Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/sZSLvaz296GPwhFApaoXcmNQ-CQ.roa
File: sZSLvaz296GPwhFApaoXcmNQ-CQ.roa (raw, json)
Hash identifier: Zon8oDdgI3Sk5ipInUxzpi4OYMtg1s9x5QMH8LAo2QE=
Subject key identifier: B1:94:8B:BD:AC:F6:F7:A1:8F:C2:11:40:A5:AA:17:72:63:50:F8:24
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01830E11DE10DA4BB6DA5C8D6ACE1DE81B9A
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/sZSLvaz296GPwhFApaoXcmNQ-CQ.roa
Signing time: Mon 05 Sep 2022 14:33:15 +0000
ROA not before: Mon 05 Sep 2022 14:33:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.255.56.0/23 maxlen: 24
185.240.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0e:11:de:10:da:4b:b6:da:5c:8d:6a:ce:1d:e8:1b:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Sep 5 14:33:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1948bbdacf6f7a18fc21140a5aa17726350f824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:21:c1:b2:fa:82:98:48:2c:ea:41:b1:22:b9:
ab:5e:0e:74:8a:24:87:09:de:8d:5d:23:4d:80:b5:
b6:8e:20:f3:1a:d5:bb:b5:55:3b:4b:64:e2:40:11:
76:eb:33:13:d5:eb:fe:2e:e2:30:1b:1b:fc:7d:b9:
94:92:4f:08:c8:39:b3:e3:f0:9f:a7:d7:30:de:18:
23:01:b0:ac:12:f2:24:d4:71:c9:d9:71:fb:eb:ef:
cf:a6:70:f1:c0:bc:9e:d3:a4:cd:6f:7b:21:36:93:
cc:07:f7:08:e6:09:0f:88:a0:7d:95:b0:2d:fe:ca:
06:0f:a8:cc:09:c2:8b:f4:ab:fc:0c:bd:64:7e:49:
50:7f:1a:d3:65:83:b2:ec:bb:07:47:bb:c1:a4:28:
f1:69:dd:9c:dd:96:fa:05:9f:2d:96:10:5d:16:4b:
63:32:f2:7f:30:22:09:14:13:f3:dc:b6:cb:c4:98:
6d:bd:ff:aa:44:1c:c1:bc:7e:35:53:4c:52:cb:51:
5b:4d:c7:96:bd:13:d2:06:7c:e4:59:3a:44:3b:31:
f2:da:d7:fd:6c:67:63:90:bd:30:c6:61:0b:fa:a7:
55:ca:d0:60:30:13:9d:7f:bc:de:64:56:46:27:48:
c3:b3:0c:1e:b8:6a:92:98:b3:78:12:dc:d1:e2:d8:
4e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:94:8B:BD:AC:F6:F7:A1:8F:C2:11:40:A5:AA:17:72:63:50:F8:24
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/sZSLvaz296GPwhFApaoXcmNQ-CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.134.0/23
185.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
31:d1:60:39:b0:53:1a:20:b8:dc:9d:cf:06:25:bf:fd:54:4f:
aa:85:2a:4b:9f:c0:7f:47:49:63:aa:3f:02:d5:41:83:15:4e:
50:7e:dd:f5:46:29:44:53:5c:90:0a:eb:9f:9e:6d:25:e0:18:
db:45:9a:75:78:ea:52:63:e9:46:56:2f:0f:34:9b:cc:0b:f9:
92:52:19:e4:56:64:a6:78:dd:22:f8:8a:40:76:e7:e1:35:a6:
c8:2d:fa:1d:c1:13:44:3c:33:16:e1:89:0a:ce:8c:96:d7:75:
36:79:c9:e3:c8:0d:0e:f1:8c:ff:63:b1:28:01:71:73:5a:8c:
11:18:e9:bf:7a:25:3d:e5:6e:9f:ba:87:8f:59:f8:4a:10:72:
4e:6d:b6:d4:a9:82:19:f8:99:e9:34:d2:33:e5:98:21:3c:e4:
e1:c4:b5:0c:d5:33:6e:62:c2:4a:31:36:e6:eb:d1:e6:6b:45:
8a:a4:58:1c:52:fa:6c:a9:af:4a:4a:7e:41:78:50:ea:b6:40:
2d:e6:59:bc:52:e8:84:dc:f7:e7:2f:32:0a:b7:6f:38:21:7b:
96:e9:40:48:22:f8:a4:ab:e9:e4:f9:e0:24:a7:77:aa:e1:90:
f1:5e:81:37:02:f9:28:46:1f:cd:1b:c2:25:dc:4c:42:55:79:
79:39:f5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org