Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/ZBPsc-JgO-tXHOyO6nvZgb-fpxg.roa
File: ZBPsc-JgO-tXHOyO6nvZgb-fpxg.roa (raw, json)
Hash identifier: CpvVkro44dsvRtWMdKhzlyRAwINlkIXg9mUv9c0BYWs=
Subject key identifier: 64:13:EC:73:E2:60:3B:EB:57:1C:EC:8E:EA:7B:D9:81:BF:9F:A7:18
Certificate issuer: /CN=8d2f0791b0525159720b191c411bcc47420f1ce2
Certificate serial: 0420AB92
Authority key identifier: 8D:2F:07:91:B0:52:51:59:72:0B:19:1C:41:1B:CC:47:42:0F:1C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jS8HkbBSUVlyCxkcQRvMR0IPHOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/ZBPsc-JgO-tXHOyO6nvZgb-fpxg.roa
Signing time: Sat 01 Jan 2022 12:00:59 +0000
ROA not before: Sat 01 Jan 2022 12:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24641
IP address blocks: 185.146.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69249938 (0x420ab92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d2f0791b0525159720b191c411bcc47420f1ce2
Validity
Not Before: Jan 1 12:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6413ec73e2603beb571cec8eea7bd981bf9fa718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6b:dd:f1:41:0c:c6:e0:46:23:30:7e:b8:c4:
48:6b:1f:10:22:11:ef:9e:5e:e3:37:f6:77:4a:71:
b1:4e:b0:7a:fd:f0:c8:e6:24:11:c1:42:09:a0:56:
83:4f:33:49:2a:7d:32:64:9d:7a:a5:3f:e6:35:a2:
f2:7d:a9:10:e6:30:5c:dc:c4:8b:fe:b5:f5:ef:c6:
69:59:57:c6:d2:3a:b6:71:73:f8:79:68:17:80:a8:
f3:13:62:81:bd:95:c1:2a:9b:93:98:31:b9:f9:d3:
78:35:0e:b6:61:1d:94:b4:68:49:bb:80:4b:4e:51:
17:2c:cb:ea:9a:3e:fe:10:c9:50:55:1b:61:8c:97:
9b:56:2d:bb:70:aa:cf:2a:50:68:fc:17:99:b2:00:
3a:97:72:1f:cc:51:1e:9a:7f:c7:13:e9:6e:f6:47:
ae:21:02:a8:a6:00:1f:5d:f4:55:fb:59:6d:1a:a1:
b9:6a:fe:56:37:a9:d9:e3:f2:66:5e:16:9a:81:cd:
a1:ff:c9:80:b0:62:91:04:9e:2d:9c:2c:e5:f7:7d:
ea:fb:d2:0f:9f:f2:4c:ba:2b:b7:c9:5a:3e:ef:1c:
bd:88:eb:c1:33:33:1c:d9:4d:a4:e0:28:24:3b:4e:
ae:71:21:36:20:cd:a7:ac:30:c8:2f:18:46:a9:c2:
18:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:13:EC:73:E2:60:3B:EB:57:1C:EC:8E:EA:7B:D9:81:BF:9F:A7:18
X509v3 Authority Key Identifier:
keyid:8D:2F:07:91:B0:52:51:59:72:0B:19:1C:41:1B:CC:47:42:0F:1C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jS8HkbBSUVlyCxkcQRvMR0IPHOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/ZBPsc-JgO-tXHOyO6nvZgb-fpxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8c52a7-6609-450a-b361-63939505fe66/1/jS8HkbBSUVlyCxkcQRvMR0IPHOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.4.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:e6:7d:aa:96:6f:e2:e5:82:08:69:4b:99:99:27:c2:6e:72:
02:05:a4:7a:88:a8:c0:73:f2:98:7d:23:ac:ff:f3:67:72:a2:
61:15:a5:e7:9f:6e:4e:18:43:f1:1a:f9:e5:cc:7e:9e:78:0a:
ab:9e:20:c1:f5:b6:c7:b6:47:f6:8d:64:bc:71:cb:0b:4d:e2:
f1:ad:61:ed:fe:5b:d1:33:8d:96:42:30:78:ba:c1:58:35:72:
82:49:b6:7a:40:24:96:d5:44:8e:26:38:55:64:3f:68:c2:e6:
34:be:4a:9e:84:6e:3e:f1:1f:ae:61:37:d7:49:a0:ce:de:ae:
52:31:33:af:71:3d:bd:68:39:d1:8a:cc:8e:6d:eb:3b:23:4e:
32:da:4e:a4:f1:8b:c0:f7:c2:0e:cd:62:09:d3:ed:cc:21:33:
ab:6c:dd:0e:c0:14:9c:85:64:cd:8f:0a:b2:d6:ab:10:92:5f:
15:42:75:b3:ca:b0:3f:25:92:e8:39:4c:8e:2a:2d:35:e1:27:
af:78:02:bc:4f:44:b0:4c:52:ef:c3:c1:bf:df:d4:5a:56:32:
8c:01:c9:9b:7f:9d:18:24:56:81:22:c0:cd:6c:76:a8:3d:aa:
cc:11:28:d5:91:75:07:cd:ca:dc:f7:6b:e9:08:51:7d:32:89:
39:65:be:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:59 2023 by rpki-client on console-fra.rpki-client.org