
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/ZhnOsMQIkmSrjS-AL6TR696WcH8.roa
File: ZhnOsMQIkmSrjS-AL6TR696WcH8.roa (raw, json)
Hash identifier: KuelyPA2lvbSP3jZSUX9VRkbcJrFYl0M0bP2VAZLciE=
Subject key identifier: 66:19:CE:B0:C4:08:92:64:AB:8D:2F:80:2F:A4:D1:EB:DE:96:70:7F
Certificate issuer: /CN=35d2929f1652f958812d099a233f33ad3445bbfb
Certificate serial: 05D38BF3
Authority key identifier: 35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/ZhnOsMQIkmSrjS-AL6TR696WcH8.roa
Signing time: Sat 01 Jan 2022 05:58:38 +0000
ROA not before: Sat 01 Jan 2022 05:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206807
IP address blocks: 194.116.220.0/24 maxlen: 24
93.114.249.0/24 maxlen: 24
2a10:22c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97750003 (0x5d38bf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d2929f1652f958812d099a233f33ad3445bbfb
Validity
Not Before: Jan 1 05:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6619ceb0c4089264ab8d2f802fa4d1ebde96707f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8d:dc:ed:39:37:e7:45:8a:b2:1f:1e:b9:60:
97:69:5b:fa:93:74:6e:1c:7c:ad:80:b2:30:17:79:
3c:2d:b1:30:11:ef:f7:6b:15:dd:bb:b8:17:90:d8:
6f:95:ff:06:76:00:d4:5d:1e:be:17:2a:aa:7f:17:
58:c0:43:fc:cf:08:12:17:f9:01:73:78:04:c9:e1:
1b:40:03:ac:df:69:a2:21:c3:26:ec:19:52:fd:1b:
b8:b3:cd:3d:be:33:82:0c:bf:04:2b:8e:6b:bf:27:
15:a1:a8:ec:7a:e5:07:74:37:c5:1f:bb:22:f9:43:
c3:e3:05:47:0b:bf:fd:bb:06:46:f3:43:dc:e1:5d:
c6:33:d3:ed:76:00:05:b6:27:44:f8:61:2e:0f:28:
56:8f:e1:87:ff:44:4f:33:cd:0b:94:e5:39:7b:be:
32:b2:61:18:de:55:02:59:26:ff:d7:6b:a4:79:27:
cb:a8:29:51:95:8f:13:10:d4:37:d7:54:2b:86:8b:
8b:5f:c7:33:c2:0c:ab:74:b4:36:b3:a7:64:f3:bc:
af:85:5e:92:75:c5:2f:4a:80:5c:c0:1a:27:a0:8b:
c2:6d:e2:a5:5b:56:23:8f:f1:8f:83:dc:5c:69:26:
5c:3a:93:3e:0f:e2:87:3b:d2:82:d7:51:95:91:af:
8c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:19:CE:B0:C4:08:92:64:AB:8D:2F:80:2F:A4:D1:EB:DE:96:70:7F
X509v3 Authority Key Identifier:
keyid:35:D2:92:9F:16:52:F9:58:81:2D:09:9A:23:3F:33:AD:34:45:BB:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdKSnxZS-ViBLQmaIz8zrTRFu_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/ZhnOsMQIkmSrjS-AL6TR696WcH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/c49ca0-952e-495a-8eb1-b280d4c62745/1/NdKSnxZS-ViBLQmaIz8zrTRFu_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.249.0/24
194.116.220.0/24
IPv6:
2a10:22c0::/29
Signature Algorithm: sha256WithRSAEncryption
91:61:fa:c1:b8:0c:e6:7c:67:d6:ed:d0:9c:af:4e:75:fc:b5:
ff:94:46:01:db:b6:8d:68:48:c9:af:e7:3c:fe:05:b8:60:17:
6d:c7:90:22:76:94:4a:79:ef:c2:11:e0:ac:93:bf:6b:ee:2a:
36:70:0c:e4:33:cf:7a:f5:ef:f4:2b:db:f2:43:0f:24:95:80:
bd:b3:d7:42:a3:c7:84:60:00:4f:07:f6:0e:de:22:28:82:6d:
ed:39:9d:e6:31:4e:e9:8c:ff:51:d8:85:6b:ea:40:22:be:d1:
ce:a3:3d:fb:a6:b4:96:1b:5b:3a:eb:44:d3:e3:22:e8:f1:99:
a5:ae:90:cf:d5:ef:a0:af:53:29:17:58:a0:df:1e:b3:59:8e:
e8:77:c2:8c:6f:f3:47:de:92:9b:1e:c5:ca:f9:8c:c9:19:1c:
bc:e1:4b:cf:e1:19:f1:ed:f8:79:08:87:bb:7e:e5:3a:95:e9:
da:e5:c9:ce:bc:58:4f:42:4e:1e:57:01:3f:ce:68:e6:02:63:
f7:54:a6:85:a9:84:ca:81:9a:7a:6d:26:1e:8b:47:ad:e7:a9:
34:2e:f8:50:2e:bd:e1:26:25:fd:ad:e5:5c:41:79:28:e6:d0:
59:f9:ce:cc:4f:04:25:70:01:54:f3:d2:c6:72:33:82:b6:cd:
29:a1:3b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:21:03 2025 by rpki-client