Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/ZtPQeWkbXjG0O5qavJA4iV9tYQc.roa
File: ZtPQeWkbXjG0O5qavJA4iV9tYQc.roa (raw, json)
Hash identifier: GHsej8g0BSVdDQzG1g8pZabeAMdyu9kER0AxMvBdYuk=
Subject key identifier: 66:D3:D0:79:69:1B:5E:31:B4:3B:9A:9A:BC:90:38:89:5F:6D:61:07
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0F7F7CC1
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/ZtPQeWkbXjG0O5qavJA4iV9tYQc.roa
Signing time: Sat 01 Jan 2022 06:04:41 +0000
ROA not before: Sat 01 Jan 2022 06:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53340
IP address blocks: 185.143.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260013249 (0xf7f7cc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 1 06:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66d3d079691b5e31b43b9a9abc9038895f6d6107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b2:69:27:51:8e:65:cf:1d:74:d9:7b:53:d1:
fc:eb:d7:15:71:8e:eb:ab:e7:51:47:75:7d:d2:65:
38:6e:d5:10:b9:23:c2:45:22:db:1c:95:05:9e:0d:
5d:ef:0d:b6:19:1c:af:f9:02:89:0b:17:50:18:ed:
89:ca:31:32:c3:68:4e:e2:28:62:8b:3c:76:d0:cb:
58:1a:16:5e:ba:d0:b5:ee:1f:6b:b2:09:73:1f:be:
48:df:b8:89:26:d0:ad:d0:d2:32:94:7f:c4:a2:2a:
b2:52:88:5e:5e:c8:24:a6:09:c6:62:92:ff:30:ab:
64:28:15:06:70:be:55:eb:a4:57:ed:ec:63:3c:2a:
77:94:7d:d2:31:3c:a2:a7:81:3c:8b:a1:c5:17:55:
e5:88:2c:5b:26:7a:fe:40:2d:49:4d:66:86:ad:2a:
b9:90:fc:65:67:a9:76:d8:b8:a8:61:ca:db:2d:47:
65:35:aa:9f:d9:23:6b:d3:36:e1:ad:9e:98:25:43:
ea:f8:77:e3:7f:d5:f4:98:65:4e:d5:6a:fb:87:36:
e4:25:34:ec:2a:db:f7:d5:b8:2b:02:b4:bb:8f:93:
36:f6:37:7a:a0:9b:61:54:47:8f:6f:f5:e9:8c:3b:
9f:d5:d1:ae:f3:94:3d:e0:82:3c:d0:03:8b:8f:68:
6b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D3:D0:79:69:1B:5E:31:B4:3B:9A:9A:BC:90:38:89:5F:6D:61:07
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/ZtPQeWkbXjG0O5qavJA4iV9tYQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.240.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:a3:88:6c:2b:bb:82:57:76:f5:51:76:fe:a9:14:e2:b5:0b:
2d:67:62:81:c0:21:09:2f:35:52:82:c7:1d:8a:b2:ad:d6:7f:
dc:22:c5:37:60:4a:33:57:73:ce:65:8f:e6:ab:a3:7c:f0:a5:
54:09:32:e8:23:2d:86:7b:a4:5e:a4:c8:06:50:6c:57:05:e2:
86:3d:4e:14:1a:20:92:ac:2c:5b:94:08:3d:dd:5c:cc:73:c8:
fe:48:3a:19:f4:5e:b9:91:7a:fa:87:c8:bd:72:57:be:bd:cd:
19:a3:7d:c6:51:a9:28:20:ee:00:c1:86:46:12:29:8f:32:6f:
ad:a2:df:39:29:7d:cb:87:40:a5:38:28:aa:4b:78:eb:a2:7a:
39:5e:03:f2:83:ab:df:6c:81:5d:8c:05:34:27:6f:6b:81:c3:
12:3e:33:a2:58:97:7b:5d:6c:e8:1f:fc:ab:6c:52:4f:f4:bd:
2f:3e:53:fe:c5:4d:00:da:17:45:4a:fb:2d:42:2c:e7:e7:62:
eb:9a:ac:53:61:b3:f0:7f:2b:85:86:c9:98:e7:2f:de:f6:e9:
57:a0:3a:34:8d:fe:ca:29:31:6e:15:d5:49:a8:ec:3a:86:ae:
d6:c8:09:e4:25:c8:fd:ba:4a:3d:c1:03:56:84:64:39:f6:f5:
25:db:9c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org