Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/zbFHhfgG6Qxubyyj9tu-WCQe8jQ.roa
File: zbFHhfgG6Qxubyyj9tu-WCQe8jQ.roa (raw, json)
Hash identifier: f203OwFaR8iU6JZeK5byBxGCYUpxoQekwIdJ54EaNBw=
Subject key identifier: CD:B1:47:85:F8:06:E9:0C:6E:6F:2C:A3:F6:DB:BE:58:24:1E:F2:34
Certificate issuer: /CN=6bf0f847e1a216e7543c752a6350c6be23c7c6d5
Certificate serial: 3437133A
Authority key identifier: 6B:F0:F8:47:E1:A2:16:E7:54:3C:75:2A:63:50:C6:BE:23:C7:C6:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a_D4R-GiFudUPHUqY1DGviPHxtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/zbFHhfgG6Qxubyyj9tu-WCQe8jQ.roa
Signing time: Sat 01 Jan 2022 05:05:50 +0000
ROA not before: Sat 01 Jan 2022 05:05:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34687
IP address blocks: 89.248.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 876024634 (0x3437133a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bf0f847e1a216e7543c752a6350c6be23c7c6d5
Validity
Not Before: Jan 1 05:05:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdb14785f806e90c6e6f2ca3f6dbbe58241ef234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0d:72:5b:e1:1e:89:d8:6e:f6:e9:36:60:72:
1e:2d:0f:97:b9:99:f1:7d:2b:99:0c:bc:b2:9d:73:
3e:f7:4e:1b:af:8f:3e:c1:da:11:03:c0:17:47:d0:
32:77:5b:3e:8b:22:05:5e:f2:31:f0:e1:45:ff:6e:
b4:af:d6:e0:8f:17:d0:4e:14:e8:9e:d0:dd:62:8d:
31:2a:f7:5a:e8:3b:42:74:b9:3c:8c:d4:c4:02:32:
0b:37:5c:d7:bd:19:3d:0a:2f:20:d6:f8:54:1a:60:
ad:0c:1b:7e:fe:d7:b4:b9:15:ab:5e:91:e2:d8:30:
d9:09:f1:55:5c:d7:3e:e3:95:f4:d7:69:ce:49:5f:
4a:f3:f4:7c:e4:28:c8:12:a8:20:3c:4d:d0:61:1e:
c8:70:40:af:28:5d:40:ce:7c:2c:dd:3f:f7:b5:9d:
24:6a:b5:93:1b:68:d7:86:0c:c4:b8:81:22:25:59:
ee:a0:87:73:d3:b7:83:0e:77:5d:4a:28:32:61:a3:
7a:64:e1:31:da:6d:a4:8c:8d:30:09:16:00:d0:82:
5b:7e:ef:a6:c1:1c:94:9f:15:1b:4b:ed:0a:b9:6d:
62:97:34:2c:4f:0a:89:8d:bc:c4:f2:46:32:45:59:
a2:3f:55:d1:8c:cd:ed:fa:40:21:bb:a1:5f:d8:83:
94:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B1:47:85:F8:06:E9:0C:6E:6F:2C:A3:F6:DB:BE:58:24:1E:F2:34
X509v3 Authority Key Identifier:
keyid:6B:F0:F8:47:E1:A2:16:E7:54:3C:75:2A:63:50:C6:BE:23:C7:C6:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a_D4R-GiFudUPHUqY1DGviPHxtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/zbFHhfgG6Qxubyyj9tu-WCQe8jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/a_D4R-GiFudUPHUqY1DGviPHxtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.176.0/20
Signature Algorithm: sha256WithRSAEncryption
29:1c:8c:1c:ed:f1:6d:a5:40:4b:db:20:ba:82:ce:26:18:ce:
64:6c:3e:f3:b1:95:05:4e:b8:10:00:97:55:5d:b2:f2:ea:5e:
a5:63:c0:55:64:d3:4b:4d:43:98:18:71:d7:13:6d:81:8b:1c:
38:26:4f:e5:69:16:ea:81:9e:e3:07:71:49:62:20:ed:9e:b1:
ee:b6:15:db:98:0a:b1:d5:9c:7f:4c:da:e9:51:1d:35:7c:ef:
3a:d0:1c:2f:0d:cb:88:91:11:2c:f6:4c:0d:2e:3f:2c:80:5b:
db:41:8c:97:f6:85:89:99:ae:56:73:18:9b:30:94:fe:46:68:
41:4f:47:83:f8:80:6b:79:84:8e:ef:f3:ab:d0:d9:a9:b0:fa:
34:11:15:21:ad:26:81:6e:2c:b4:53:f8:66:6a:61:0f:14:13:
78:76:97:d1:37:98:b8:11:5b:db:59:73:48:58:2f:c8:dc:cd:
f1:16:9f:d7:98:be:f7:16:08:82:a0:a7:c4:ee:6b:95:22:2d:
8d:33:9e:f2:21:0e:fc:4a:35:2e:c7:c6:9b:c4:e7:e8:e2:c8:
08:ab:0c:f9:73:d6:43:4c:d7:82:51:8f:af:5b:fc:fd:35:bd:
13:ee:c4:6f:42:44:94:58:10:25:38:96:f1:6d:51:38:2d:00:
20:db:46:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:49 2024 by rpki-client on console-fra.rpki-client.org