Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/zRu8DXjvqLdN_Ki69_PH3jBZc7s.roa
File: zRu8DXjvqLdN_Ki69_PH3jBZc7s.roa (raw, json)
Hash identifier: WmZn2EFS9EeHlsFlZpHNx3LSb0WMi19hoyoy71rFsVY=
Subject key identifier: CD:1B:BC:0D:78:EF:A8:B7:4D:FC:A8:BA:F7:F3:C7:DE:30:59:73:BB
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17FB0DEB
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/zRu8DXjvqLdN_Ki69_PH3jBZc7s.roa
Signing time: Sat 01 Jan 2022 04:54:57 +0000
ROA not before: Sat 01 Jan 2022 04:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 195.85.42.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402329067 (0x17fb0deb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd1bbc0d78efa8b74dfca8baf7f3c7de305973bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:b4:e2:c1:4c:53:85:93:ed:af:8a:58:eb:
11:da:1c:68:0c:be:a9:b0:80:af:3a:22:fa:24:ec:
f0:f2:ff:d7:06:3a:0d:7f:a1:ce:64:da:12:3a:82:
1d:a5:ad:a6:32:05:e6:19:1a:75:a1:e7:3b:d0:1f:
88:63:8e:f5:c6:8d:b7:ea:cf:59:62:91:33:bb:c2:
18:ca:af:2a:f7:f2:a3:55:4c:32:68:e9:c3:20:d6:
63:9e:a9:26:6e:35:e3:9e:ad:f2:5f:c9:9c:99:71:
1c:bc:0c:a3:fe:a1:06:2e:5d:7f:23:26:5c:9c:e1:
13:19:b7:ae:5c:7f:91:02:4a:9e:c6:d8:a7:80:44:
fc:e9:d9:08:84:26:ca:74:a6:bd:e5:4e:b0:9a:b1:
93:c4:39:13:c7:40:70:01:25:c3:0c:6d:b9:43:9d:
a8:fb:96:c9:99:d2:d1:37:90:1b:44:1b:df:23:1c:
f2:30:5e:90:04:16:e7:9a:c7:4c:34:7c:dc:fa:7a:
86:25:5b:39:08:a2:13:8b:12:91:84:52:78:7b:81:
2e:06:a6:10:9a:8c:2c:f5:ae:fa:41:fd:54:b6:5d:
80:51:cc:bf:7c:3b:ad:41:f8:13:a1:96:73:8f:1d:
f5:d9:2f:7e:63:6b:c2:d3:e3:3f:23:e0:05:88:ce:
6f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:1B:BC:0D:78:EF:A8:B7:4D:FC:A8:BA:F7:F3:C7:DE:30:59:73:BB
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/zRu8DXjvqLdN_Ki69_PH3jBZc7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.42.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:65:07:53:96:bf:8a:39:4d:7b:7c:23:8f:a3:c7:19:17:93:
c4:3d:b6:98:c0:66:1b:0b:18:5e:b6:56:17:00:52:bf:43:64:
0a:36:d8:d5:67:85:40:f7:b8:df:94:64:13:6c:37:9d:26:02:
85:af:66:4b:8a:ee:cc:a1:2c:64:de:f5:1f:ba:ab:96:af:53:
c0:d7:dd:c7:c7:ef:e5:b2:fa:4e:d1:a7:66:4b:07:52:5d:32:
67:6d:9a:a4:6c:f3:f3:ec:58:44:70:d0:51:70:0d:8c:8b:90:
7f:fb:4a:df:58:fd:05:ea:16:b8:5a:ed:50:9c:cc:9f:c0:c5:
fa:64:4d:54:b3:6d:d7:34:74:f8:2c:a4:38:10:fa:5b:47:09:
9e:e0:f8:bd:6a:b2:2d:22:b7:18:5d:46:ae:62:7e:71:56:d3:
3e:3f:71:cc:03:e5:a6:37:c6:50:af:21:a6:3c:2d:d0:ab:f2:
93:18:8a:ac:0c:32:e8:d1:59:04:0f:7e:7a:d6:3f:41:7d:1a:
0a:29:da:25:2c:d6:8d:1d:f5:99:25:2d:a5:4f:53:c9:13:19:
a6:90:d6:c1:3c:62:27:6e:65:4a:0c:12:e0:87:90:07:b7:ad:
57:58:87:7a:70:d5:42:64:7b:74:1c:d7:73:7d:28:d8:17:55:
74:76:e7:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org