Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/zK92AJby-eH3DKlRbWdjwcKLkRE.roa
File: zK92AJby-eH3DKlRbWdjwcKLkRE.roa (raw, json)
Hash identifier: fzhmm5yhd0Q+2w7Benh3AGUya8oOScegs/XE50B51/A=
Subject key identifier: CC:AF:76:00:96:F2:F9:E1:F7:0C:A9:51:6D:67:63:C1:C2:8B:91:11
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 05202B67
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/zK92AJby-eH3DKlRbWdjwcKLkRE.roa
Signing time: Mon 06 Jun 2022 19:03:20 +0000
ROA not before: Mon 06 Jun 2022 19:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 185.255.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85994343 (0x5202b67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jun 6 19:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccaf760096f2f9e1f70ca9516d6763c1c28b9111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:db:0c:05:5a:4b:46:cd:24:4f:9e:ed:1c:08:
59:5b:13:44:7c:89:c5:dd:c7:a0:85:08:56:bf:b5:
c5:18:ab:28:bc:a8:46:f4:67:63:57:cc:f1:79:2a:
8d:f0:07:0b:7e:28:80:24:9c:87:0a:e9:05:c7:62:
2c:ec:3d:7f:89:9f:a3:36:67:da:e8:52:16:5f:8c:
25:cf:41:d8:fc:d5:c2:d3:d4:1e:b1:0d:29:fb:00:
23:c7:4f:d5:21:42:c2:67:c5:48:7e:4e:19:c5:bb:
eb:3c:91:f6:46:f4:ff:0c:f8:49:ec:d7:9e:94:04:
3a:30:f8:a5:c3:ca:10:4d:0f:12:f2:51:2d:33:2e:
ca:95:a5:e3:b2:09:43:19:e7:a4:75:11:b8:84:88:
f7:36:ce:9d:7d:31:d7:bf:31:0b:40:7d:02:2f:f2:
17:79:76:24:3f:52:d1:ff:0a:7f:74:4f:35:47:70:
86:ba:45:f5:dd:e1:01:da:5a:d2:33:de:db:25:cc:
d0:5d:86:38:70:19:01:c5:c9:c7:d4:54:59:d6:6a:
fe:e8:d8:09:54:11:dd:1e:49:0b:b5:46:e8:0a:0d:
fa:a4:61:df:a1:20:69:94:8e:38:a4:44:be:68:ed:
c6:12:b7:7a:d8:db:fe:0d:85:fe:2c:2a:7b:3e:04:
4f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AF:76:00:96:F2:F9:E1:F7:0C:A9:51:6D:67:63:C1:C2:8B:91:11
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/zK92AJby-eH3DKlRbWdjwcKLkRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.197.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f0:e6:9e:1b:8e:8b:72:38:86:58:f0:ac:2a:ee:a8:b3:98:
cf:2f:a6:49:b3:ff:aa:e5:7f:7a:37:f9:db:0a:a6:a3:09:a6:
35:43:2a:9e:43:1e:fc:64:54:2e:54:86:04:b1:d3:9a:dd:52:
df:93:a7:9e:fb:ca:f8:b8:03:ae:d7:fb:36:4c:09:e8:e2:63:
2a:72:54:b4:e4:1e:80:f7:26:01:dd:c4:36:a2:d8:90:d8:9e:
58:9e:1e:a7:99:cb:70:9d:3a:52:76:bd:8f:68:aa:53:b2:01:
62:bc:51:45:1e:f6:c0:a7:db:9c:6e:51:ba:b1:5b:d7:f7:4b:
27:e8:5a:ed:9b:0d:99:46:65:54:32:dc:a4:ce:8d:29:a0:59:
cf:ec:a9:00:92:2f:24:14:f6:a2:31:2e:5d:5b:b3:11:4a:7a:
6a:67:37:dc:c3:4e:c5:7a:82:37:11:f9:c4:b3:1f:f3:5c:43:
1c:b9:d9:f2:a5:38:ca:1b:8e:fe:b7:78:06:54:17:fa:37:72:
3c:86:90:bf:fd:ac:c7:c7:46:08:ff:c8:65:c7:3b:77:d4:d1:
a5:31:ba:5c:17:b8:d1:22:40:2e:fd:a9:c7:c4:e3:6b:30:ad:
e1:59:1d:1c:3c:ac:6e:be:ce:82:81:34:66:1f:23:e1:0b:1e:
38:c5:f7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org