Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/58PAL6knVbznncsCMHiio82ctaQ.roa
File: 58PAL6knVbznncsCMHiio82ctaQ.roa (raw, json)
Hash identifier: ZFLYpZTNqhVHjO55Ha94sUxjHm5bg7zWiub3LgiEFH8=
Subject key identifier: E7:C3:C0:2F:A9:27:55:BC:E7:9D:CB:02:30:78:A2:A3:CD:9C:B5:A4
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182F284C8279B653132B1ABA939B94304E9
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/58PAL6knVbznncsCMHiio82ctaQ.roa
Signing time: Wed 31 Aug 2022 06:09:24 +0000
ROA not before: Wed 31 Aug 2022 06:09:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 83.137.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:84:c8:27:9b:65:31:32:b1:ab:a9:39:b9:43:04:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Aug 31 06:09:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7c3c02fa92755bce79dcb023078a2a3cd9cb5a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ec:e3:12:a0:26:8c:30:b6:d9:0e:84:37:ac:
b8:2d:43:10:08:5e:59:18:40:6c:a1:44:6e:e8:d5:
f3:df:7e:c7:98:29:d5:14:14:11:e9:be:40:2b:83:
c6:93:37:db:8f:52:ca:68:ab:16:6c:87:06:8d:1b:
1b:8c:ef:b7:46:5b:53:7f:de:a0:18:02:38:90:87:
09:73:4b:b6:42:50:df:65:b4:fa:52:e1:4d:84:76:
a6:98:29:bb:99:9c:df:c3:83:f1:17:52:c7:cc:ba:
dd:1a:b7:22:90:d0:04:8e:31:6c:97:a2:73:99:25:
a3:3c:06:4a:19:6c:88:89:c4:81:9d:28:0e:25:b7:
d9:fa:1d:2a:f3:20:ac:61:8e:a1:33:c9:c8:85:21:
e9:ca:a9:7f:18:32:7e:2f:08:c7:f8:d2:43:29:5e:
fc:9f:c4:a4:0a:4f:d3:75:66:15:14:4d:a1:e3:a8:
92:5f:f4:48:cc:2c:82:a9:8f:fb:bb:43:4a:85:9a:
2e:1e:dc:7d:88:ab:d1:54:6c:5f:09:00:44:b5:1e:
f2:68:45:37:fa:db:55:53:d2:c4:2d:d0:e5:61:12:
71:85:da:00:05:fa:a8:a0:09:98:1d:83:76:55:a6:
08:75:5d:d0:3f:7a:78:e0:bc:4c:7a:48:62:b9:f8:
a2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C3:C0:2F:A9:27:55:BC:E7:9D:CB:02:30:78:A2:A3:CD:9C:B5:A4
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/58PAL6knVbznncsCMHiio82ctaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.155.0/24
Signature Algorithm: sha256WithRSAEncryption
07:4b:1f:b3:2e:0e:b2:5a:0f:b3:f6:5e:b2:10:79:ff:3c:71:
eb:f6:75:79:38:0f:d5:83:5f:a9:19:58:b1:a4:e8:24:6e:61:
c1:4b:d5:cb:b0:45:d2:a5:a0:9f:33:49:5a:87:45:65:63:2f:
08:51:5e:bb:a3:d6:b6:43:a5:41:9d:f2:31:7b:24:17:c0:ba:
62:4e:01:d3:32:26:c3:c8:5f:6e:d0:dd:7b:0a:13:05:26:cd:
c8:cc:8d:a8:d9:6b:b5:bc:72:e9:0e:b4:fb:cc:09:29:ad:4d:
85:1a:17:18:4b:68:7d:d9:d4:0d:18:d7:e8:12:09:a9:78:ee:
64:5a:71:e5:2e:1f:86:00:10:6f:ee:0c:78:21:4d:fb:29:fe:
1f:81:a2:75:6c:fc:d8:cc:8a:7b:7e:c1:15:0b:a5:f2:9b:65:
34:55:7d:1f:d4:62:28:b2:c8:84:ff:d4:18:b0:2f:29:cb:b4:
41:7d:50:5f:19:16:c4:e8:1b:94:ac:1d:f5:56:a3:50:e8:64:
25:b2:72:e7:12:80:35:85:d0:0d:5b:57:4a:5d:3c:22:0b:3c:
3e:1c:a2:72:21:13:b9:a1:92:e3:16:85:14:f6:32:66:02:6d:
81:a1:3d:65:dc:d5:71:6d:75:96:39:5f:11:d2:b5:6a:00:b7:
5b:3f:bf:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org