Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/ZmQiS2DGiqZT9-K5zqr6C_jglAw.roa
File: ZmQiS2DGiqZT9-K5zqr6C_jglAw.roa (raw, json)
Hash identifier: EW1N2CPV7KaUh+R0brqdlgie4akKlkinCBDh2H1arsE=
Subject key identifier: 66:64:22:4B:60:C6:8A:A6:53:F7:E2:B9:CE:AA:FA:0B:F8:E0:94:0C
Certificate issuer: /CN=bc31247f359a6d492dc9943ae0f00fc8be216c78
Certificate serial: 23C91B08
Authority key identifier: BC:31:24:7F:35:9A:6D:49:2D:C9:94:3A:E0:F0:0F:C8:BE:21:6C:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vDEkfzWabUktyZQ64PAPyL4hbHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/ZmQiS2DGiqZT9-K5zqr6C_jglAw.roa
Signing time: Sun 06 Feb 2022 18:32:08 +0000
ROA not before: Sun 06 Feb 2022 18:32:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60975
IP address blocks: 185.19.185.0/24 maxlen: 24
185.19.184.0/24 maxlen: 24
185.19.187.0/24 maxlen: 24
2a00:43e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 600382216 (0x23c91b08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc31247f359a6d492dc9943ae0f00fc8be216c78
Validity
Not Before: Feb 6 18:32:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6664224b60c68aa653f7e2b9ceaafa0bf8e0940c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:53:4a:fa:21:3d:c7:85:b2:2c:58:02:c3:a2:
5d:e7:47:30:a7:12:a6:e6:fb:b6:41:ec:e4:48:3f:
d3:00:69:09:b4:d4:83:a7:55:f3:ad:48:65:ca:96:
e3:0c:bc:50:bd:ae:90:13:a7:92:14:09:94:e0:71:
c0:e0:86:ab:cb:49:a1:ad:c5:aa:6e:37:07:21:2c:
3f:5e:2d:32:11:bb:f2:43:60:8a:11:0b:16:02:10:
7b:f5:0c:d6:07:dc:9f:e5:bd:88:eb:8e:30:e6:5c:
7b:03:9c:c5:9d:cb:9d:39:93:67:5e:a4:a9:7a:f7:
10:1a:c0:33:5a:65:e3:d4:76:97:f2:19:46:f8:43:
8e:e1:05:81:09:ae:1f:e0:b2:c7:02:17:be:fa:1a:
1f:bb:a0:92:a7:5c:42:21:10:02:68:1c:bf:0c:6a:
64:3a:a4:27:cd:78:fd:92:c0:ae:fa:a9:58:bb:b0:
d9:53:28:bd:8f:d5:59:67:28:bc:d7:73:06:1b:93:
48:c0:9e:9f:83:67:b3:25:63:18:14:e0:4e:d7:d8:
63:d9:7b:46:84:b6:3e:92:45:70:d9:ff:33:82:03:
37:82:b9:46:95:1e:7f:58:6f:f3:54:a6:24:9d:d9:
d3:1e:8e:88:c9:bf:e0:0c:e7:c6:93:79:75:53:a2:
d8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:64:22:4B:60:C6:8A:A6:53:F7:E2:B9:CE:AA:FA:0B:F8:E0:94:0C
X509v3 Authority Key Identifier:
keyid:BC:31:24:7F:35:9A:6D:49:2D:C9:94:3A:E0:F0:0F:C8:BE:21:6C:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDEkfzWabUktyZQ64PAPyL4hbHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/ZmQiS2DGiqZT9-K5zqr6C_jglAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/346bef-0a5e-4400-9f84-56805ca11c33/1/vDEkfzWabUktyZQ64PAPyL4hbHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.184.0/23
185.19.187.0/24
IPv6:
2a00:43e0::/32
Signature Algorithm: sha256WithRSAEncryption
37:e2:75:7c:af:47:64:6d:d2:72:7b:fd:04:90:4b:e7:20:d4:
fd:8d:cd:98:b2:90:96:c8:cd:8b:cf:03:cf:46:bf:05:cf:ea:
07:dc:5d:8a:85:c0:b6:ba:69:3b:a0:5b:28:e5:56:b3:ee:e6:
67:91:ec:3d:74:5d:94:72:f9:67:f4:e1:e1:8c:cf:19:03:54:
8c:a8:48:57:6e:a2:8a:2e:73:bc:53:6d:ce:0e:2e:6f:6a:59:
15:93:7e:c5:70:10:eb:4d:25:ad:91:ad:eb:d6:b4:fc:f5:80:
85:d1:5e:5d:a2:83:53:ab:8d:27:c9:2d:d9:6e:32:8d:6c:bd:
04:2c:e9:be:ee:19:9e:88:36:8a:03:f0:3d:d0:10:8d:51:d8:
38:11:40:96:83:e7:01:f3:2a:ab:8e:4d:9d:0a:01:78:e1:ce:
b3:f4:91:5b:b3:4d:ee:b3:a2:f2:46:d6:3d:73:54:da:6e:3b:
c0:cc:6b:44:f0:89:a0:1e:b6:c4:5c:8b:a0:d7:25:d9:43:b2:
70:93:a4:5f:e9:91:3d:dc:86:d9:48:83:e2:0c:3d:3b:b8:3d:
29:ef:04:2b:27:52:66:eb:9a:5a:74:cc:4a:f6:9b:cb:e1:f9:
c5:5a:90:50:2d:f3:eb:3d:13:3a:ac:b7:f5:d6:77:9d:26:fb:
24:17:bb:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:33 2023 by rpki-client on console-fra.rpki-client.org