Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zx277Uaev5z4aCM8E2LwSEeEl6c.roa
File: zx277Uaev5z4aCM8E2LwSEeEl6c.roa (raw, json)
Hash identifier: ZlD9ATQCJi1m4BlUOyeCOybJT//0x7uQnOcwj4ItTZY=
Subject key identifier: CF:1D:BB:ED:46:9E:BF:9C:F8:68:23:3C:13:62:F0:48:47:84:97:A7
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 02B601CD
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zx277Uaev5z4aCM8E2LwSEeEl6c.roa
Signing time: Sat 01 Jan 2022 03:57:11 +0000
ROA not before: Sat 01 Jan 2022 03:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 83.136.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45482445 (0x2b601cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Jan 1 03:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf1dbbed469ebf9cf868233c1362f048478497a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d0:30:e9:0c:56:4b:3c:13:95:48:bb:0c:f0:
04:5f:d6:f9:93:38:05:62:f0:ff:12:4c:06:56:80:
36:b7:ff:a8:80:ac:a4:e0:17:aa:a5:cb:c9:2f:c0:
63:a2:f1:79:44:d5:31:62:f2:cc:85:ed:72:bf:92:
9a:56:1e:9c:b4:6e:a2:e5:a0:8e:63:b9:ad:2a:6a:
29:a9:b9:8d:24:f1:8c:70:a0:cc:85:11:7e:a9:11:
fe:c3:de:19:5c:80:dc:a1:ac:e7:10:e0:26:ae:b8:
6d:10:f5:13:4a:4d:26:a6:ba:39:3d:e3:48:18:65:
ef:ce:c1:98:30:ab:d2:dc:2b:9b:e3:bb:2e:7e:f5:
a4:f3:9b:79:20:98:9b:cb:1b:99:4e:6f:c7:05:1b:
31:1e:27:29:f5:49:d9:ff:94:be:e0:7e:4e:1c:a2:
c7:fc:e5:d7:df:4b:f7:a9:6a:95:2b:0a:7d:d7:7b:
32:4b:bd:15:07:bf:22:23:d2:2b:8d:c3:e9:03:a6:
a5:f6:db:af:ea:65:90:2b:4b:0c:ac:9e:c8:86:e9:
1c:f8:f0:35:97:e2:ab:4e:0d:6b:7d:4d:ac:82:33:
c5:7f:f4:62:fb:9c:31:55:d9:82:d3:a2:6c:7c:d2:
df:19:07:02:00:28:fa:a2:2a:d8:be:25:f6:ed:3d:
c9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1D:BB:ED:46:9E:BF:9C:F8:68:23:3C:13:62:F0:48:47:84:97:A7
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/zx277Uaev5z4aCM8E2LwSEeEl6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.208.0/22
Signature Algorithm: sha256WithRSAEncryption
80:e9:d6:86:eb:e4:6a:de:ab:53:18:ec:8b:2b:94:ae:43:76:
73:c1:40:31:62:42:c4:ac:eb:b9:0c:7c:4e:32:8b:42:a6:75:
43:d9:4b:14:6a:28:08:67:d8:e3:94:d8:7c:1e:19:62:4e:26:
5f:c5:51:24:49:e0:ef:79:f0:14:2d:b1:32:1a:a7:cf:a7:70:
7b:e7:b8:eb:5c:12:ec:8a:57:fd:2e:21:a3:8c:44:80:58:85:
88:1c:09:fd:82:e4:d7:5c:56:b3:cd:08:ac:bd:fa:9d:bf:ee:
9e:49:2c:56:a9:bf:63:ca:d9:bc:a0:09:76:4f:17:7c:38:00:
22:95:67:6c:0f:e8:28:5b:10:e0:8e:99:95:c8:f9:33:27:a2:
86:8d:e8:09:75:d7:14:1d:01:a9:7e:ce:88:46:fd:b1:07:4d:
03:d6:31:14:1c:98:a4:57:bf:d8:45:37:ab:9b:71:f3:ae:8a:
bd:05:b2:35:0b:4a:b2:83:ce:69:d4:0e:8f:26:be:96:40:98:
64:ee:55:79:ae:51:fe:b8:fa:82:48:ad:53:90:4e:f6:64:e5:
e4:52:70:87:f8:0f:e4:14:11:c2:98:04:c6:af:73:a2:ce:66:
33:4e:c0:b6:01:fe:e3:53:af:1b:db:34:80:37:55:0a:5e:34:
36:8f:52:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:53 2023 by rpki-client on console-ams.rpki-client.org