Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/101696-83dd-436f-b47c-3e1b8432fc70/1/ZxBKGoy4mLEIAjLKHeGhuB_6Hc0.roa
File: ZxBKGoy4mLEIAjLKHeGhuB_6Hc0.roa (raw, json)
Hash identifier: UIbr2+c4PwD5Pc47ePlX3YPSA1C5gJjcK3g863/TZMM=
Subject key identifier: 67:10:4A:1A:8C:B8:98:B1:08:02:32:CA:1D:E1:A1:B8:1F:FA:1D:CD
Certificate issuer: /CN=bf5599c26755f4a4d4f540e2ffd7b74a39053da3
Certificate serial: 0181EDFE395FA211454264E1E5DF8AC5BF0A
Authority key identifier: BF:55:99:C2:67:55:F4:A4:D4:F5:40:E2:FF:D7:B7:4A:39:05:3D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1WZwmdV9KTU9UDi_9e3SjkFPaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/101696-83dd-436f-b47c-3e1b8432fc70/1/ZxBKGoy4mLEIAjLKHeGhuB_6Hc0.roa
Signing time: Mon 11 Jul 2022 16:01:09 +0000
ROA not before: Mon 11 Jul 2022 16:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 91.199.76.0/24 maxlen: 24
2001:67c:470::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:fe:39:5f:a2:11:45:42:64:e1:e5:df:8a:c5:bf:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf5599c26755f4a4d4f540e2ffd7b74a39053da3
Validity
Not Before: Jul 11 16:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67104a1a8cb898b1080232ca1de1a1b81ffa1dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:30:72:4a:74:a6:51:d5:68:ff:99:a8:15:57:
63:78:1d:ea:fd:20:0b:cb:17:7b:e9:63:6f:11:d9:
0f:56:ba:48:9e:e3:d2:89:eb:aa:58:44:38:09:fc:
6b:29:d7:86:8b:30:ca:23:4f:51:e2:dd:79:68:28:
4c:bf:71:ec:a1:cc:39:3e:fd:77:f8:ac:92:ef:4f:
48:7d:da:7b:f1:7a:43:40:60:67:a9:1c:60:33:9e:
53:d4:ab:e1:29:5b:7d:cf:74:ca:76:c6:1c:73:df:
4e:b2:d4:14:07:45:31:c7:38:3a:a7:47:72:8d:ec:
f4:d7:d0:f2:f0:28:ec:47:48:9a:c8:0a:fd:95:fd:
35:fe:63:83:2b:c6:de:27:84:bb:0c:f1:0b:93:a5:
a8:8c:bc:e4:c1:86:90:8e:b8:8a:12:39:94:f5:a3:
33:98:cc:c8:ca:77:be:3f:3f:56:09:4a:4e:8f:3a:
f2:c8:34:63:36:a8:6a:de:39:00:70:df:88:8f:f1:
ff:22:fe:a9:23:fc:80:c2:cc:6c:6b:0d:b2:c5:76:
58:b9:84:5b:71:10:2c:98:6f:ef:b2:b0:38:66:78:
19:8d:c0:4d:79:d1:d1:34:af:76:b0:c8:5e:2f:0e:
98:0d:75:27:81:94:06:04:5f:f1:c0:a9:89:e5:c9:
f7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:10:4A:1A:8C:B8:98:B1:08:02:32:CA:1D:E1:A1:B8:1F:FA:1D:CD
X509v3 Authority Key Identifier:
keyid:BF:55:99:C2:67:55:F4:A4:D4:F5:40:E2:FF:D7:B7:4A:39:05:3D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1WZwmdV9KTU9UDi_9e3SjkFPaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/101696-83dd-436f-b47c-3e1b8432fc70/1/ZxBKGoy4mLEIAjLKHeGhuB_6Hc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/101696-83dd-436f-b47c-3e1b8432fc70/1/v1WZwmdV9KTU9UDi_9e3SjkFPaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.76.0/24
IPv6:
2001:67c:470::/48
Signature Algorithm: sha256WithRSAEncryption
65:30:e6:dc:1d:28:52:8d:b1:8d:e2:a6:f1:68:e7:7a:90:d5:
41:fa:8d:fd:7d:8a:d5:6b:47:a7:45:59:01:05:07:40:2b:ae:
a0:d3:b4:16:3d:ae:74:2f:36:73:b9:2c:1c:c0:11:10:d6:2c:
0b:9a:b2:54:e9:e5:35:c9:04:40:af:05:94:96:f2:c5:44:5c:
b1:9b:ba:6f:bc:55:52:6c:bc:0b:2e:bd:5a:b4:9e:9e:60:9a:
1f:1c:fd:cc:6f:36:24:91:7c:d7:34:95:f2:67:45:9f:f8:6b:
61:46:6b:98:6c:86:8e:f6:21:00:58:cc:81:56:80:3d:f9:07:
02:c2:9c:6b:94:1b:3d:aa:eb:09:e3:1f:01:95:14:52:02:f9:
06:b6:73:74:31:9f:2b:67:1f:ad:fd:c9:5b:bf:91:1e:20:a3:
28:f4:b0:24:33:ec:1a:bc:94:4e:5b:10:70:fd:a6:6c:1e:bb:
f6:09:e5:ed:8d:bf:16:85:bb:38:2e:d3:83:9b:5a:eb:b0:3f:
64:03:b2:af:4d:ca:75:fa:e2:02:07:0f:0d:88:6f:61:f7:4a:
85:db:c0:ab:6a:5d:6f:67:e7:2d:4f:37:4f:57:0a:2b:69:3a:
b8:c8:4b:49:b8:8a:a7:f1:5a:91:c5:7f:23:6d:3a:44:b7:60:
2d:26:e2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:33 2024 by rpki-client on console-fra.rpki-client.org