Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/1-zO0pfcSc0e9ka9sHqo58cU1AsY.roa
File: 1-zO0pfcSc0e9ka9sHqo58cU1AsY.roa (raw, json)
Hash identifier: eATOL8wHapKnqjdjzxsbwn+WTxU2EKFyaGBFNK1IZtk=
Subject key identifier: FB:33:B4:A5:F7:12:73:47:BD:91:AF:6C:1E:AA:39:F1:C5:35:02:C6
Certificate issuer: /CN=f1808f1abef8e6b59cd4359a6b4481fc7c9631d1
Certificate serial: 06A744A4
Authority key identifier: F1:80:8F:1A:BE:F8:E6:B5:9C:D4:35:9A:6B:44:81:FC:7C:96:31:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8YCPGr745rWc1DWaa0SB_HyWMdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/1-zO0pfcSc0e9ka9sHqo58cU1AsY.roa
Signing time: Sat 01 Jan 2022 04:56:00 +0000
ROA not before: Sat 01 Jan 2022 04:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34154
IP address blocks: 185.237.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111625380 (0x6a744a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1808f1abef8e6b59cd4359a6b4481fc7c9631d1
Validity
Not Before: Jan 1 04:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb33b4a5f7127347bd91af6c1eaa39f1c53502c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:fe:4e:4d:b2:28:5b:c3:d5:a6:02:2e:80:03:
72:ca:f1:4e:d4:b4:76:e4:28:8a:3e:00:b1:6b:3c:
87:e3:20:99:e1:ed:5a:d7:8d:0c:29:16:aa:79:63:
47:41:40:c0:c0:46:b5:51:5c:17:29:0f:33:f9:b3:
8d:6a:00:a0:15:75:f7:13:3a:14:b0:69:20:81:25:
a8:6a:f0:40:5b:54:9d:69:d4:36:9c:d5:f2:4f:af:
52:a1:9d:bf:98:ce:87:87:2f:b3:33:f3:23:25:d3:
5e:18:0f:d1:96:e8:0e:8d:a7:11:0f:fb:d6:18:12:
df:0e:e2:a1:1a:af:d1:b6:ac:12:05:7a:17:df:0d:
67:85:bb:e6:ce:ce:08:7e:03:ee:5a:61:fc:50:86:
c5:9b:46:84:df:21:72:6d:44:47:ba:e2:8b:dc:68:
e1:b9:e5:89:89:6a:df:6e:2b:3b:81:0a:15:4f:4a:
57:14:ae:44:c1:7c:8e:90:52:44:45:5a:54:1f:b2:
8b:d8:5c:bb:2a:8f:d8:bc:eb:be:b9:a5:a9:61:ee:
07:3d:0a:1f:4f:55:5c:6a:28:ac:f7:1f:72:55:a1:
be:4a:8c:ce:9f:69:94:ce:f4:58:f2:42:4b:b5:a2:
26:68:33:bf:cc:8c:5f:82:e9:87:5b:45:68:f6:d2:
45:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:33:B4:A5:F7:12:73:47:BD:91:AF:6C:1E:AA:39:F1:C5:35:02:C6
X509v3 Authority Key Identifier:
keyid:F1:80:8F:1A:BE:F8:E6:B5:9C:D4:35:9A:6B:44:81:FC:7C:96:31:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8YCPGr745rWc1DWaa0SB_HyWMdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/1-zO0pfcSc0e9ka9sHqo58cU1AsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/8YCPGr745rWc1DWaa0SB_HyWMdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.34.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:a3:ad:f8:d2:b5:d4:07:6a:af:9f:ff:72:86:7b:f8:f3:96:
5e:7d:ba:5b:75:76:6d:7b:db:b5:93:13:96:b8:f4:65:fb:8d:
6a:aa:ec:13:0d:ed:25:e9:91:bf:d9:92:d9:d3:4a:58:b1:5d:
7a:33:e8:8d:0e:ca:05:86:54:31:01:7a:0b:0e:fc:7a:8e:93:
40:4c:f1:66:7f:25:94:fc:ce:11:66:a3:5a:b8:04:cb:4e:f4:
97:75:b3:3a:2d:62:ac:a2:67:39:ff:91:17:07:e8:c5:96:f8:
de:76:f7:3a:70:3d:47:6f:34:cc:ca:23:2b:6c:f8:42:24:21:
97:a0:b6:4d:13:0a:14:0a:1d:27:b8:5a:97:66:bf:24:2a:07:
d9:de:f8:d9:b8:2b:aa:4e:3c:02:3f:7f:b9:c5:68:8b:58:35:
82:b5:b8:c5:03:31:07:0d:19:14:77:c4:e0:90:0d:f0:56:25:
d1:35:b6:7c:de:24:98:3a:f1:00:ac:1b:f9:a1:5e:d7:26:ae:
21:a9:75:2e:88:4c:e1:bf:a8:39:99:53:6a:0e:36:71:cf:e0:
61:79:7b:4a:27:5f:61:50:57:af:ec:22:18:f7:c6:23:ff:09:
26:61:ff:1d:d2:5d:b6:ca:45:1c:35:0f:c0:5a:3b:32:7f:ca:
7c:2a:63:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:47 2023 by rpki-client on console-ams.rpki-client.org