Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/7ZWOMYeFnuf1-9VdQOjrDjUTmRo.roa
File: 7ZWOMYeFnuf1-9VdQOjrDjUTmRo.roa (raw, json)
Hash identifier: sCUONNQVefp0+lcZkThB5/PFlvoMLu15+iN4MTD8YCo=
Subject key identifier: ED:95:8E:31:87:85:9E:E7:F5:FB:D5:5D:40:E8:EB:0E:35:13:99:1A
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18BB8288
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/7ZWOMYeFnuf1-9VdQOjrDjUTmRo.roa
Signing time: Tue 15 Feb 2022 13:23:47 +0000
ROA not before: Tue 15 Feb 2022 13:23:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44541
IP address blocks: 185.142.142.0/24 maxlen: 32
2a06:7a06::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414941832 (0x18bb8288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 15 13:23:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed958e3187859ee7f5fbd55d40e8eb0e3513991a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3e:51:b4:dd:15:1d:44:07:bc:d6:6e:77:e2:
69:65:f5:02:43:c9:15:57:eb:7e:c4:49:f9:d1:54:
90:3a:20:12:e0:53:dd:f2:42:79:37:eb:2b:42:de:
85:d8:48:20:4d:d1:07:53:de:9f:ae:5c:21:62:7e:
f7:99:1c:bc:b2:45:9b:4b:a0:e4:72:fe:a4:bc:3b:
a8:c1:65:42:a8:ca:90:10:d2:d6:53:39:09:87:6f:
98:95:c4:7b:d1:22:31:25:16:18:7d:7e:53:13:02:
bf:c8:55:56:3c:c3:cd:4b:a7:3e:b7:a1:1c:23:eb:
b9:a3:bb:08:d7:21:1c:a2:a1:61:84:27:c5:d6:e0:
19:75:03:fe:d0:03:33:0f:da:79:aa:74:dc:8a:a3:
da:ea:ea:34:e2:4d:ee:45:2c:c3:fd:70:55:64:0f:
21:42:93:d6:21:0a:23:99:ee:47:8a:2e:83:fe:40:
4a:2e:e5:c8:0d:f2:cf:c5:55:87:0b:f0:c2:f7:b1:
51:15:a5:46:76:39:e1:f0:ee:0b:b0:4a:d2:2f:69:
2b:9d:fd:95:8b:f2:85:91:90:79:12:4b:7e:66:73:
be:b5:25:c6:1a:9e:e1:d9:66:55:35:59:40:d9:19:
2e:03:a8:dd:54:18:4c:f9:14:32:83:1b:75:38:26:
34:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:95:8E:31:87:85:9E:E7:F5:FB:D5:5D:40:E8:EB:0E:35:13:99:1A
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/7ZWOMYeFnuf1-9VdQOjrDjUTmRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.142.0/24
IPv6:
2a06:7a06::/48
Signature Algorithm: sha256WithRSAEncryption
2c:eb:22:5b:3a:29:f0:0e:cd:16:c3:f2:c6:50:ce:fa:2f:0b:
19:15:e3:46:14:c1:69:1d:d3:27:75:c4:10:a8:aa:e7:ec:1d:
4f:a4:59:aa:54:74:42:7a:62:18:7e:8e:74:bd:94:6a:7b:3c:
c8:fb:19:76:c3:83:24:17:95:3e:34:02:f5:45:60:2a:12:fd:
b8:38:a6:2a:a5:13:54:f9:3d:ef:24:93:a5:46:3d:a8:ef:15:
c9:15:6a:f2:62:19:b0:b3:c5:2f:9d:7c:03:e5:dd:44:1c:36:
98:55:a9:80:e1:0c:e6:9f:22:b5:aa:ff:9a:a6:cd:64:f3:08:
13:ab:50:fc:c5:f1:0e:8c:82:11:a0:25:55:a0:cf:f8:ed:83:
47:a9:a7:ad:ae:8f:79:86:03:7d:89:aa:8b:ad:a1:00:70:d1:
97:94:1f:63:b9:48:cf:4e:fd:bc:8b:45:5f:2c:7d:05:d0:33:
1b:a1:0a:80:48:75:ac:ae:db:8b:4a:d9:44:0d:83:54:1a:02:
05:18:4c:4b:a3:f3:da:e0:81:d5:60:d9:08:11:97:0c:60:fb:
c5:0e:f5:ed:42:df:c0:b4:ad:1d:8d:cf:5f:22:5b:5e:f7:c0:
67:a7:2b:c0:53:26:cc:8d:2a:57:94:54:29:47:27:ae:6d:a2:
53:a1:86:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org