Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/afe2b9-f9a5-4c6b-ab5e-b9d7f41fc189/1/ajaxzZ_U4PPgqwBQBVRUkyJlCnE.roa
File: ajaxzZ_U4PPgqwBQBVRUkyJlCnE.roa (raw, json)
Hash identifier: SwJmVr3xuOJQlJufBx8t6xl43LHYeEcIql8iJmqK7iw=
Subject key identifier: 6A:36:B1:CD:9F:D4:E0:F3:E0:AB:00:50:05:54:54:93:22:65:0A:71
Certificate issuer: /CN=d73b40aebf88c17b1b562128a56f4245f2f15438
Certificate serial: 050B6F8A
Authority key identifier: D7:3B:40:AE:BF:88:C1:7B:1B:56:21:28:A5:6F:42:45:F2:F1:54:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ztArr-IwXsbViEopW9CRfLxVDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/afe2b9-f9a5-4c6b-ab5e-b9d7f41fc189/1/ajaxzZ_U4PPgqwBQBVRUkyJlCnE.roa
Signing time: Sat 01 Jan 2022 06:03:10 +0000
ROA not before: Sat 01 Jan 2022 06:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201893
IP address blocks: 2.57.132.0/22 maxlen: 22
185.229.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84635530 (0x50b6f8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d73b40aebf88c17b1b562128a56f4245f2f15438
Validity
Not Before: Jan 1 06:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a36b1cd9fd4e0f3e0ab00500554549322650a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dd:e7:88:c3:47:e2:eb:76:a0:d5:a9:9a:7e:
24:da:09:aa:5d:ec:ed:2b:7f:0a:bd:a3:c7:32:46:
7a:53:07:89:9e:4f:2c:ad:8b:49:8b:b4:a7:73:4d:
05:aa:fd:c9:68:f3:cf:c4:bd:61:1f:17:ae:18:45:
82:3a:42:9c:c8:98:8e:df:44:bd:8c:ef:02:5c:54:
26:8a:5e:53:38:3e:11:b2:eb:f6:a5:7b:47:5f:1d:
b8:2e:33:1a:fa:69:ad:61:e3:3e:b3:8c:cb:e2:95:
b6:73:c2:b6:df:91:59:4d:4f:90:59:b1:4c:61:cf:
e7:cf:6b:b5:4d:3e:4d:ba:1a:61:4e:30:c7:f8:35:
2a:60:09:5d:d3:87:27:4d:64:82:a5:4e:ae:a7:33:
55:bf:c1:4e:ba:3c:7d:71:80:72:cd:9c:2d:f9:3a:
32:b1:fd:f9:69:b8:5c:17:2a:ae:99:6f:93:ad:fa:
92:72:1e:68:85:54:14:b0:f1:d1:6b:7b:84:cb:4b:
26:1e:38:86:f8:7d:d9:be:a3:c6:28:cd:14:49:81:
80:0e:c5:04:05:cc:7d:a9:fa:3b:9d:a3:9c:62:04:
e4:08:b7:50:11:2c:d2:83:1e:8a:ec:c8:28:62:d9:
67:90:f8:ed:6d:23:57:83:cc:89:06:05:12:fe:08:
54:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:36:B1:CD:9F:D4:E0:F3:E0:AB:00:50:05:54:54:93:22:65:0A:71
X509v3 Authority Key Identifier:
keyid:D7:3B:40:AE:BF:88:C1:7B:1B:56:21:28:A5:6F:42:45:F2:F1:54:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ztArr-IwXsbViEopW9CRfLxVDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/afe2b9-f9a5-4c6b-ab5e-b9d7f41fc189/1/ajaxzZ_U4PPgqwBQBVRUkyJlCnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/afe2b9-f9a5-4c6b-ab5e-b9d7f41fc189/1/1ztArr-IwXsbViEopW9CRfLxVDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.132.0/22
185.229.124.0/22
Signature Algorithm: sha256WithRSAEncryption
81:d3:ea:de:b1:bf:3f:53:52:fc:44:d3:af:f7:8e:d9:91:ed:
50:bf:2b:4e:69:5f:d7:bf:d1:ed:4d:d8:da:8b:ee:f4:28:7c:
8f:05:ba:53:a8:de:22:af:6d:75:16:e5:0b:c3:0d:0c:9d:74:
1b:56:28:31:0b:ba:27:54:f2:26:e3:62:7f:cd:03:75:5b:22:
eb:92:93:be:09:93:a2:d7:ff:ff:06:2f:8a:5a:c9:75:18:e0:
93:7b:ad:96:3c:1f:50:8d:a4:75:5f:ff:40:42:9e:ea:00:13:
e5:ed:ee:9b:d5:f5:4b:78:0c:53:81:d4:fb:e0:be:9c:b6:eb:
f5:00:fd:37:75:e4:06:e2:48:7c:5e:09:95:92:94:d9:b7:06:
29:1b:72:43:69:50:0c:0b:e1:96:17:a0:1c:57:c8:db:70:c8:
5c:9b:8c:ac:8b:61:08:bf:8c:17:81:df:8c:2c:9e:9b:9e:79:
11:70:cf:0a:1c:22:9c:67:95:a3:fb:7d:66:ec:ab:bb:ff:aa:
cf:7d:95:32:e6:f2:f0:13:fe:16:a3:cc:96:2e:5c:ef:12:ad:
4f:10:d4:4e:05:20:0b:30:c4:d4:28:02:40:35:6f:f1:7b:a3:
af:fe:f7:62:26:da:94:72:d6:52:1a:62:39:4b:e7:e1:27:f7:
9c:b9:02:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:09 2023 by rpki-client on console-fra.rpki-client.org