Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ZjFGqUuvv_vZFrZ6r1E3TYv_Smg.roa
File: ZjFGqUuvv_vZFrZ6r1E3TYv_Smg.roa (raw, json)
Hash identifier: duGTc2WOF+7fFZCchrVShixNk4ch65YL1eY/N7hfUsY=
Subject key identifier: 66:31:46:A9:4B:AF:BF:FB:D9:16:B6:7A:AF:51:37:4D:8B:FF:4A:68
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C89895
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ZjFGqUuvv_vZFrZ6r1E3TYv_Smg.roa
Signing time: Sat 01 Jan 2022 07:04:34 +0000
ROA not before: Sat 01 Jan 2022 07:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212728
IP address blocks: 185.236.9.0/24 maxlen: 24
2a09:ff00:8000::/37 maxlen: 37
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147363989 (0x8c89895)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=663146a94bafbffbd916b67aaf51374d8bff4a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d5:33:94:88:57:bb:d5:91:c5:72:9e:5c:1b:
15:36:c0:dd:12:39:ec:1c:99:2d:e4:65:37:c7:df:
e0:f3:f7:6e:79:30:e9:67:59:e2:1c:5c:fd:eb:ca:
43:93:a6:8f:63:cd:ca:03:ce:0b:34:b0:bd:f4:5e:
ec:10:6e:be:9c:69:1f:23:c8:10:aa:f5:87:b3:f7:
18:10:b6:60:e3:1c:16:8f:7d:cc:a5:c7:13:4c:07:
fd:08:d4:1a:0d:70:e9:92:6c:f4:3b:91:18:0a:dc:
8b:0f:47:49:f6:6d:e1:bc:23:5a:9a:38:57:bd:dd:
22:27:ab:0c:61:a9:93:9b:9c:09:40:f7:47:c5:dc:
48:b1:77:7d:8b:f7:7f:3c:f6:8e:e8:b6:b8:59:44:
58:f6:31:a8:35:84:13:46:3d:c6:97:79:1b:4a:23:
44:7e:88:20:2b:16:52:7c:fd:05:ed:45:e5:50:12:
c6:8b:20:f4:f3:c6:86:68:fd:06:a0:06:d3:c0:00:
0e:76:93:19:cf:09:4a:01:cc:3f:57:bc:ae:fb:30:
ca:2b:ee:b6:9b:0a:8c:d5:17:38:42:ca:3d:db:f3:
6e:80:d4:d7:a0:62:5e:86:bf:79:9f:43:78:0f:5d:
7f:0f:c3:94:09:a5:e9:37:8d:58:cc:bc:ce:3f:f5:
59:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:31:46:A9:4B:AF:BF:FB:D9:16:B6:7A:AF:51:37:4D:8B:FF:4A:68
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ZjFGqUuvv_vZFrZ6r1E3TYv_Smg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.9.0/24
IPv6:
2a09:ff00:8000::/37
Signature Algorithm: sha256WithRSAEncryption
2e:f5:06:75:53:0b:8c:0e:6e:16:fe:b3:d4:c4:4a:62:00:22:
98:7c:d1:04:ff:f9:c1:dd:9a:ee:3f:2c:ad:6a:cc:e2:a5:77:
5b:0d:42:74:c7:7b:b3:c2:59:7d:e9:78:d3:df:11:24:9c:50:
66:8e:87:8e:2b:b4:0d:2a:8d:0b:98:2c:42:f2:8c:05:71:84:
df:51:7d:b4:e8:37:12:a0:02:ff:2d:db:2f:42:34:29:cd:50:
b7:16:62:68:64:48:83:b4:41:52:cd:e0:aa:e7:aa:fc:c7:d6:
f9:f6:37:63:43:eb:53:64:5b:64:a4:ba:34:16:fe:63:3b:6d:
86:f2:df:53:61:62:64:15:44:09:99:01:b8:c0:c1:db:42:c5:
cf:22:9b:a0:65:69:b5:27:2e:e3:57:6a:b8:1d:f9:3b:4f:d3:
78:ec:42:3b:ba:ab:af:f5:ef:13:b8:d1:8e:00:fc:e6:ab:87:
5f:79:dd:f0:a2:32:f3:12:50:be:d4:e6:95:57:bd:bd:b9:14:
e9:75:b2:d7:77:c0:91:f0:14:16:d1:a8:eb:ce:d6:d1:0c:6a:
e9:d1:24:24:85:47:44:c3:51:22:09:f8:45:28:7f:af:2e:5c:
2a:64:cc:c9:39:e6:8d:69:c6:a6:00:c2:25:a9:1f:15:c5:21:
07:20:88:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org