Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/ZtHUxkudoYVN6W-62w-7kanIQHY.roa
File: ZtHUxkudoYVN6W-62w-7kanIQHY.roa (raw, json)
Hash identifier: XSZWXaa4UPr+VD2Fl3cPMhSFq8bliiGRNoCFOi4H0vY=
Subject key identifier: 66:D1:D4:C6:4B:9D:A1:85:4D:E9:6F:BA:DB:0F:BB:91:A9:C8:40:76
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 0184441FDE8CA5C0E2776C304DB96CE88ABF
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/ZtHUxkudoYVN6W-62w-7kanIQHY.roa
Signing time: Fri 04 Nov 2022 19:30:49 +0000
ROA not before: Fri 04 Nov 2022 19:30:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208689
IP address blocks: 185.198.232.0/24 maxlen: 24
2a13:6600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:44:1f:de:8c:a5:c0:e2:77:6c:30:4d:b9:6c:e8:8a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Nov 4 19:30:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66d1d4c64b9da1854de96fbadb0fbb91a9c84076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a5:30:bf:e7:21:31:c7:d9:9d:20:7f:78:6e:
cb:38:a3:1e:4e:6b:cd:7c:05:b7:62:fd:45:96:8d:
1b:f7:89:a7:17:e8:2f:d1:9f:41:7b:8d:75:19:ee:
df:37:9d:f7:61:6c:ab:34:e0:ce:ac:38:2f:08:53:
43:62:47:78:cd:29:53:81:b5:45:b5:14:44:04:c1:
27:d7:4c:94:80:82:7a:94:ca:db:02:d2:eb:8c:d5:
84:a4:ad:10:d1:2c:e6:0e:5e:c7:0b:07:b7:3f:fc:
95:db:7f:56:c6:ab:9b:05:62:dd:cd:7c:9c:27:f9:
bd:69:2c:87:68:97:cc:04:9c:96:6b:cf:55:dd:4f:
40:7c:82:05:6f:a8:ab:7e:92:b2:38:ef:5f:cb:bd:
8b:27:88:69:4f:a6:44:54:41:74:f2:27:dc:e2:d3:
85:ec:ac:e5:3a:ea:4a:c0:91:28:44:d9:63:4e:82:
75:f5:b0:a2:bd:6f:94:fd:03:67:52:f9:2e:b3:d0:
12:e1:1a:a1:ba:9b:f8:55:1e:37:9b:45:06:86:51:
97:66:6a:bb:2d:ea:17:2f:71:8c:b0:55:88:7d:a3:
8b:d5:75:cc:3b:70:66:a4:e3:c3:01:5d:39:55:79:
bf:17:ce:5c:ea:3c:90:02:9d:c4:c3:70:2a:8a:2a:
ba:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D1:D4:C6:4B:9D:A1:85:4D:E9:6F:BA:DB:0F:BB:91:A9:C8:40:76
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/ZtHUxkudoYVN6W-62w-7kanIQHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.232.0/24
IPv6:
2a13:6600::/29
Signature Algorithm: sha256WithRSAEncryption
c7:26:b3:b6:b2:13:4b:49:0a:5d:04:ec:de:15:c6:92:fd:fa:
ce:75:ec:7e:19:6d:03:5c:28:3d:db:94:97:85:4d:9a:a1:47:
a0:5f:c3:ea:00:b7:2f:64:d2:60:fc:73:8a:ab:16:b4:c1:7c:
9a:31:c9:c7:d4:7a:ac:6c:51:bd:a6:97:03:ca:9e:3d:87:3d:
0a:a9:09:01:9e:49:a1:15:a5:ac:03:6a:44:67:8a:33:7a:1a:
e6:d3:19:01:fb:14:92:a9:80:7d:61:60:00:43:f8:fc:a1:ba:
6d:71:1d:74:38:1f:f1:ee:4b:58:08:3f:03:20:94:e7:df:66:
12:fd:fd:70:c5:96:64:03:ff:4f:3d:62:12:0d:bf:92:28:e9:
46:9b:bd:cd:5a:09:85:07:58:28:d6:cf:97:44:eb:5f:98:c5:
e7:a2:86:33:ed:4d:f0:2f:6a:c7:c5:9c:2b:e9:13:e0:c3:d5:
0e:b0:58:fb:fa:90:bf:bf:d3:0d:6b:76:d7:d3:e4:22:16:7d:
19:45:2f:a1:94:7d:5c:ba:f5:f0:71:a0:03:f0:57:a2:3d:f3:
79:ab:5a:be:72:ab:31:e7:f7:58:e6:e0:ad:5b:68:5b:9c:da:
07:2a:04:ce:a0:e7:f3:47:d1:bb:a7:16:87:c0:e7:3a:87:ec:
c6:3a:a7:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net