Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/za2XOGlgWKyLpIgEIsOt71vEAmo.roa
File: za2XOGlgWKyLpIgEIsOt71vEAmo.roa (raw, json)
Hash identifier: D8X/Qxlr3I4u7BwU0TjnlwpKX1EN5nHVA+BGdefZwpo=
Subject key identifier: CD:AD:97:38:69:60:58:AC:8B:A4:88:04:22:C3:AD:EF:5B:C4:02:6A
Certificate issuer: /CN=cc4491558cd24875db524273410502fdae3a6782
Certificate serial: 343DC42E
Authority key identifier: CC:44:91:55:8C:D2:48:75:DB:52:42:73:41:05:02:FD:AE:3A:67:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zESRVYzSSHXbUkJzQQUC_a46Z4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/za2XOGlgWKyLpIgEIsOt71vEAmo.roa
Signing time: Sat 01 Jan 2022 14:58:28 +0000
ROA not before: Sat 01 Jan 2022 14:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47949
IP address blocks: 185.7.45.0/24 maxlen: 24
92.43.24.0/21 maxlen: 21
2a02:29c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 876463150 (0x343dc42e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4491558cd24875db524273410502fdae3a6782
Validity
Not Before: Jan 1 14:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdad9738696058ac8ba4880422c3adef5bc4026a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f5:f9:2e:a9:81:c5:d8:c4:9e:87:f6:6f:d7:
2a:b3:a3:e0:f1:9c:33:3e:e5:47:18:db:16:db:f4:
c9:68:31:aa:85:20:c5:8e:1d:05:76:1c:07:40:8d:
fa:a1:44:5a:fd:20:36:e3:98:7b:27:7d:7b:98:d8:
d0:c0:95:8e:9f:bb:37:d7:12:e6:cc:cb:4e:6f:ce:
62:08:1a:5b:a9:5c:6c:96:dc:0c:4c:fb:5e:08:22:
11:f0:e0:1e:5c:9f:fe:78:29:ef:8f:83:9a:3a:83:
10:76:09:d6:4a:22:11:e3:7d:5c:6a:71:cc:c5:46:
b2:ab:08:23:10:1e:e8:82:2b:2c:5a:57:fa:96:e1:
7b:f3:46:12:14:80:62:cb:76:2c:0c:39:12:c5:33:
4c:eb:3f:21:f8:be:d4:8e:b7:37:ca:f9:da:ee:4c:
e9:97:b5:a8:4f:11:36:56:41:9e:3a:69:11:f8:74:
37:a8:00:5b:9a:e4:de:9b:5f:ea:17:6b:56:65:20:
63:89:85:c8:3b:c6:92:52:1e:c8:34:dc:f0:3c:cd:
70:2a:cb:30:c4:1d:a6:73:50:24:e7:64:d8:10:eb:
b6:95:ed:b8:07:08:78:db:a8:b9:af:e9:8a:f3:ea:
57:17:d7:e2:42:cc:4e:67:56:62:6b:c6:60:e5:20:
73:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:AD:97:38:69:60:58:AC:8B:A4:88:04:22:C3:AD:EF:5B:C4:02:6A
X509v3 Authority Key Identifier:
keyid:CC:44:91:55:8C:D2:48:75:DB:52:42:73:41:05:02:FD:AE:3A:67:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zESRVYzSSHXbUkJzQQUC_a46Z4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/za2XOGlgWKyLpIgEIsOt71vEAmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/439efe-f130-4931-931c-c8d5c04e3d43/1/zESRVYzSSHXbUkJzQQUC_a46Z4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.24.0/21
185.7.45.0/24
IPv6:
2a02:29c0::/32
Signature Algorithm: sha256WithRSAEncryption
b9:d0:50:82:4e:23:47:1b:4b:ff:2f:50:3f:31:9e:1e:af:fa:
15:60:35:9b:67:39:3e:94:78:f7:11:76:61:68:93:27:d5:11:
61:2a:fe:cf:11:99:9e:bd:da:63:c1:75:ec:90:9e:c4:17:ab:
f2:2a:0d:7b:32:ee:2a:db:a8:04:5a:8a:cd:23:b5:91:d4:ef:
b1:61:31:e2:f9:73:dd:08:e5:20:6f:ea:96:55:e1:8c:f7:15:
c7:f1:7f:f2:d0:7b:a1:05:79:b9:d7:5f:95:49:19:a5:26:b2:
5a:b1:53:76:4d:08:e9:76:5f:f1:42:e5:c8:a1:e3:f7:58:88:
89:aa:28:09:ea:d2:5a:d2:06:b5:f1:0f:e6:44:d1:2d:83:e2:
5e:50:29:99:76:ce:39:f7:79:e1:cc:4b:1f:df:27:66:27:46:
12:dd:3d:e0:dd:0d:f3:bc:a4:be:b4:92:77:0a:b6:36:fa:70:
c0:03:42:01:ec:69:90:c9:43:29:6a:c9:72:07:08:ba:7e:c5:
2a:69:0a:c5:1c:08:37:14:08:62:30:bf:e3:af:79:49:c3:c4:
6f:49:0a:c1:30:17:5f:de:89:a3:9a:ff:9d:70:64:fc:8f:6b:
0c:e6:5c:d9:bd:a1:3d:ae:46:7b:b9:4e:e4:bb:fd:0e:cd:6d:
05:b0:d5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:45 2023 by rpki-client on console-ams.rpki-client.org