43:db:7b:1d:e8:79:1c:9e:8e:f6:00:d6:b6:3d:07:
a4:76:ed:75:3b:e5:e2:73:0b:50:35:54:ed:64:97:
e8:a0:ee:6f:ff:1e:72:58:26:fc:c0:e4:bd:bf:a2:
de:0f:0d:c3:97:ff:b6:77:6b:36:7b:d3:d8:84:99:
24:74:64:1b:af:c2:fc:1f:24:f8:01:b3:b2:2f:fa:
13:ce:97:40:d3:21:5f:74:44:40:29:90:ae:07:9e:
3c:24:61:7b:6e:a2:ec:8b:5d:55:04:69:b3:3f:cc:
fb:24:0a:db:0e:d8:87:8e:c1:a4:33:b6:23:ef:9d:
42:a9:d3:1e:51:de:7a:5c:c6:be:32:b4:42:c7:3b:
34:69:49:56:53:cb:5e:27:66:84:20:95:05:7a:a7:
4f:ac:3e:bc:45:3b:86:5e:bf:9c:3a:81:e4:07:ce:
c7:54:a3:11:07:cf:b3:61:55:cd:7d:52:c4:37:61:
5e:c3:6a:4f:e9:ef:1f:2b:e9:0e:5c:6b:aa:24:3b:
63:82:99:29:d2:90:36:2e:50:d6:1f:82:7d:c4:55:
0f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1A:5F:89:8D:C0:2F:87:22:23:73:16:1F:4C:B0:24:73:10:12:59
X509v3 Authority Key Identifier:
keyid:D9:5E:04:6E:7D:39:3C:14:FC:BA:EE:7F:1C:43:98:0E:3D:A1:1F:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2V4Ebn05PBT8uu5_HEOYDj2hH7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/71bf6f-1e3c-404a-82d0-788c5b75754b/1/ZhpfiY3AL4ciI3MWH0ywJHMQElk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/71bf6f-1e3c-404a-82d0-788c5b75754b/1/2V4Ebn05PBT8uu5_HEOYDj2hH7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.42.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:f8:71:44:5b:17:35:2d:c0:ed:56:9d:93:66:ec:9a:83:96:
79:ec:77:7e:25:49:82:07:e8:22:c7:62:0a:c5:e3:d0:20:d8:
2b:77:80:b8:b9:df:b8:df:b7:ff:14:2c:99:43:e1:95:cb:88:
f3:37:8c:c8:b9:f5:54:84:eb:76:67:aa:4d:fe:40:d2:15:99:
3b:32:13:1b:2c:a4:56:28:d8:41:67:34:c1:40:7c:df:48:86:
7c:1c:35:28:76:49:0a:3f:3b:d6:97:20:b5:76:67:c8:b3:64:
0f:fc:99:cd:31:c9:7a:5b:41:ee:ce:6c:a0:80:83:1e:7b:bd:
2f:61:70:8d:f8:79:cc:41:f7:8a:ca:28:1a:33:1d:b0:15:af:
5d:cd:f1:bb:3c:1c:d0:de:f7:11:f2:1b:bf:81:4d:a7:65:c4:
0a:4a:e3:5c:80:81:26:0e:25:3f:3d:e8:8a:75:47:16:30:3b:
bc:2b:73:81:d3:57:e2:d6:b5:85:72:36:f4:97:44:b9:e5:87:
87:25:d9:11:22:e8:b3:21:1d:31:77:fb:bc:d9:6b:ef:76:e1:
9a:a8:13:1b:41:7b:c3:63:3d:84:43:0f:55:7f:7e:7f:89:ac:
38:be:25:d3:b7:37:ea:c0:5c:0c:64:6f:b6:6f:31:f0:53:f7:
a3:b5:b7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:15 2025 by rpki-client