Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/zIyKPovAP6aqqxw0OhJmE5_WWgg.roa
File: zIyKPovAP6aqqxw0OhJmE5_WWgg.roa (raw, json)
Hash identifier: dLg2ueXUKNWtDrn4dFNzJQ2V0i30FVqHsY1wgL74j/I=
Subject key identifier: CC:8C:8A:3E:8B:C0:3F:A6:AA:AB:1C:34:3A:12:66:13:9F:D6:5A:08
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: CC9EF6
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/zIyKPovAP6aqqxw0OhJmE5_WWgg.roa
Signing time: Sat 01 Jan 2022 00:54:18 +0000
ROA not before: Sat 01 Jan 2022 00:54:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201935
IP address blocks: 84.254.137.0/24 maxlen: 24
84.254.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13410038 (0xcc9ef6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: Jan 1 00:54:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc8c8a3e8bc03fa6aaab1c343a1266139fd65a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9d:8a:1d:a5:ca:f6:d7:27:78:6f:10:f3:2a:
3c:10:e1:2f:7d:69:f4:37:4f:5f:cc:c0:81:c0:7a:
2d:fd:76:6f:ba:2b:dc:c0:41:85:f3:b7:24:9a:d3:
92:b5:6a:09:b4:ad:ef:63:c7:3d:96:e4:88:e4:65:
8c:1c:a7:43:f7:6c:18:9a:6f:ab:2b:9a:94:c8:f8:
2c:06:bb:b5:cc:ae:5e:28:fb:6e:10:92:89:b4:0f:
3b:d7:47:db:50:32:18:ab:83:d1:ff:e4:25:a9:68:
e5:35:78:ba:7e:c9:0e:10:ac:a5:70:df:35:62:44:
32:9b:2f:70:8c:80:a8:20:9c:2a:af:87:ef:e2:5a:
f9:e6:65:5c:81:b6:e6:76:8b:d6:07:e9:53:9a:63:
79:13:e0:54:29:6e:e5:6d:72:aa:14:5a:f9:a1:0d:
28:e9:64:f8:31:99:63:f0:57:78:7a:2f:4e:64:ad:
3f:fb:03:44:78:fc:6b:4c:a5:66:0c:7a:7f:76:f6:
a0:d1:eb:75:91:a6:aa:fd:32:b9:3c:27:62:dc:19:
ec:9c:31:53:7f:97:b5:bb:c2:6b:75:e7:ae:0d:3d:
b2:d2:22:60:1f:a9:3c:c7:51:7f:f7:99:08:c3:96:
f1:13:23:fb:92:26:ec:aa:48:00:d0:69:25:ba:9c:
43:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8C:8A:3E:8B:C0:3F:A6:AA:AB:1C:34:3A:12:66:13:9F:D6:5A:08
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/zIyKPovAP6aqqxw0OhJmE5_WWgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.254.130.0/24
84.254.137.0/24
Signature Algorithm: sha256WithRSAEncryption
59:95:1f:37:fe:4b:f8:07:cb:27:0b:36:0f:a6:f3:0c:ba:70:
1e:74:67:eb:ac:7a:ef:fc:df:48:cd:69:9e:58:21:73:57:46:
ea:27:61:a0:dd:e4:dd:7a:4c:b9:f1:22:0a:94:b8:d6:7b:a5:
df:20:ed:7b:53:b5:f6:52:f9:00:98:58:83:94:8d:a8:8f:96:
79:fa:f8:77:13:eb:47:a7:83:78:38:fe:cc:65:89:57:5c:ec:
9b:85:a9:f1:4b:29:03:64:ad:f1:b5:24:14:10:5a:77:99:91:
b6:26:8f:2a:0a:8a:35:06:93:58:f6:18:bd:c0:ac:1e:ff:0b:
b3:c0:ec:eb:b7:58:dd:ae:0d:3c:c7:5a:12:7a:4d:a7:91:57:
79:35:7d:84:38:38:58:77:73:74:7b:90:ef:b9:09:70:63:13:
ef:59:5b:f5:62:28:41:f3:5d:5e:76:2a:2f:dd:e9:e5:80:15:
d6:3e:62:a6:ee:6e:ef:68:29:a7:97:f1:d7:13:52:2b:51:96:
38:be:5f:55:ec:b7:20:ef:e2:f7:9e:3b:1a:8c:be:80:a7:cd:
3c:f2:1b:12:e5:33:8a:e8:0a:99:7a:8a:13:2f:c7:5d:78:3e:
d7:df:a5:7f:76:8a:dd:35:ba:07:c7:f0:8e:be:59:3d:26:e1:
01:57:d6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:27 2024 by rpki-client on console-ams.rpki-client.org