Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Jpc9D5o6pgYYZG_ZylfcOzahSIc.roa
File: Jpc9D5o6pgYYZG_ZylfcOzahSIc.roa (raw, json)
Hash identifier: 9D+UMiMeeQJhAQcXjCVn9vP4b5Q8IFthj5srPkeZXhI=
Subject key identifier: 26:97:3D:0F:9A:3A:A6:06:18:64:6F:D9:CA:57:DC:3B:36:A1:48:87
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0AD72BBE
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Jpc9D5o6pgYYZG_ZylfcOzahSIc.roa
Signing time: Wed 06 Apr 2022 10:34:31 +0000
ROA not before: Wed 06 Apr 2022 10:34:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 85.133.194.0/24 maxlen: 24
85.133.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181873598 (0xad72bbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Apr 6 10:34:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26973d0f9a3aa60618646fd9ca57dc3b36a14887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:97:46:ba:9f:a4:12:13:fc:f3:f1:35:bb:ad:
9a:a6:4b:87:c3:2f:0a:13:77:41:fe:ec:80:69:b6:
a0:83:29:49:fc:f0:18:8e:94:57:32:40:0e:87:d1:
3f:90:76:e2:3f:aa:09:9d:c5:31:f2:df:fa:55:37:
61:54:1c:0e:eb:b1:63:89:47:7e:71:62:b0:f5:2e:
3d:51:ce:87:ba:96:4e:06:4f:e4:16:7b:2c:2a:21:
5b:58:b1:1b:25:09:1c:a9:bd:57:cc:b7:c6:59:60:
3e:57:31:63:36:ab:5b:88:39:3c:db:c1:d1:c1:ff:
02:15:89:23:22:5f:65:31:c9:1d:20:a7:f2:c7:f5:
51:c6:b0:db:2d:ae:a1:f6:b7:a6:cc:68:ee:b9:3c:
49:e2:c3:60:e6:bb:8e:a0:7a:3b:8e:b4:66:91:fc:
1a:51:03:ec:18:1a:60:14:4e:1e:69:f9:2f:9a:20:
74:ec:25:e7:46:e7:22:cb:14:a7:8a:7a:9d:36:5a:
41:d4:02:b4:77:0a:78:49:14:97:48:14:5c:f6:b6:
8b:f3:14:08:02:f9:0a:fa:ce:2a:24:66:34:54:8a:
76:a6:d7:ed:fe:60:aa:df:bf:f1:d2:bd:a9:7f:8e:
a5:46:56:30:84:20:ab:4e:3b:07:ab:2d:1f:d8:6e:
25:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:97:3D:0F:9A:3A:A6:06:18:64:6F:D9:CA:57:DC:3B:36:A1:48:87
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Jpc9D5o6pgYYZG_ZylfcOzahSIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.194.0/24
85.133.238.0/24
Signature Algorithm: sha256WithRSAEncryption
06:bf:a5:66:3d:9e:b3:21:07:52:eb:e3:c2:32:da:3c:1b:f9:
da:15:53:7e:b7:01:f2:6e:98:f8:d5:cd:5d:9b:ad:3e:d6:9d:
92:75:00:b0:bd:17:2d:d0:41:16:09:8c:ec:ce:fc:a0:61:cf:
cc:40:74:fb:82:97:3a:ba:41:da:93:47:6a:bb:b7:47:20:4a:
1b:ce:72:f6:99:cc:cc:78:99:24:49:b4:a1:45:75:d8:29:5a:
09:01:e7:a7:02:37:14:d2:3a:05:31:79:a9:3c:11:3f:6e:15:
ea:49:8d:ef:1a:7f:8e:83:d5:8c:7b:24:c9:5c:ff:0e:9b:c6:
30:5f:75:7f:2d:06:b4:ae:40:a2:fe:0f:7a:78:87:dc:2f:89:
0e:f6:3c:03:0b:f4:6e:e9:66:bd:a6:cb:d3:9c:05:38:f9:89:
64:b9:38:7f:a0:2f:ed:a8:8c:d9:84:f5:e8:6a:ff:f5:4d:b0:
90:4b:86:07:52:d5:35:7f:14:e5:a1:34:13:ac:a5:38:7f:5b:
1f:f1:f5:da:25:66:cc:99:4b:ca:b7:2d:a6:0f:15:c8:e5:5a:
3d:e8:1f:a9:73:94:a6:47:14:45:24:ca:e6:20:4c:75:cd:b5:
50:1e:df:cc:fa:4e:cb:e8:46:64:db:bc:09:02:69:74:e0:f6:
e5:66:4c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org