Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/zZVr6R2HnAlAr9bgtmvWS6ZJQBg.roa
File: zZVr6R2HnAlAr9bgtmvWS6ZJQBg.roa (raw, json)
Hash identifier: FtgMaou/EiEO+PEZdTnc2AsotQmlzyn8ABpWxRvc1pI=
Subject key identifier: CD:95:6B:E9:1D:87:9C:09:40:AF:D6:E0:B6:6B:D6:4B:A6:49:40:18
Certificate issuer: /CN=2cc25ff32918f0b49306259d483afb9e381a3915
Certificate serial: 10C5ABC6
Authority key identifier: 2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/zZVr6R2HnAlAr9bgtmvWS6ZJQBg.roa
Signing time: Sat 01 Jan 2022 10:57:35 +0000
ROA not before: Sat 01 Jan 2022 10:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202391
IP address blocks: 185.158.172.0/24 maxlen: 24
185.158.174.0/24 maxlen: 24
185.158.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281390022 (0x10c5abc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc25ff32918f0b49306259d483afb9e381a3915
Validity
Not Before: Jan 1 10:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd956be91d879c0940afd6e0b66bd64ba6494018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c0:24:0a:1c:64:88:76:f9:d4:07:4f:ca:0a:
85:01:5f:bb:6a:db:8c:13:8c:42:df:f1:b2:ec:c3:
49:3c:38:ff:b9:92:51:eb:9c:82:23:31:5d:66:00:
1a:0e:29:8f:63:41:82:57:7e:0b:d1:7d:c0:bd:2a:
36:09:a5:3a:8a:cc:4a:b8:15:2c:36:77:54:55:d0:
10:fa:df:60:5a:33:68:f7:b9:be:c3:c4:e9:6f:80:
e9:83:02:ef:85:21:06:33:56:ac:b1:c4:a3:83:e5:
2d:c8:d4:c7:77:ae:67:5a:e6:5d:5c:c1:f6:22:64:
b6:cf:37:44:02:30:90:fa:ec:88:56:27:65:83:61:
79:0b:25:ef:54:f6:cc:0c:fa:b3:13:ec:c7:53:a0:
5d:ff:34:6b:da:a4:ac:f8:3e:c7:95:58:b4:f8:23:
58:8e:2f:9c:1b:bb:02:a1:10:6d:7e:20:dd:88:c8:
52:80:69:ac:2a:f6:50:06:75:7d:b3:98:a2:55:92:
0b:63:61:41:db:1a:ec:df:bf:0f:42:f6:7d:76:1b:
b6:88:b8:57:54:bc:e0:96:29:a7:ae:5c:06:cb:94:
3b:f4:5c:26:80:02:ba:55:71:a3:34:60:16:85:9b:
fb:c5:92:fa:30:83:e2:82:e1:dc:78:47:e3:93:3d:
5f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:95:6B:E9:1D:87:9C:09:40:AF:D6:E0:B6:6B:D6:4B:A6:49:40:18
X509v3 Authority Key Identifier:
keyid:2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/zZVr6R2HnAlAr9bgtmvWS6ZJQBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/LMJf8ykY8LSTBiWdSDr7njgaORU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.172.0-185.158.174.255
Signature Algorithm: sha256WithRSAEncryption
19:3c:81:a3:9d:f5:72:51:61:e8:36:75:c8:f8:99:85:0d:80:
af:9d:f5:a7:6e:b4:8c:3b:78:bb:f4:6d:3b:b9:b2:37:b1:1e:
28:5e:db:fe:86:ef:78:50:d0:20:5e:7a:6f:f6:99:71:0f:e3:
b7:1a:43:43:f0:b1:da:25:00:64:8d:95:7a:35:2c:89:d0:45:
08:ce:10:92:53:20:39:bb:b2:e9:c0:03:97:b6:a2:42:e3:ab:
22:49:2c:80:c1:9c:96:60:ff:1b:07:92:ab:9f:01:72:ff:58:
3c:e6:ea:0c:44:38:22:cc:93:c6:b9:6d:80:6c:45:ff:62:3f:
85:1c:03:ed:67:17:7e:77:9d:e3:fc:c5:99:4c:77:05:e3:8f:
b0:1c:68:08:e7:09:24:14:d7:fe:f3:87:49:78:d4:b3:23:a3:
1a:87:02:90:d7:7b:75:1f:b3:84:c0:12:c6:03:71:0e:1d:ad:
62:1e:38:73:83:ee:bc:56:e4:a6:4a:bb:d6:63:2f:09:d6:7e:
4b:e6:75:dd:dc:ad:35:23:e3:2e:2b:fc:61:7c:87:2f:42:ee:
52:48:85:50:aa:c3:cb:15:2c:29:69:3a:3d:b1:8a:9e:1f:00:
bb:42:18:78:49:89:c1:30:28:ee:d2:b1:1d:a5:a2:73:0d:84:
fe:c3:f6:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:15 2024 by rpki-client on console-fra.rpki-client.org