Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/zy01uaivxnlQQ1O8n7xerWWAHug.roa
File: zy01uaivxnlQQ1O8n7xerWWAHug.roa (raw, json)
Hash identifier: 6FNx49LRuTaTSsWvAJwEetu/TB8TzuLvBXaxNe+5Jf0=
Subject key identifier: CF:2D:35:B9:A8:AF:C6:79:50:43:53:BC:9F:BC:5E:AD:65:80:1E:E8
Certificate issuer: /CN=d67618d34179c3ea52330264a1964187b23cdd24
Certificate serial: 023A4F18
Authority key identifier: D6:76:18:D3:41:79:C3:EA:52:33:02:64:A1:96:41:87:B2:3C:DD:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nYY00F5w-pSMwJkoZZBh7I83SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/zy01uaivxnlQQ1O8n7xerWWAHug.roa
Signing time: Sat 01 Jan 2022 07:01:49 +0000
ROA not before: Sat 01 Jan 2022 07:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62313
IP address blocks: 185.168.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37375768 (0x23a4f18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d67618d34179c3ea52330264a1964187b23cdd24
Validity
Not Before: Jan 1 07:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf2d35b9a8afc679504353bc9fbc5ead65801ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7d:e8:98:26:fe:f1:be:0c:8b:ea:e0:51:53:
4c:22:df:85:92:a9:0e:27:f9:12:bd:b1:01:b2:ce:
5a:4b:13:4e:57:35:b8:3d:2e:52:dd:1e:19:82:b4:
be:a8:ac:46:b4:6d:06:a4:cf:60:a8:b1:ea:93:c0:
77:47:44:75:d2:7f:b7:f1:90:84:23:44:db:8a:eb:
17:77:f7:87:3a:75:2e:e2:fc:0a:48:26:4d:fd:c9:
f3:23:f0:c8:c7:ad:a9:34:6d:45:5f:10:57:bf:81:
5b:e6:68:2d:27:b6:8f:b5:74:be:66:28:1d:f1:01:
52:25:4a:46:1f:55:07:0f:14:1b:cc:99:62:71:ab:
5c:75:fe:5c:26:79:52:18:13:48:a6:5e:05:e1:96:
2b:20:53:e7:a6:36:ff:7b:c8:18:74:a5:1a:74:68:
c8:dc:48:80:d7:64:03:b6:9d:12:0b:eb:c4:f9:c1:
65:c6:4c:85:93:b4:ef:30:61:37:82:d9:4a:93:c7:
b2:30:56:d0:fd:0e:10:8d:f7:40:b2:6f:b7:04:42:
12:46:2f:c0:fb:ee:ee:ff:bd:18:2f:68:b5:a7:ca:
97:e2:b4:c1:ea:1b:75:96:9c:42:62:53:a8:84:14:
e7:01:df:e4:35:9f:08:91:fc:66:a2:ba:b6:ee:cd:
5e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:2D:35:B9:A8:AF:C6:79:50:43:53:BC:9F:BC:5E:AD:65:80:1E:E8
X509v3 Authority Key Identifier:
keyid:D6:76:18:D3:41:79:C3:EA:52:33:02:64:A1:96:41:87:B2:3C:DD:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nYY00F5w-pSMwJkoZZBh7I83SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/zy01uaivxnlQQ1O8n7xerWWAHug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/1nYY00F5w-pSMwJkoZZBh7I83SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.0.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:3d:7d:99:8b:4c:a9:34:5a:b9:35:d9:46:c6:46:2d:94:1f:
82:16:d5:ed:fa:d3:55:57:7e:32:30:3d:f4:d2:1e:97:60:69:
d5:df:a9:05:11:fe:25:59:7a:98:56:89:5a:33:3d:fb:52:55:
20:eb:1f:8c:56:ea:91:1b:69:c4:23:5f:3b:6a:83:4d:ad:d4:
81:95:03:58:f5:50:8e:c9:c4:2d:30:a0:ef:7e:9f:16:c2:66:
94:13:8d:69:60:d2:8b:56:eb:56:11:98:ae:04:70:2f:ab:98:
7c:3a:88:69:a2:46:dc:9d:86:c3:22:a9:9a:ff:a3:ff:5a:48:
b8:fb:ab:95:99:8a:71:1b:89:36:04:3f:37:b7:90:27:25:1d:
3e:f0:72:a6:d0:32:86:1a:33:f0:3d:e5:08:87:75:09:60:c0:
29:35:a9:3f:a4:86:fc:bc:5a:76:45:a4:d8:2b:31:80:e2:3f:
0e:fe:29:bb:71:c7:40:3d:91:3c:42:36:bb:14:23:e5:ee:11:
70:13:1e:b6:28:9b:5e:88:4c:d1:5a:f5:22:0b:4c:17:a2:6b:
ee:45:40:00:96:7a:db:43:84:41:d0:00:69:1a:f4:37:2b:47:
65:89:a7:19:a1:3c:c3:5c:09:6f:04:11:5f:40:f4:20:f0:94:
34:eb:bf:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:16 2024 by rpki-client on console-ams.rpki-client.org