Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/ZiEB8mfmrF-k6sfts04gujHDV24.roa
File: ZiEB8mfmrF-k6sfts04gujHDV24.roa (raw, json)
Hash identifier: djmTNAm+F54iXazpgew2vLPG9LweFnptEQ2gmlxl188=
Subject key identifier: 66:21:01:F2:67:E6:AC:5F:A4:EA:C7:ED:B3:4E:20:BA:31:C3:57:6E
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 0563E763
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/ZiEB8mfmrF-k6sfts04gujHDV24.roa
Signing time: Sat 01 Jan 2022 15:07:17 +0000
ROA not before: Sat 01 Jan 2022 15:07:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13213
IP address blocks: 85.203.46.0/24 maxlen: 24
85.203.22.0/24 maxlen: 24
85.203.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90433379 (0x563e763)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=662101f267e6ac5fa4eac7edb34e20ba31c3576e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:14:91:09:aa:22:b7:b3:8d:a0:ec:67:15:df:
2b:23:d4:01:79:b8:e7:5b:4f:76:78:3e:12:20:7f:
77:16:a3:64:f3:43:12:c9:79:2d:e6:99:8c:08:be:
03:5d:3b:87:0e:e7:8f:36:db:d2:90:6a:82:79:0b:
7d:f2:1f:5f:17:85:b2:bd:ef:8c:cf:e2:15:6a:7c:
12:d9:6f:f2:0d:62:1d:d9:82:b1:cb:9e:fc:38:93:
3b:91:16:b2:ad:42:65:99:ca:ee:e6:37:47:d9:33:
fb:41:eb:bf:5f:47:5c:a7:bf:ec:66:0e:5b:9e:63:
1e:56:a0:03:2e:bb:d2:64:4c:16:c7:42:be:53:99:
f5:56:1a:0c:e3:c5:69:00:31:06:64:a3:0d:b7:91:
22:76:81:e7:6e:da:3a:f0:e3:dd:8d:11:18:2e:a5:
54:0d:14:fa:9e:89:c0:1e:ab:9c:ac:63:b5:96:56:
a9:d0:ae:d0:7c:b5:1c:74:c4:b2:03:ee:12:a2:b7:
a8:e4:3d:59:57:a5:87:5e:fe:16:fa:42:12:a2:35:
3f:eb:32:00:ff:ae:29:4b:9e:c1:c3:07:0d:4f:80:
b7:2a:ef:08:c9:88:44:0f:da:1b:aa:4a:6d:d8:89:
06:a3:1d:9f:d0:42:85:94:ea:d6:85:77:36:e5:f0:
87:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:21:01:F2:67:E6:AC:5F:A4:EA:C7:ED:B3:4E:20:BA:31:C3:57:6E
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/ZiEB8mfmrF-k6sfts04gujHDV24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.22.0/24
85.203.34.0/24
85.203.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:65:23:f9:29:29:62:71:40:93:f8:56:2b:b0:7f:dc:b6:0c:
7b:75:dd:b6:fc:ef:1b:e7:74:6f:42:b8:df:9c:5e:82:bc:e9:
0c:67:20:10:16:57:17:1a:b8:a8:bf:7d:45:f4:0e:a1:50:43:
00:0c:f4:e5:bd:3e:9c:09:98:eb:e5:b7:1d:4d:a5:3c:91:c9:
c0:db:99:e0:c4:07:8b:33:2d:63:5d:11:1d:13:e8:22:f6:58:
b7:4a:8f:ca:7f:79:c3:8e:ef:31:e7:05:81:22:8e:c2:db:14:
33:df:cc:a0:9c:60:16:3c:24:a1:c6:13:3c:15:aa:7b:45:81:
69:3f:97:35:48:48:de:fb:fa:73:38:02:b5:bc:c0:86:f2:14:
dd:98:b8:a8:72:e7:27:a4:3d:6d:fb:30:25:41:93:ff:cf:ec:
60:b4:06:d8:e1:91:f4:d2:f5:88:a6:69:3a:3f:f4:52:f1:99:
4b:b0:8c:fe:8e:7b:f1:78:81:c4:f3:d8:be:dc:e6:82:75:f6:
64:16:ae:84:3d:f1:5b:7d:a9:00:70:58:b1:92:a3:54:28:9b:
9f:a8:73:42:b4:71:87:5b:99:7f:a6:3f:5e:23:92:1b:80:59:
2a:1e:af:39:18:0e:18:fa:37:05:7b:22:81:80:d8:8d:01:60:
a6:6c:b8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org