Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/PZ_oUCC5q3sCCtyFRmuKf3MqHc8.roa
File: PZ_oUCC5q3sCCtyFRmuKf3MqHc8.roa (raw, json)
Hash identifier: K03CMbsYmEuA64Osr23djeSbjLfGtfxiomVq5hplzBs=
Subject key identifier: 3D:9F:E8:50:20:B9:AB:7B:02:0A:DC:85:46:6B:8A:7F:73:2A:1D:CF
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17C4B1D7
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/PZ_oUCC5q3sCCtyFRmuKf3MqHc8.roa
Signing time: Sat 01 Jan 2022 04:54:21 +0000
ROA not before: Sat 01 Jan 2022 04:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58879
IP address blocks: 94.140.20.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398766551 (0x17c4b1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d9fe85020b9ab7b020adc85466b8a7f732a1dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:95:52:02:8a:e6:94:44:8d:c9:7c:90:6e:ce:
6d:87:9b:04:27:75:f1:5c:73:5d:95:10:07:c0:b2:
ef:8b:63:af:de:51:ac:6c:9d:9d:13:ba:c1:de:4f:
85:b9:3f:24:28:78:c7:65:e0:e4:93:bd:ec:7f:62:
48:cb:e7:38:59:19:41:67:29:15:45:25:61:73:16:
86:69:eb:de:5a:f6:ad:88:8f:71:32:63:5b:32:20:
3e:c5:32:90:4a:45:10:b6:10:5e:67:bd:5e:42:ae:
27:24:ec:85:ff:60:6e:bb:6e:52:43:47:b5:dc:b0:
19:5b:58:a4:ee:fb:5b:31:49:70:6b:cb:dd:85:d1:
e0:43:74:b3:37:7e:9b:e8:1f:2a:40:ca:b9:3b:f1:
bb:1c:be:8a:e1:f6:b1:29:cc:79:c3:bc:22:79:1e:
c5:3d:d6:c6:34:b9:68:46:3e:1e:88:52:82:32:95:
7d:d2:fc:c5:1c:c4:a5:bd:f6:2f:a1:6a:87:8e:55:
62:d4:89:50:9c:fc:3f:b0:9a:80:de:59:c3:d3:b9:
f0:fe:dd:73:67:99:79:7c:e3:01:2b:ca:2f:4d:13:
7b:db:7b:fa:96:2e:92:26:2e:53:01:55:60:e0:2c:
64:53:64:fd:54:ec:84:6a:16:0d:75:df:c1:bd:a3:
bd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9F:E8:50:20:B9:AB:7B:02:0A:DC:85:46:6B:8A:7F:73:2A:1D:CF
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/PZ_oUCC5q3sCCtyFRmuKf3MqHc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.20.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:99:32:f1:b5:1e:44:1b:d5:6e:1d:17:8f:eb:30:b6:60:b4:
3d:bc:ec:66:e9:50:3c:ba:bd:78:ec:8e:58:42:dd:4c:62:39:
1b:9b:5a:f4:25:c2:c8:c4:cf:42:2c:84:14:22:be:30:c6:b9:
64:76:a5:71:77:22:44:ba:7d:1d:86:58:7d:e7:68:7b:c1:8d:
87:2e:47:69:51:6d:3d:7d:cc:4b:6f:26:cc:d8:69:b6:8e:7b:
ad:4e:4d:b2:91:c4:13:b7:50:68:4d:b2:b2:c4:e4:c6:eb:ed:
cc:f3:11:b6:b6:c6:ad:ab:aa:c0:ac:7f:a6:df:c8:65:2d:b9:
1c:48:67:ef:b1:57:f2:73:3c:d1:7d:7c:9a:25:16:a9:6e:be:
3c:d5:de:53:10:cb:55:51:e3:2a:45:b4:4f:a6:3c:cb:ce:3c:
79:bf:88:41:24:c6:f0:7d:22:74:54:04:b2:33:f1:85:d5:de:
db:9c:03:c2:c2:95:67:6e:cf:7f:48:f7:8e:b6:84:3e:21:27:
e3:f2:c5:2e:e2:6a:59:55:5d:5c:37:4d:ec:52:92:fa:ee:ba:
52:e0:7d:93:6a:df:0b:1a:02:1c:a3:60:0b:42:5f:87:7b:0e:
9f:dc:74:1e:64:e0:57:57:2b:f0:d2:7c:1c:cb:ae:38:c9:f5:
f3:02:c6:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org