Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/355be3-c11c-41c8-a89a-d1429837dabf/1/zL_0VeZxmEpAItahRlqz3d9zVdc.roa
File: zL_0VeZxmEpAItahRlqz3d9zVdc.roa (raw, json)
Hash identifier: wPTv3JbFlK6RU5OEu5eZE4abQDECk1IoNzIgZ5TTMrw=
Subject key identifier: CC:BF:F4:55:E6:71:98:4A:40:22:D6:A1:46:5A:B3:DD:DF:73:55:D7
Certificate issuer: /CN=4200eb2f8fd0138c4377f540006cfc8b765c4a76
Certificate serial: 0181FC71DF433413026D1922DA2F6261CABE
Authority key identifier: 42:00:EB:2F:8F:D0:13:8C:43:77:F5:40:00:6C:FC:8B:76:5C:4A:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgDrL4_QE4xDd_VAAGz8i3ZcSnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/355be3-c11c-41c8-a89a-d1429837dabf/1/zL_0VeZxmEpAItahRlqz3d9zVdc.roa
Signing time: Thu 14 Jul 2022 11:22:09 +0000
ROA not before: Thu 14 Jul 2022 11:22:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60257
IP address blocks: 185.43.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:71:df:43:34:13:02:6d:19:22:da:2f:62:61:ca:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4200eb2f8fd0138c4377f540006cfc8b765c4a76
Validity
Not Before: Jul 14 11:22:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccbff455e671984a4022d6a1465ab3dddf7355d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:00:4a:41:3d:62:30:94:4b:b8:f2:e8:fd:1a:
88:98:b6:76:7a:11:24:58:1c:98:10:7b:d4:e5:19:
57:72:68:40:41:13:3f:bc:00:91:3d:b7:61:39:ed:
13:71:9b:09:60:97:69:25:49:e8:76:76:36:d7:10:
ac:cf:17:cf:6e:51:62:c2:fc:ef:ae:2f:34:c0:84:
f9:6d:f1:b3:72:0a:b1:88:5d:3a:e4:2b:4c:aa:64:
62:05:f8:05:44:85:83:fa:88:36:b0:e4:e6:98:ac:
71:06:01:f4:17:eb:fd:35:11:3a:aa:60:0c:39:4e:
8f:1a:c9:65:04:a0:02:ba:9b:0e:ec:63:ed:cc:6d:
13:6c:92:75:d5:27:e4:15:ee:1c:ff:72:f1:05:d0:
b7:28:bb:0a:6a:73:3b:c1:7a:8d:08:2e:6b:82:4a:
a3:15:10:78:24:92:eb:7d:46:42:6a:bd:9e:ec:6d:
eb:b8:da:29:88:54:c7:13:f6:c8:f3:41:d1:70:cf:
c4:e6:95:a5:b3:cb:21:7f:74:1c:af:7e:fe:f8:34:
0d:b0:42:d7:aa:fc:03:30:09:be:66:84:be:84:28:
d2:56:53:0b:70:25:a9:ef:37:43:ee:ec:0c:1e:ba:
61:53:b8:6c:88:cd:02:68:40:32:34:e9:ab:f8:cc:
b3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BF:F4:55:E6:71:98:4A:40:22:D6:A1:46:5A:B3:DD:DF:73:55:D7
X509v3 Authority Key Identifier:
keyid:42:00:EB:2F:8F:D0:13:8C:43:77:F5:40:00:6C:FC:8B:76:5C:4A:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgDrL4_QE4xDd_VAAGz8i3ZcSnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/355be3-c11c-41c8-a89a-d1429837dabf/1/zL_0VeZxmEpAItahRlqz3d9zVdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/355be3-c11c-41c8-a89a-d1429837dabf/1/QgDrL4_QE4xDd_VAAGz8i3ZcSnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.32.0/22
Signature Algorithm: sha256WithRSAEncryption
32:ee:63:a0:8e:16:bd:a2:5c:d9:a6:fe:ca:e3:79:b6:3b:2a:
36:ce:42:55:da:bb:5b:7f:86:22:01:a6:66:77:9a:71:d7:89:
16:9a:66:ff:18:72:5d:16:54:a0:53:05:4c:09:b6:73:39:15:
be:e0:09:24:2f:61:f9:41:59:4b:43:05:26:19:1e:71:89:c2:
ca:72:c7:76:c9:6e:62:5e:fc:57:dc:34:a8:b7:2d:f2:95:62:
bb:8a:3a:af:a6:f3:ee:e4:68:d7:4f:8b:2b:ed:b4:47:ef:62:
3a:50:1e:79:25:28:6d:97:5f:22:57:b3:70:9f:ad:35:72:92:
e0:f1:ee:42:d1:36:bd:5a:f4:b2:a6:4e:b8:9d:5e:f9:f1:69:
e1:c5:f9:f7:1d:09:05:b3:25:03:17:a8:33:be:ec:a0:75:bc:
2c:7e:e3:69:a3:b0:0a:c0:34:9d:f4:0d:84:21:43:ab:0f:db:
0a:b2:c7:3e:62:a9:34:01:6c:08:4f:ad:5d:c3:af:e5:01:8f:
a8:94:9d:86:d9:ff:23:a9:cf:c1:50:e8:bd:a1:7b:01:3a:ad:
d8:78:75:0b:98:97:ec:4c:68:1f:05:7d:24:c6:f8:3f:7d:cf:
56:a0:a2:5a:0b:7d:bd:1f:81:9c:53:7a:bf:3d:ef:af:4a:01:
5c:16:c6:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:43 2024 by rpki-client on console-ams.rpki-client.org